Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
File: dHyzZv9uI99sCX9grcf6gHVZgZE.mft (raw, json)
Hash identifier: 8tG/25/tLa+4yNYIn3JY3bzktXz4LbAW//95Oi7UE4s=
Subject key identifier: 50:F4:3B:E5:B4:1E:DF:8B:CA:29:A5:FD:0D:89:D8:0D:C2:6F:3C:C5
Authority key identifier: 74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
Certificate issuer: /CN=747cb366ff6e23df6c097f60adc7fa8075598191
Certificate serial: 019779AFB27F9316BEB0297A325FC7F18C06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
Manifest number: 095D
Signing time: Mon 16 Jun 2025 17:00:47 +0000
Manifest this update: Mon 16 Jun 2025 17:00:47 +0000
Manifest next update: Tue 17 Jun 2025 17:00:47 +0000
Files and hashes: 1: _yLmchLwIYVTnPdJc9fw9h7BqNI.roa (hash: jQg4aqJLhfqC2o9cWdzjV4aGpmH8JtaZPWEi/oExAo8=)
2: dHyzZv9uI99sCX9grcf6gHVZgZE.crl (hash: IQrFOOjABufGwJY6YJTYv+b8/COFe7gVpq4YbqCfBgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 17:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:af:b2:7f:93:16:be:b0:29:7a:32:5f:c7:f1:8c:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=747cb366ff6e23df6c097f60adc7fa8075598191
Validity
Not Before: Jun 16 17:00:47 2025 GMT
Not After : Jun 17 17:00:47 2025 GMT
Subject: CN=50f43be5b41edf8bca29a5fd0d89d80dc26f3cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:26:9e:02:09:5a:bf:56:6c:5d:7e:e6:de:7f:
d3:06:8f:76:81:00:64:57:6c:e1:17:e2:1b:29:7c:
8a:15:68:f1:3f:02:6b:cd:60:86:5d:0d:8e:72:f1:
bc:60:39:13:2e:48:30:62:74:4a:36:ef:dd:1b:e1:
09:0b:1f:cc:18:e8:e3:28:95:85:66:c4:cb:2e:d1:
d2:ff:66:22:72:b4:ab:dc:62:25:b2:22:e8:71:13:
33:05:37:cc:a4:f6:21:ef:52:27:f5:0e:ac:c3:86:
46:77:85:2a:c6:76:0e:dc:b3:cc:0f:f5:b6:20:52:
58:56:00:68:c9:e3:a4:90:a5:15:e0:1c:2f:da:cb:
4f:a9:75:1d:98:e4:1f:0d:cb:b0:38:37:1d:f4:39:
80:04:1c:79:55:2c:f5:a3:0c:19:c5:ae:5b:0f:9a:
c9:97:7b:eb:df:ea:32:3b:55:a7:cc:68:7c:c4:75:
3d:57:33:f5:3f:56:57:62:2b:43:4f:81:9e:71:e0:
4e:69:c8:6a:01:3b:94:d4:4e:8e:59:5f:8f:0b:bd:
70:da:f9:c7:31:da:b3:1e:3c:c3:da:eb:59:0e:68:
f6:cf:86:e2:ca:da:69:b6:2e:a5:b4:eb:bb:d9:6b:
a6:3e:6a:19:6e:ed:b3:a1:f4:8f:61:37:a3:e9:5d:
65:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F4:3B:E5:B4:1E:DF:8B:CA:29:A5:FD:0D:89:D8:0D:C2:6F:3C:C5
X509v3 Authority Key Identifier:
keyid:74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:1f:6f:6a:92:7d:6a:b1:d6:b0:75:04:1b:7a:13:a3:7a:f5:
d9:d0:9f:5b:e6:7b:8c:4b:dd:e0:59:a3:03:18:5c:38:03:32:
56:80:ac:34:4c:1f:0a:cf:90:48:43:11:e7:f9:09:c1:a3:f1:
a9:ad:91:5b:9b:14:1b:cd:d4:9f:2a:5b:44:f2:4d:33:a4:88:
d0:34:a5:6c:b5:13:9e:23:5e:ed:63:fb:73:d9:9d:a6:14:e5:
9d:cd:dd:31:bc:ad:b3:90:4b:42:ee:45:c2:7d:78:52:d0:e1:
4b:42:65:1a:61:54:0f:4c:69:a9:fb:66:1f:2e:6a:dc:69:b3:
7b:e2:cd:62:94:63:80:6f:65:af:59:13:a5:3c:54:e1:97:94:
ca:17:0d:f0:b9:a7:e4:93:c4:35:e9:51:43:ae:df:4a:cb:b1:
2f:3f:c5:f1:91:15:d6:91:9e:0f:8f:e7:9f:87:db:04:cd:ee:
0a:32:19:c8:e0:12:8f:25:cb:1e:28:5d:25:5e:7f:7e:34:f7:
05:75:09:d2:fe:9d:75:cb:1e:86:71:cd:ff:80:31:d8:52:3f:
6a:e8:68:80:82:aa:04:76:25:ad:27:99:34:3a:0e:3a:a6:39:
d4:d0:cf:af:0e:91:02:ec:ee:bc:41:a8:a1:80:9e:33:c7:cd:
24:f5:e2:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 01:27:53 2025 by rpki-client