Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/558afe-49fe-438e-bd37-f4fced35b352/1/Dkbx623dT_7-GDgAMCvmNs_pZTc.mft
File: Dkbx623dT_7-GDgAMCvmNs_pZTc.mft (raw, json)
Hash identifier: Y125lSBzakH2qT0ooKGPQs8nasX8DO2aBnn08shD0/E=
Subject key identifier: 9F:FC:0E:B6:EE:69:8F:38:4C:A1:28:42:8D:F2:3E:23:80:25:11:EF
Authority key identifier: 0E:46:F1:EB:6D:DD:4F:FE:FE:18:38:00:30:2B:E6:36:CF:E9:65:37
Certificate issuer: /CN=0e46f1eb6ddd4ffefe183800302be636cfe96537
Certificate serial: 0198D65F834E14D0457C0983603428E781E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dkbx623dT_7-GDgAMCvmNs_pZTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/558afe-49fe-438e-bd37-f4fced35b352/1/Dkbx623dT_7-GDgAMCvmNs_pZTc.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 10:00:40 +0000
Manifest this update: Sat 23 Aug 2025 10:00:40 +0000
Manifest next update: Sun 24 Aug 2025 10:00:40 +0000
Files and hashes: 1: Dkbx623dT_7-GDgAMCvmNs_pZTc.crl (hash: wzINChpXIdMFP9FoLoHiMMz2IIBQ1pQOfbxnDKqfqpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/558afe-49fe-438e-bd37-f4fced35b352/1/Dkbx623dT_7-GDgAMCvmNs_pZTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/558afe-49fe-438e-bd37-f4fced35b352/1/Dkbx623dT_7-GDgAMCvmNs_pZTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dkbx623dT_7-GDgAMCvmNs_pZTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:83:4e:14:d0:45:7c:09:83:60:34:28:e7:81:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e46f1eb6ddd4ffefe183800302be636cfe96537
Validity
Not Before: Aug 23 10:00:40 2025 GMT
Not After : Aug 24 10:00:40 2025 GMT
Subject: CN=9ffc0eb6ee698f384ca128428df23e23802511ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cb:79:fd:5b:e2:6c:0f:0c:f5:47:78:f3:2f:
af:f6:0b:2c:eb:fd:52:93:c1:31:83:a5:6a:6b:6a:
b1:87:10:6b:ce:d6:19:75:85:76:43:ca:2b:c3:4b:
a1:00:c5:9e:f7:d8:3a:c1:80:a4:00:84:57:bd:65:
e3:01:ff:9f:6c:70:f9:76:b0:61:e3:fb:00:20:b9:
2d:35:56:98:33:1c:28:80:26:f6:a6:7e:31:50:c5:
0d:36:7d:2c:13:a6:a9:e7:a8:02:d4:35:0f:5f:9a:
1d:7f:64:fe:5d:45:6b:bf:aa:43:86:ef:57:c4:db:
79:87:37:d5:e0:e9:a3:cf:aa:69:69:65:c6:ff:f1:
14:80:7a:76:c7:c6:2f:35:3a:22:89:60:bc:32:36:
7b:58:46:b1:22:7f:c3:f8:dd:f6:f3:c7:99:29:66:
8d:f3:22:79:2d:cb:08:4c:ab:46:d4:bd:30:db:90:
bc:75:9e:ad:19:ae:0c:7d:58:d9:6e:6d:bf:29:24:
0a:6f:8c:bf:48:c1:75:a4:a7:c6:88:05:69:68:c1:
94:15:63:56:46:25:0e:e3:2d:e8:b1:fd:a6:61:78:
8c:11:7b:32:d9:16:a2:08:4d:b0:30:d4:d8:e4:e6:
a7:32:25:76:25:cf:bc:75:a1:cd:03:0a:b2:84:84:
65:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:FC:0E:B6:EE:69:8F:38:4C:A1:28:42:8D:F2:3E:23:80:25:11:EF
X509v3 Authority Key Identifier:
keyid:0E:46:F1:EB:6D:DD:4F:FE:FE:18:38:00:30:2B:E6:36:CF:E9:65:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dkbx623dT_7-GDgAMCvmNs_pZTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/558afe-49fe-438e-bd37-f4fced35b352/1/Dkbx623dT_7-GDgAMCvmNs_pZTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/558afe-49fe-438e-bd37-f4fced35b352/1/Dkbx623dT_7-GDgAMCvmNs_pZTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:6b:13:24:93:27:2d:ef:29:ff:90:71:0a:7f:c3:a5:bc:5b:
1a:57:e7:5a:7c:63:fe:0d:1c:70:ba:9a:1c:e1:de:2e:9f:73:
e7:67:3d:2d:9b:cb:b0:44:59:8e:77:38:62:ad:5e:57:0f:92:
52:d2:3a:67:e4:36:ec:b5:21:e6:c4:5d:45:f9:61:72:b8:18:
08:d8:1f:5d:37:cf:b8:23:bb:9a:f3:26:72:7e:cb:2a:05:93:
c3:74:43:0a:c7:dc:53:1e:4d:e8:bc:dd:11:8f:28:a0:d7:3b:
b1:61:d5:a4:0e:d9:97:cd:ff:75:83:60:98:cb:4c:9e:b9:35:
4f:15:82:dc:91:d7:00:6f:55:6e:b0:98:76:43:67:97:89:93:
e7:a1:06:fa:c2:75:25:a3:72:2b:4f:e3:09:6f:41:8e:18:39:
67:0a:d3:c3:e5:79:1a:bf:90:56:65:04:b2:6a:b0:0f:b8:9c:
a4:1a:9a:07:c5:a3:a4:2a:e4:58:d9:56:8c:7f:64:0a:56:79:
b8:f4:69:77:d1:f2:ab:98:63:c2:b1:67:43:fb:99:4e:bc:cc:
f1:98:7c:b9:e0:0c:0e:d0:ce:c9:03:b7:12:f6:8e:72:b2:98:
f3:1a:d9:14:7e:b6:a9:cb:79:57:95:5a:69:ac:bb:7c:3e:1b:
d2:89:fd:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:47:36 2025 by rpki-client