Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.mft
File: D4jGhrHhIvzcFlwCN6D149mQvwE.mft (raw, json)
Hash identifier: wwHklyR61CwjiEkaFi2mEWjUw2Vaz+EMXmM31eBgWZk=
Subject key identifier: 81:2A:99:90:67:7E:9B:F9:5D:0E:DA:DD:73:E5:FA:93:D9:17:C5:52
Authority key identifier: 0F:88:C6:86:B1:E1:22:FC:DC:16:5C:02:37:A0:F5:E3:D9:90:BF:01
Certificate issuer: /CN=0f88c686b1e122fcdc165c0237a0f5e3d990bf01
Certificate serial: 0197B6A1DCAB3E3EFB91669E56EB49D00BD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D4jGhrHhIvzcFlwCN6D149mQvwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.mft
Manifest number: 0B62
Signing time: Sat 28 Jun 2025 13:02:30 +0000
Manifest this update: Sat 28 Jun 2025 13:02:30 +0000
Manifest next update: Sun 29 Jun 2025 13:02:30 +0000
Files and hashes: 1: D4jGhrHhIvzcFlwCN6D149mQvwE.crl (hash: gfrtj+iW/zVvfbrVcJH5CpIJQmQZGT+5Qn2WdQf5hMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.mft
rsync://rpki.ripe.net/repository/DEFAULT/D4jGhrHhIvzcFlwCN6D149mQvwE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:dc:ab:3e:3e:fb:91:66:9e:56:eb:49:d0:0b:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f88c686b1e122fcdc165c0237a0f5e3d990bf01
Validity
Not Before: Jun 28 13:02:30 2025 GMT
Not After : Jun 29 13:02:30 2025 GMT
Subject: CN=812a9990677e9bf95d0edadd73e5fa93d917c552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cd:f5:c2:b6:bd:81:ae:e5:2e:8d:55:bc:aa:
50:10:8d:92:ef:21:23:44:cc:de:c2:77:6a:91:cd:
78:e1:a5:ae:70:85:59:b3:ca:3d:41:57:79:38:54:
a1:c1:ad:4b:49:79:bc:1f:36:05:bf:cc:2e:6d:3d:
23:96:12:e6:42:33:03:d3:ac:de:a9:1d:96:6f:9a:
06:d7:3f:c9:4f:f0:7c:14:02:37:7d:02:02:97:61:
53:b2:02:fc:9a:8b:2e:ec:de:d6:5e:8a:4e:b3:14:
67:71:b8:cc:9f:00:60:9e:53:04:b0:be:4c:35:fd:
1a:5d:22:1e:75:7b:ea:06:d0:55:84:97:25:cb:9a:
b0:92:fc:9e:ae:a3:8b:45:96:52:ac:7c:1e:e8:0f:
e8:95:02:1f:37:ca:4e:e1:06:3e:86:3b:4f:7f:14:
0f:0c:e6:53:a5:0b:f0:a9:6a:8d:f6:58:6a:b5:41:
c9:91:6c:4b:a0:c9:d6:13:f7:f5:37:2e:3a:c3:37:
89:9d:6c:c6:8d:91:cf:91:1d:1b:cb:5f:3e:05:bf:
4e:f6:be:2c:38:38:af:45:82:a2:7b:dd:54:a7:dd:
dc:ef:30:2f:f8:c8:fe:59:6c:20:35:d2:94:53:df:
55:f4:d3:06:a1:89:7e:a5:8f:62:84:79:0c:83:e7:
56:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2A:99:90:67:7E:9B:F9:5D:0E:DA:DD:73:E5:FA:93:D9:17:C5:52
X509v3 Authority Key Identifier:
keyid:0F:88:C6:86:B1:E1:22:FC:DC:16:5C:02:37:A0:F5:E3:D9:90:BF:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D4jGhrHhIvzcFlwCN6D149mQvwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:af:f3:8b:da:a9:aa:a5:5c:53:38:fe:39:25:a0:a7:72:31:
4c:93:0c:14:07:8d:a6:e9:88:1a:a6:fe:98:4a:60:20:e3:83:
f7:63:65:62:a0:d6:8f:af:22:ef:85:96:92:34:b9:03:50:a2:
a1:a8:73:be:2d:4d:c5:14:75:6d:72:1f:a1:d3:4d:95:08:c9:
ea:7c:57:6c:5e:e3:2f:96:96:cc:b8:0b:95:80:a7:c1:d5:6d:
01:af:b7:a3:33:a9:d0:e9:0e:cb:8b:14:e3:1d:25:63:1f:83:
51:1b:c9:9b:4c:6c:a3:5b:b5:79:09:38:01:05:e5:0a:73:fa:
22:2f:f2:8e:62:43:98:53:60:02:11:22:c0:02:47:c6:16:82:
03:95:76:5f:9b:c8:fb:42:6b:f6:33:7a:4f:db:7f:79:6e:31:
b3:e7:f2:f6:83:98:df:6d:3c:47:7d:20:a3:4f:7c:2b:f8:02:
9f:0d:f3:e9:94:b4:92:e2:d6:00:17:ac:c3:23:b1:ee:9f:de:
71:b6:32:48:2c:34:4f:6e:99:bc:21:bf:51:85:6a:c9:02:86:
62:b2:ab:f8:91:34:ed:ac:20:e1:de:74:46:8b:06:3f:98:08:
5f:9e:73:2a:1f:82:04:ba:81:14:21:84:a2:c3:b3:9f:f2:1e:
01:60:f5:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:27:43 2025 by rpki-client