Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
File: DpXDrONm20G83CVsXVs75JCk92E.mft (raw, json)
Hash identifier: NO0q9XvPheMVYkW9fXbCb6yBgWQaWjQOq2SShFbgggQ=
Subject key identifier: EF:75:3F:38:23:00:37:EC:E7:6C:AD:96:AB:59:BC:6A:DE:23:E4:23
Authority key identifier: 0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
Certificate issuer: /CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Certificate serial: 01976997CF044F303522F6006C2FB5CDE9F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
Manifest number: 09E5
Signing time: Fri 13 Jun 2025 14:00:46 +0000
Manifest this update: Fri 13 Jun 2025 14:00:46 +0000
Manifest next update: Sat 14 Jun 2025 14:00:46 +0000
Files and hashes: 1: 1ILl-_jBl8vTjilNwWyLb_6kN84.roa (hash: ecF4kJW8L9z29VWA5l2Xp4iuCOJ3lYvBbDFUMxXyKfo=)
2: DpXDrONm20G83CVsXVs75JCk92E.crl (hash: zUjzgGjPRDSjU+LUmR6xwQ8jpCuEixXZd+gFQTpWQEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:cf:04:4f:30:35:22:f6:00:6c:2f:b5:cd:e9:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Validity
Not Before: Jun 13 14:00:46 2025 GMT
Not After : Jun 14 14:00:46 2025 GMT
Subject: CN=ef753f38230037ece76cad96ab59bc6ade23e423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3f:36:03:cc:31:da:2c:07:e6:08:00:2e:90:
11:ab:b4:76:67:d3:96:35:e2:0f:64:a0:fb:03:9a:
4a:fd:80:52:2d:af:e9:f5:79:94:0e:28:59:39:96:
24:82:5c:00:de:46:78:96:1f:fc:c8:76:f8:2e:b8:
30:a0:c3:9c:82:5d:c9:81:3c:96:5e:c0:24:5d:67:
3f:f0:87:cd:c4:b7:f5:c4:39:3b:ab:e2:4e:c0:64:
a5:9c:f1:88:e8:78:a3:d2:54:4b:0b:45:e5:94:e1:
90:8c:95:0f:2b:3c:e3:2f:fb:5d:9b:26:22:7c:f7:
bb:1f:35:e0:92:1e:8b:c6:6f:8f:58:22:9a:dc:46:
06:09:af:d9:59:32:c5:a9:a8:32:45:54:6b:cf:4a:
c7:09:ad:e4:ea:ef:93:4c:f6:c6:b8:22:20:f9:6e:
d7:c9:ab:a4:50:43:cf:2a:31:1f:ac:9f:ab:a2:25:
c5:e6:5d:14:cd:86:f0:44:b2:cd:66:fc:dc:6c:48:
f1:74:e5:35:4c:8f:45:39:76:4b:a7:36:93:8d:4b:
b3:07:9d:42:4d:8a:46:d4:43:12:c1:e7:a2:79:cf:
12:d7:d6:de:02:fc:95:e1:4e:98:13:47:30:eb:83:
f9:a7:8c:c7:89:91:6a:31:a3:02:e6:39:57:37:af:
52:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:75:3F:38:23:00:37:EC:E7:6C:AD:96:AB:59:BC:6A:DE:23:E4:23
X509v3 Authority Key Identifier:
keyid:0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:fe:f1:cc:18:1f:10:2d:a2:1d:bb:d0:55:87:11:1e:74:7b:
fe:91:b4:98:b7:d0:34:d0:2f:f7:e3:55:d7:23:b1:85:b5:e8:
75:ba:52:a6:d1:e8:f8:75:57:55:7a:0b:5d:5a:72:ca:cf:ce:
58:a0:66:0a:14:a1:87:e0:b0:7f:dc:fb:b6:67:71:dc:22:95:
8e:52:68:71:09:27:bd:20:ca:6f:40:41:24:d0:67:c5:4c:37:
46:1b:e6:7f:f7:3f:e8:13:83:0f:7a:ee:66:28:20:20:0b:36:
13:41:eb:d0:92:00:59:8f:70:42:5d:8f:a2:9d:25:5e:26:6f:
d9:48:73:7d:42:20:e1:ab:e9:86:95:ce:ea:38:f3:c7:e8:78:
de:ba:f7:ef:13:34:d9:6d:a8:73:69:5d:38:24:97:ac:d2:4c:
79:00:6f:75:d4:8c:bd:2a:d6:f5:64:18:0c:e1:94:ff:3a:6d:
d9:18:52:e3:af:10:71:82:db:a4:03:55:b4:f0:4a:e6:39:5e:
b3:a6:b9:43:a8:a2:e7:28:18:33:0f:88:f4:5e:21:89:45:a7:
0b:14:72:34:15:ce:67:16:e5:67:26:12:85:60:97:4c:05:54:
ba:48:47:cc:cd:f1:07:c7:18:ce:13:7e:5d:85:1b:0e:d3:c8:
7f:26:92:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:28:57 2025 by rpki-client