Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
File: dQRxYHUyqMev1g1PMXqtxJDrogY.mft (raw, json)
Hash identifier: mGuVq3QP0iT+r94tebVW3yQ16Gc0ypvybkQ2LXrHeZE=
Subject key identifier: E2:BB:76:28:77:24:0B:55:01:13:49:D4:E1:F4:25:8B:DF:82:91:D8
Authority key identifier: 75:04:71:60:75:32:A8:C7:AF:D6:0D:4F:31:7A:AD:C4:90:EB:A2:06
Certificate issuer: /CN=750471607532a8c7afd60d4f317aadc490eba206
Certificate serial: 01976D3D54655661A70FA995E3451B73EF9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
Manifest number: 158B
Signing time: Sat 14 Jun 2025 07:00:25 +0000
Manifest this update: Sat 14 Jun 2025 07:00:25 +0000
Manifest next update: Sun 15 Jun 2025 07:00:25 +0000
Files and hashes: 1: dQRxYHUyqMev1g1PMXqtxJDrogY.crl (hash: 4nh8aHeeh4S/uJn3fhP6TVRvYK2R3DpoXGK2eG0ztq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:54:65:56:61:a7:0f:a9:95:e3:45:1b:73:ef:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=750471607532a8c7afd60d4f317aadc490eba206
Validity
Not Before: Jun 14 07:00:25 2025 GMT
Not After : Jun 15 07:00:25 2025 GMT
Subject: CN=e2bb762877240b55011349d4e1f4258bdf8291d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c5:3f:c6:26:ff:5a:e6:fc:c4:43:75:1f:21:
47:a5:ff:f2:ba:aa:41:9e:ea:98:40:fd:13:c8:a7:
27:9d:67:b2:ba:a4:7f:c6:a9:16:23:01:84:b2:12:
21:50:58:19:63:df:f6:0f:0b:8d:32:1f:98:50:ab:
d5:20:da:28:7b:e5:c2:26:29:27:b6:52:60:d1:7e:
7d:9e:6c:5a:f6:75:ed:4d:87:e3:26:ee:8d:78:2a:
b1:7a:4e:cf:d5:f8:79:ba:a8:01:15:58:dc:9c:e8:
2e:f9:5a:1f:29:11:c5:6b:b8:a6:42:b5:25:5b:5b:
6c:d2:8f:6e:97:18:57:ad:c3:0a:a8:cc:70:d6:62:
1e:d6:60:20:38:68:4d:b0:41:39:11:fb:05:ec:0a:
1e:68:80:93:c4:aa:ab:c7:a6:94:5b:d3:e4:ba:8f:
78:b9:c5:10:2c:34:40:1c:d3:6b:8a:ee:d3:22:58:
de:dc:41:c1:b6:64:c2:2c:ae:7b:54:7f:22:14:54:
a6:97:40:08:15:1f:70:ff:86:8d:b2:b1:79:1e:ac:
cb:c4:cb:1b:d4:32:db:01:fe:f2:a6:ba:32:23:42:
d0:7a:66:3a:e3:dd:7b:8f:e0:b2:67:5e:ba:ea:d8:
58:3c:b6:8a:8a:4c:70:02:c5:54:47:ec:bd:72:22:
4b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:BB:76:28:77:24:0B:55:01:13:49:D4:E1:F4:25:8B:DF:82:91:D8
X509v3 Authority Key Identifier:
keyid:75:04:71:60:75:32:A8:C7:AF:D6:0D:4F:31:7A:AD:C4:90:EB:A2:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:be:ac:2d:a2:f7:41:99:0e:7c:59:09:70:9f:9e:4c:ac:1e:
27:8d:f2:4e:31:33:23:55:c1:02:05:db:6f:a9:7d:85:56:49:
c0:c2:26:94:b2:01:cb:e1:95:59:cf:1d:fa:86:79:fe:25:24:
b5:e8:20:66:b9:9e:b5:79:31:fe:4e:6f:6c:58:0e:31:e9:df:
8c:d1:ff:1d:34:cc:62:3a:1c:b0:42:d7:42:ba:f5:c2:9f:65:
27:5d:5e:36:20:be:a4:1f:7d:11:53:b4:b1:fd:43:00:fe:2b:
05:e9:05:09:1f:65:e8:4a:5a:41:a2:57:f1:2d:6d:62:79:89:
8c:95:50:f0:3c:de:65:bb:0d:de:85:ea:47:ad:31:93:2c:a0:
02:e4:3b:e3:a4:b1:34:25:68:09:f5:18:91:e4:68:94:24:00:
d0:ea:54:bc:57:84:75:d0:04:bc:08:73:94:23:e0:3b:01:3f:
e5:8a:1d:73:fc:5e:81:90:e4:87:5e:67:6a:0d:74:12:d9:ec:
4b:ec:a6:1f:45:1f:66:ec:2c:7d:cb:0e:01:6f:96:2c:42:74:
9f:47:d7:e1:10:94:0b:ea:a0:b5:24:14:95:0b:02:0d:9e:d9:
79:d8:97:ef:7d:f6:27:85:53:f6:19:01:d3:58:73:9b:1e:06:
0a:a6:d4:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:09:16 2025 by rpki-client