Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
File: DkTxM_OHWTqvor6rOIhJBPrJvRk.mft (raw, json)
Hash identifier: +qCvUvitVss7VXQgzpYmPv4T9nkJ2aHLD+rDdSMlsMw=
Subject key identifier: C4:6E:6B:5F:1C:E3:CC:6E:B0:2E:5E:60:2A:34:43:4D:37:88:9C:8A
Authority key identifier: 0E:44:F1:33:F3:87:59:3A:AF:A2:BE:AB:38:88:49:04:FA:C9:BD:19
Certificate issuer: /CN=0e44f133f387593aafa2beab38884904fac9bd19
Certificate serial: 01969D874DCCAFC6AE590B4C40692D0D5952
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
Manifest number: 01AF
Signing time: Sun 04 May 2025 23:00:12 +0000
Manifest this update: Sun 04 May 2025 23:00:12 +0000
Manifest next update: Mon 05 May 2025 23:00:12 +0000
Files and hashes: 1: DkTxM_OHWTqvor6rOIhJBPrJvRk.crl (hash: 0JhWUjXU/xAEWUXNAcpdJHw48GpoJu8e0JdkEmDPD9Q=)
2: Wiv0DHdRF2zh8D5DY6J3_PLSV6Q.roa (hash: /xs5AGgsSlLOCnLD+1aaT+DfL+K36ivL9muQHygs7c4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:87:4d:cc:af:c6:ae:59:0b:4c:40:69:2d:0d:59:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e44f133f387593aafa2beab38884904fac9bd19
Validity
Not Before: May 4 23:00:12 2025 GMT
Not After : May 5 23:00:12 2025 GMT
Subject: CN=c46e6b5f1ce3cc6eb02e5e602a34434d37889c8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:61:18:b5:5a:9a:f1:e4:79:af:77:93:0c:32:
ce:0d:30:e5:1f:bf:bb:70:4d:95:0a:be:12:bf:ce:
bf:c3:c6:13:7a:fe:45:ea:9b:4f:7e:1e:6c:eb:85:
21:9e:f9:7c:a9:4f:1d:b9:c0:50:07:17:62:48:a0:
b1:9a:42:ae:59:c5:73:c9:c9:ae:f7:f3:ec:b0:ed:
f2:f2:34:ee:4f:96:82:0d:69:54:6d:b2:5a:54:00:
5c:38:ef:3d:18:bb:66:9f:33:09:e9:1b:95:6a:62:
40:4d:d5:b5:64:48:fe:a0:b3:6b:2e:b0:22:45:63:
14:59:71:49:ab:8c:c1:d8:ea:6e:d6:03:6e:1c:4b:
a6:14:bc:4a:d7:3d:a9:4b:16:21:53:7c:5b:8d:cc:
19:3c:bc:97:71:be:19:76:35:d9:ac:13:b6:27:19:
e9:aa:93:27:87:2e:ae:10:55:e4:6a:58:cd:2a:50:
61:1e:92:84:1b:1b:04:93:90:f7:fd:7d:54:a5:1d:
06:ed:71:67:fa:bc:40:87:07:f1:b6:2a:99:fb:7c:
ef:6c:1c:c9:14:ac:f1:0d:f8:aa:05:ca:e0:c1:78:
74:6c:ba:c3:8d:33:69:4f:25:fa:82:49:2d:1c:3b:
9d:bf:78:41:39:58:43:86:3c:99:66:12:a8:3f:cf:
a3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:6E:6B:5F:1C:E3:CC:6E:B0:2E:5E:60:2A:34:43:4D:37:88:9C:8A
X509v3 Authority Key Identifier:
keyid:0E:44:F1:33:F3:87:59:3A:AF:A2:BE:AB:38:88:49:04:FA:C9:BD:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:6d:cb:6e:14:1a:8b:fd:42:cd:11:f0:28:cc:4e:1b:c3:f1:
07:af:ee:b9:91:0a:43:e5:08:b7:2f:59:16:a3:8e:5d:70:01:
44:e9:32:3e:ff:f8:54:92:e2:3f:ed:3d:3e:2a:98:c3:d4:49:
14:5b:eb:8f:c7:f0:0e:f5:d3:6e:9a:17:d3:18:8f:a9:30:93:
7d:f0:0d:10:fb:3f:b3:6e:54:7d:8b:2e:07:1a:cb:d1:8b:ff:
89:50:c2:16:19:d3:be:c8:0e:a0:a4:de:1c:02:6d:67:d1:b3:
c6:0a:ac:12:10:3d:aa:1b:36:a6:c1:0b:09:f2:71:8f:31:5f:
28:6f:30:2d:fb:6f:c9:9d:b9:52:5c:76:ec:a1:d6:c6:c9:ea:
1a:a4:3b:7a:4b:d4:fe:1b:f7:1f:f6:0a:aa:03:19:6d:16:0a:
e2:b0:1a:9b:9a:f0:4f:ad:34:e9:9c:19:ff:d6:99:11:d5:24:
81:cd:ba:49:4d:a1:de:c9:e9:cf:7f:c8:cf:2c:12:39:40:a4:
0f:fd:06:5c:cd:d5:0a:a6:cc:d0:df:2e:9b:41:a7:64:74:03:
96:43:4a:c1:2a:73:fd:02:c0:3a:1d:e0:51:ba:4d:d2:44:6f:
0e:e4:2b:36:a8:e9:4b:ad:7f:ed:8a:47:dd:20:0a:cc:11:a9:
9f:9d:b2:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 03:40:38 2025 by rpki-client