Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
File: dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json)
Hash identifier: RABV4gGo9uL8WmopOWcNb1cKl9FJhBYaXJ98AHF+tlw=
Subject key identifier: 10:AC:DC:1F:6F:32:48:C1:F9:F6:B0:55:E8:EC:AB:57:40:43:FD:87
Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
Certificate issuer: /CN=74b975898d10f1a5052133e1e25036c6114d8876
Certificate serial: 0197CFBB55A3FAB7B0EF94309B07F443A49F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
Manifest number: 125C
Signing time: Thu 03 Jul 2025 10:00:50 +0000
Manifest this update: Thu 03 Jul 2025 10:00:50 +0000
Manifest next update: Fri 04 Jul 2025 10:00:50 +0000
Files and hashes: 1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: 54kJb+oEf0SwFmdZfNvdBfSPWotRqfvB/kZutXRVct0=)
2: z_2rtoFCvPkDkADqibZPjoJmwkw.roa (hash: q/SzHtsnHuDBpVkpEWhHESnMoXOnwPbEJuDNiDhbwHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cf:bb:55:a3:fa:b7:b0:ef:94:30:9b:07:f4:43:a4:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876
Validity
Not Before: Jul 3 10:00:50 2025 GMT
Not After : Jul 4 10:00:50 2025 GMT
Subject: CN=10acdc1f6f3248c1f9f6b055e8ecab574043fd87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2f:c9:37:c7:4a:df:90:40:b2:28:aa:bd:45:
15:0c:22:1a:db:0b:14:73:db:1c:2f:c2:6d:3e:e9:
c3:b2:43:c8:c9:6f:ac:b0:e2:56:f3:0c:2c:31:3e:
6f:f0:b8:21:cb:34:2a:51:4e:a8:19:43:2f:52:ba:
1e:56:42:10:ba:55:47:9e:78:9c:f0:ad:91:50:58:
4c:68:82:83:6a:07:fd:37:92:15:8c:c4:ff:46:6f:
3a:a3:27:0d:92:bd:e9:b5:ea:b9:78:e4:57:5a:02:
00:f0:1b:03:dc:6d:3c:0f:cd:48:ea:0d:9b:6a:44:
5d:86:a0:14:a3:60:ab:89:ad:a1:e7:2b:8f:f2:d8:
28:64:c1:0f:d2:83:a7:4c:42:40:12:7c:77:e2:34:
97:a0:b6:e5:d8:9b:3b:50:81:30:68:e3:e7:83:85:
00:63:24:25:78:a7:9b:7a:5a:8b:bd:d5:a5:8f:01:
9e:08:e8:7c:ca:25:ee:b6:88:af:44:c5:51:da:9d:
43:de:b4:19:7a:c1:0e:7f:a0:6d:b5:76:99:82:59:
1a:b1:a3:ff:8b:c0:1f:3d:a5:ce:ad:42:6b:ae:50:
90:cb:37:29:dc:06:b5:37:f4:7c:0c:eb:24:86:8c:
24:7b:fe:ce:79:a9:38:f0:ca:94:f2:eb:5d:c7:e6:
d8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:AC:DC:1F:6F:32:48:C1:F9:F6:B0:55:E8:EC:AB:57:40:43:FD:87
X509v3 Authority Key Identifier:
keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:3f:2e:45:cd:19:89:c8:a4:28:e1:47:ac:95:4c:02:3b:3a:
98:dd:7a:7b:a9:66:a2:1b:f9:c9:77:a8:5e:ac:2f:de:0c:09:
ae:42:d5:fb:61:72:2f:30:2f:48:64:32:2e:2c:b1:58:3e:39:
4b:ee:3b:36:3e:0d:82:42:5f:18:70:2c:76:8e:78:06:8f:78:
af:5a:4e:51:d3:a6:c5:01:88:66:60:76:f4:c9:93:0f:43:7b:
e2:22:ef:0e:10:08:e4:74:ad:e8:30:8f:6b:87:4c:5a:82:7d:
db:63:cc:e7:66:93:90:8a:85:46:ae:5e:9c:e9:e4:b0:01:69:
cb:f3:3b:09:ca:96:87:57:d0:03:55:eb:d4:b6:e6:27:c9:e6:
c7:1e:f9:04:53:15:c5:0f:cd:38:2a:d0:38:29:9d:65:92:37:
19:81:3e:9f:74:6c:9e:6c:b3:e1:3f:36:80:61:e8:d2:2a:05:
1f:ef:fa:19:a4:7c:68:0b:30:43:f9:35:5b:1d:f9:67:c0:d2:
57:2c:26:4a:b2:48:46:5b:69:49:25:4d:2e:fe:de:5a:f2:2f:
f1:2b:71:58:44:88:55:fb:26:6f:bc:ab:c8:2f:73:33:57:78:
6a:b0:8f:13:8c:e5:09:2a:90:10:0f:8c:f4:aa:59:0e:4f:20:
d3:ea:00:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 14:15:17 2025 by rpki-client