Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e86f5f-115e-4e92-ac39-c76b8db5ad14/1/DdgdNYjH4QqJmw0EgVZubZSNrdA.mft
File: DdgdNYjH4QqJmw0EgVZubZSNrdA.mft (raw, json)
Hash identifier: bODxwJNKp7M9R9La950LEZ2qrXmmbHDVclJOB9fbp5k=
Subject key identifier: 53:74:EA:EB:24:08:C2:7A:5D:40:CB:48:FF:4E:F3:E9:85:3D:83:DC
Authority key identifier: 0D:D8:1D:35:88:C7:E1:0A:89:9B:0D:04:81:56:6E:6D:94:8D:AD:D0
Certificate issuer: /CN=0dd81d3588c7e10a899b0d0481566e6d948dadd0
Certificate serial: 0197B5FC4ED625A81A23CE6F873670DACBEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdgdNYjH4QqJmw0EgVZubZSNrdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e86f5f-115e-4e92-ac39-c76b8db5ad14/1/DdgdNYjH4QqJmw0EgVZubZSNrdA.mft
Manifest number: 15B1
Signing time: Sat 28 Jun 2025 10:01:40 +0000
Manifest this update: Sat 28 Jun 2025 10:01:40 +0000
Manifest next update: Sun 29 Jun 2025 10:01:40 +0000
Files and hashes: 1: DdgdNYjH4QqJmw0EgVZubZSNrdA.crl (hash: 8n0bUKqCB5TQuCExKHbgxeJusFdoeT6+EN2x3iqBDsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e86f5f-115e-4e92-ac39-c76b8db5ad14/1/DdgdNYjH4QqJmw0EgVZubZSNrdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/e86f5f-115e-4e92-ac39-c76b8db5ad14/1/DdgdNYjH4QqJmw0EgVZubZSNrdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdgdNYjH4QqJmw0EgVZubZSNrdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:4e:d6:25:a8:1a:23:ce:6f:87:36:70:da:cb:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd81d3588c7e10a899b0d0481566e6d948dadd0
Validity
Not Before: Jun 28 10:01:40 2025 GMT
Not After : Jun 29 10:01:40 2025 GMT
Subject: CN=5374eaeb2408c27a5d40cb48ff4ef3e9853d83dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:cf:e4:de:11:e2:82:45:61:9a:9c:01:67:a2:
a3:be:c4:5f:28:28:1a:96:e2:eb:17:95:d8:10:ad:
51:bc:20:56:d2:db:33:d3:7a:7a:56:52:72:47:6d:
a2:3a:91:1c:7a:a0:ca:c3:e7:28:50:e9:59:9b:e0:
9d:b3:a6:ce:53:4d:97:2b:fd:21:82:30:af:57:45:
78:82:c4:67:ef:c8:44:f2:95:88:26:96:62:ac:e9:
6d:00:cf:33:de:87:49:87:67:bc:29:0e:7a:04:aa:
7a:e1:06:46:50:c9:92:aa:92:20:fd:80:79:50:53:
2d:81:10:9a:94:f7:e7:93:12:e3:c8:88:22:36:01:
71:2f:50:f8:3d:71:eb:6b:a0:32:b5:e5:b9:3b:97:
72:71:fb:5e:35:0d:e1:1c:7f:60:99:98:d7:b6:83:
3f:4c:6c:88:c8:26:54:bc:71:df:01:5f:48:73:d7:
5e:f7:11:b5:82:32:8e:23:ef:3a:76:29:97:28:77:
ee:a2:9b:4a:14:07:f9:b3:24:bd:58:70:36:ed:e2:
17:f1:f0:df:00:06:80:3f:79:21:bb:5c:8f:3e:20:
d3:6b:aa:8b:a5:8a:e0:c8:05:59:54:0c:dd:63:74:
7c:7a:60:84:03:02:07:18:ac:e1:88:c9:96:99:4e:
40:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:74:EA:EB:24:08:C2:7A:5D:40:CB:48:FF:4E:F3:E9:85:3D:83:DC
X509v3 Authority Key Identifier:
keyid:0D:D8:1D:35:88:C7:E1:0A:89:9B:0D:04:81:56:6E:6D:94:8D:AD:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdgdNYjH4QqJmw0EgVZubZSNrdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e86f5f-115e-4e92-ac39-c76b8db5ad14/1/DdgdNYjH4QqJmw0EgVZubZSNrdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e86f5f-115e-4e92-ac39-c76b8db5ad14/1/DdgdNYjH4QqJmw0EgVZubZSNrdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:8b:2a:60:46:67:07:f3:a6:42:fa:a3:10:63:93:10:d0:98:
7c:1d:64:ed:3c:8b:78:b6:0f:71:6a:18:c6:e8:75:67:7c:0d:
1f:43:3a:29:22:38:b7:95:1d:3e:3f:63:19:fe:af:e5:f9:a5:
4b:53:b7:20:c3:72:11:3b:65:99:48:78:0d:b9:57:b4:ed:4a:
b2:97:d6:9b:57:7a:88:25:f9:c1:d8:bf:67:bb:a0:88:3a:4a:
58:a1:f5:75:08:a6:7c:f6:0e:7e:92:b5:45:fb:3a:ca:69:25:
2d:0d:72:09:e0:97:3c:50:40:43:36:e9:68:a6:3b:85:fd:9c:
c7:2b:b7:60:35:e8:03:a7:ea:c9:26:f2:d9:bf:f1:53:a0:80:
b5:6d:d3:a2:be:bb:e7:ad:a4:ef:30:4c:28:26:74:a1:68:ae:
a2:f0:f2:69:2a:9c:57:51:31:5c:c4:c7:e0:55:de:ea:6c:24:
23:7a:6b:a6:de:60:16:7b:46:fb:e7:b8:7e:8c:57:01:82:28:
ee:6c:bf:3a:45:d0:f7:35:64:33:82:63:c7:3d:52:d3:bf:63:
87:19:80:20:9b:32:c1:52:8d:48:f9:c3:0d:97:02:3b:ae:28:
67:c7:3e:bd:57:e8:e9:9b:8a:0f:01:ed:a5:9a:65:0f:e6:da:
85:f4:17:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:38:52 2025 by rpki-client