Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
File: dXFLWBraGW41UcCM52JDvgWLROs.mft (raw, json)
Hash identifier: +U0iZjZEBquJXPz9QIyG2o1mLhkM2QPBeAeDS+O34oc=
Subject key identifier: A1:9A:3E:A4:F7:46:04:D2:CC:EC:E1:69:86:A3:25:05:2C:7A:C6:28
Authority key identifier: 75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
Certificate issuer: /CN=75714b581ada196e3551c08ce76243be058b44eb
Certificate serial: 0197B7B323A8F95CDFBDD4DF964E1EA39664
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 18:01:00 +0000
Manifest this update: Sat 28 Jun 2025 18:01:00 +0000
Manifest next update: Sun 29 Jun 2025 18:01:00 +0000
Files and hashes: 1: 0dwLJQRpdsuNfuiofPA4PjO0U8c.roa (hash: xvhwiBzc6sj9frR0O87jctOS5dj3sqKjh7OcpHO4MQo=)
2: dXFLWBraGW41UcCM52JDvgWLROs.crl (hash: FT9dVQcADNkoae3q5CoeyAj3cZY4til5rImT301SR2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:23:a8:f9:5c:df:bd:d4:df:96:4e:1e:a3:96:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75714b581ada196e3551c08ce76243be058b44eb
Validity
Not Before: Jun 28 18:01:00 2025 GMT
Not After : Jun 29 18:01:00 2025 GMT
Subject: CN=a19a3ea4f74604d2ccece16986a325052c7ac628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fd:8c:2d:fe:61:c8:11:1f:fe:55:5d:34:ff:
09:3d:9e:cc:c3:fa:15:9d:35:aa:d1:00:eb:61:bd:
75:fe:68:e8:69:b9:a0:40:39:e7:f5:ca:76:a7:07:
43:42:74:80:dc:09:bb:06:b6:82:4a:63:05:e8:a5:
4f:99:29:9f:9a:f4:32:93:e1:ff:8c:4d:fd:9b:ce:
bd:8d:9d:fa:ec:b2:60:c2:b7:b7:97:59:d7:be:f0:
02:40:52:31:7d:b5:4b:d9:0f:0a:3c:c0:3b:1c:ce:
8f:9a:72:c6:73:1f:6c:bf:06:82:f0:31:53:aa:8c:
9b:64:2d:a5:ca:42:74:97:d3:42:92:0a:ca:c9:5f:
ca:96:3e:b5:40:0b:44:5c:81:98:83:dc:8a:b6:69:
7a:b5:54:5d:32:f4:1e:35:f5:71:f3:ac:bc:7c:32:
ca:16:11:df:b4:47:b9:11:27:90:a7:28:91:e9:1c:
bc:bb:2b:35:92:cb:d4:7e:f5:e5:84:b5:93:67:a0:
3b:54:57:9d:b4:19:ce:ab:8f:3a:8c:b3:b3:08:82:
47:21:28:72:96:42:45:0e:89:c0:c9:66:13:ea:29:
d1:d0:8c:64:f7:1a:f3:4b:12:01:99:df:a0:ba:06:
71:dd:a2:8a:e4:a0:75:10:47:5b:f1:61:b6:56:e2:
e5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:9A:3E:A4:F7:46:04:D2:CC:EC:E1:69:86:A3:25:05:2C:7A:C6:28
X509v3 Authority Key Identifier:
keyid:75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:57:da:a3:a9:8f:24:01:fe:a6:a3:c4:0c:e9:60:34:3d:b3:
05:8f:8d:60:ac:54:53:0a:d1:cd:84:f4:d6:d4:67:49:64:44:
c7:67:5b:9b:90:54:02:05:5c:25:db:43:84:50:8d:77:c5:3a:
f4:16:80:04:2e:5b:ee:68:e4:9d:d9:1a:10:27:fe:b7:11:4c:
4c:f2:ed:5a:77:51:5d:19:66:5d:5d:b2:cc:13:46:2c:ca:d2:
73:63:48:ce:45:99:ff:16:9a:03:31:36:28:70:f4:e3:46:f6:
52:e3:6a:45:d6:46:6a:9d:42:d6:25:03:22:b0:63:83:01:fc:
4a:de:42:07:16:ea:c9:03:5a:8a:b6:92:a3:f6:b8:0d:3f:f7:
9b:80:58:90:c5:b1:bc:5e:be:d6:3a:d0:d4:09:4d:18:7c:51:
ff:0c:ae:9f:a3:4f:51:24:41:4f:2e:53:b5:4b:39:ed:27:db:
98:93:a5:0f:46:c0:8c:33:17:23:b6:fd:1e:c8:cf:92:79:f8:
87:a5:55:f2:ba:60:04:05:2b:25:66:a1:7e:f3:60:f8:08:17:
1c:07:32:7f:5a:2e:d2:96:ab:2c:2f:12:6c:c7:35:a4:37:bc:
07:aa:45:ce:30:6e:3b:7d:fd:9f:94:b3:87:dc:33:c4:1d:f9:
6d:24:16:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:35:07 2025 by rpki-client