Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.mft
File: DcHMqlhPs5FOeS_VOQ47otMDM4w.mft (raw, json)
Hash identifier: +7JoTk7cKzqb8krwJvq72LDDbJ7etbG9Q50Wl96epF0=
Subject key identifier: 2D:C2:51:BA:1C:69:F6:25:54:B2:99:E9:06:B7:0D:27:CF:AB:1A:2F
Authority key identifier: 0D:C1:CC:AA:58:4F:B3:91:4E:79:2F:D5:39:0E:3B:A2:D3:03:33:8C
Certificate issuer: /CN=0dc1ccaa584fb3914e792fd5390e3ba2d303338c
Certificate serial: 01977075AAC2F88AE1D2096F4A96EBA337A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DcHMqlhPs5FOeS_VOQ47otMDM4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.mft
Manifest number: 0F56
Signing time: Sat 14 Jun 2025 22:00:48 +0000
Manifest this update: Sat 14 Jun 2025 22:00:48 +0000
Manifest next update: Sun 15 Jun 2025 22:00:48 +0000
Files and hashes: 1: DcHMqlhPs5FOeS_VOQ47otMDM4w.crl (hash: KVnHs5oap+B3tnuntGGbw0iZ0R0RUER9AdX2U3l5Gfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.mft
rsync://rpki.ripe.net/repository/DEFAULT/DcHMqlhPs5FOeS_VOQ47otMDM4w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:75:aa:c2:f8:8a:e1:d2:09:6f:4a:96:eb:a3:37:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dc1ccaa584fb3914e792fd5390e3ba2d303338c
Validity
Not Before: Jun 14 22:00:48 2025 GMT
Not After : Jun 15 22:00:48 2025 GMT
Subject: CN=2dc251ba1c69f62554b299e906b70d27cfab1a2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:aa:30:be:71:f4:8a:1b:80:e1:5b:4b:76:be:
a5:bd:50:5c:ed:f5:fa:df:8a:c5:59:39:eb:74:3b:
4d:52:6e:aa:0b:aa:60:33:59:4e:0a:df:b2:7d:75:
c2:0b:da:3e:89:c8:fb:63:6e:0b:09:b0:a8:a2:35:
fa:2a:fc:69:35:be:91:b6:4d:88:71:78:bb:f4:83:
ee:72:2a:f4:2d:f4:4e:54:5b:d7:f4:a0:a2:0f:fb:
ac:ae:65:f9:cb:c4:72:8a:ac:3b:61:50:a3:6e:33:
29:f7:30:f1:ea:18:66:bd:23:79:dd:49:23:e3:e4:
0b:16:b6:f0:f9:9b:05:72:ce:df:f8:28:a5:57:55:
45:24:65:07:e0:aa:0e:9e:bb:be:50:b3:94:71:58:
64:9f:7f:ef:17:1c:44:ec:6c:5f:6c:52:8e:01:77:
76:80:25:a0:ab:8a:cd:0c:5d:52:7b:52:c2:a1:93:
09:cb:06:17:c6:bc:a1:9f:76:af:2b:de:6c:cb:d1:
10:ef:6e:eb:40:ff:4d:8c:81:63:0e:71:66:e2:f6:
b6:fe:c3:cf:da:fc:ce:62:c2:c4:59:4e:a6:90:f0:
0a:06:18:3b:b0:7d:6e:30:f4:4c:1c:e3:c7:8b:80:
71:31:84:3c:a5:ad:55:9c:83:cb:91:49:f3:36:49:
0f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:C2:51:BA:1C:69:F6:25:54:B2:99:E9:06:B7:0D:27:CF:AB:1A:2F
X509v3 Authority Key Identifier:
keyid:0D:C1:CC:AA:58:4F:B3:91:4E:79:2F:D5:39:0E:3B:A2:D3:03:33:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DcHMqlhPs5FOeS_VOQ47otMDM4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/23da1c-435c-4c83-a295-bf85cd25427e/1/DcHMqlhPs5FOeS_VOQ47otMDM4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:50:bc:a0:08:d0:98:c7:f9:d1:2d:26:f4:fb:54:9e:f7:4f:
fb:51:a0:78:c1:c6:d3:68:d7:77:8f:61:32:73:40:53:42:29:
4b:4c:29:57:3c:43:9c:44:b0:16:f8:69:35:08:38:f1:ee:be:
4f:90:1b:3c:13:6b:a1:59:62:87:7c:d3:c4:6e:74:34:45:44:
ff:ce:78:9a:28:bd:f8:a6:9e:e1:bd:12:b7:93:1f:28:ec:80:
06:f6:fa:07:a3:3c:73:55:93:d9:06:62:92:a0:5f:ee:fb:97:
83:93:4f:e2:11:a6:a2:85:83:a2:46:d9:cb:07:d4:c7:09:43:
1d:97:f0:f6:6f:ad:66:44:ab:81:26:9c:ef:18:b9:1d:a9:e9:
9c:47:4d:ef:6a:ac:5c:aa:f3:c9:67:71:ea:dd:4f:25:1c:bc:
50:d9:4b:3f:3c:95:3e:35:2f:d7:aa:f6:7d:d3:86:e8:38:78:
f1:9c:8c:62:28:93:a1:d5:86:fe:88:2f:9c:2d:8b:3e:f4:0e:
86:ad:bb:5c:e9:eb:7c:c7:65:b1:94:82:66:c9:f5:24:fd:37:
4a:0c:64:d2:14:92:17:c7:05:95:9c:66:5c:99:31:80:1a:d2:
5a:01:f3:8a:7b:7c:74:74:4c:ad:e3:66:e8:b9:c9:f0:ff:fa:
84:b4:13:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:56:58 2025 by rpki-client