Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
File: DkGjlotidBs200i-DSyRxdSxM6I.mft (raw, json)
Hash identifier: eVzpTwhljPE+uzz8pPlH2AQObuTlzpI+ds0s3AtXvuM=
Subject key identifier: 73:B7:37:80:F2:B0:84:26:D8:FD:59:2B:50:03:33:D9:D9:63:CF:29
Authority key identifier: 0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2
Certificate issuer: /CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2
Certificate serial: 019897B7BFE21A7135760C15CC618DC790A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
Manifest number: 162A
Signing time: Mon 11 Aug 2025 06:00:58 +0000
Manifest this update: Mon 11 Aug 2025 06:00:58 +0000
Manifest next update: Tue 12 Aug 2025 06:00:58 +0000
Files and hashes: 1: DkGjlotidBs200i-DSyRxdSxM6I.crl (hash: DKYoT4gwBYiZ0oaBDrf5aC+JU18eDxyFjqZ2acKZwqM=)
2: nHnuu4F-Ic_WUkHgNlM9Go5lrwU.roa (hash: 5dkmrGwUAjAB3N+7M+2yibV5BDpF46oezVix+Yio7q4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:b7:bf:e2:1a:71:35:76:0c:15:cc:61:8d:c7:90:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2
Validity
Not Before: Aug 11 06:00:58 2025 GMT
Not After : Aug 12 06:00:58 2025 GMT
Subject: CN=73b73780f2b08426d8fd592b500333d9d963cf29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e1:7d:e9:6a:54:f7:cf:b3:36:81:82:f5:6e:
55:25:14:9e:bb:81:9d:a7:1d:05:1e:57:ec:92:e8:
bc:e8:d4:45:50:69:b3:02:4c:00:b6:cc:d5:d8:64:
85:63:b1:c2:c3:ba:19:02:b5:21:7b:a5:d9:f7:9d:
f8:2f:5e:1d:4c:8b:5a:54:ab:6e:4d:90:e1:5b:35:
67:f0:98:39:d7:d7:9e:7c:1d:d2:a3:3c:1d:bd:d2:
e6:fe:87:91:b8:34:23:e5:86:33:f2:95:36:81:30:
a4:14:ca:3f:dd:91:27:8e:81:b9:df:31:b8:33:b7:
dd:a9:58:8a:8f:15:e2:35:17:1b:96:59:18:bb:fc:
94:0d:27:50:d1:59:0e:d9:46:d6:fb:fd:4a:b1:7e:
b6:01:12:b4:ad:e7:34:0b:67:44:a4:11:6d:e3:c4:
fc:a7:de:27:7a:4a:a2:2e:b9:88:1e:87:7b:ba:d7:
e0:8d:c2:cb:0c:34:4b:2c:6c:ca:db:2b:28:98:13:
65:ca:35:3a:d8:9e:b4:19:04:12:68:cf:78:27:79:
1b:52:3e:78:5b:3d:78:53:4d:33:20:25:d8:e5:3f:
e9:11:18:9d:83:17:cb:b5:dd:1d:41:34:5a:5a:93:
b6:8c:4f:0e:d7:01:ea:a9:9c:05:52:21:66:ba:4a:
f4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B7:37:80:F2:B0:84:26:D8:FD:59:2B:50:03:33:D9:D9:63:CF:29
X509v3 Authority Key Identifier:
keyid:0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:83:06:9e:2d:31:d0:3d:a8:da:ec:4c:24:29:75:c3:54:39:
66:c4:70:bc:0e:d0:0a:b4:2e:12:5d:93:ca:6a:58:c0:17:46:
ea:d2:da:ce:8c:db:d3:c4:c9:fe:61:da:6d:86:a9:76:c4:b6:
98:56:bd:ab:0c:d5:a7:3f:41:4a:59:92:48:2a:19:5a:fc:42:
e2:96:ee:b8:8d:37:a3:dc:bb:f6:ee:c8:e9:2b:64:e0:d8:be:
79:33:9d:af:cd:05:6c:be:a4:0a:fe:3b:94:10:85:20:a5:e1:
c5:fa:7f:9f:fd:3d:3e:30:c2:fc:b4:d2:fa:4b:2c:36:08:84:
69:79:62:c8:03:88:98:33:57:b8:2c:78:07:7a:da:d5:0d:93:
db:ba:fe:89:51:f7:1b:48:c8:13:9e:c9:f9:ce:c5:73:9e:a8:
6a:b0:d9:5b:dc:77:a6:09:18:56:dd:cd:02:ab:c1:d2:99:b0:
82:50:a5:5d:b1:ea:b6:91:1a:55:c3:98:35:f6:f0:f0:ec:85:
a9:06:e2:14:c9:ec:54:b4:0a:f0:fc:a9:d3:50:7e:bd:23:e2:
9a:32:d1:ab:1d:fd:ea:72:a1:af:7d:c5:a6:92:51:66:f7:ad:
89:9c:d0:cc:75:62:17:11:9d:21:25:4c:59:f3:53:91:cc:d2:
b5:f5:2c:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:32:10 2025 by rpki-client