Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
File: DXtk3YGIxSbrXrReqB6mqK-cWek.mft (raw, json)
Hash identifier: k4zvfGGAPFXZJnRpj2JrTrHwHjOWyVdp9ijxj+GSdmw=
Subject key identifier: 20:E6:15:5E:AD:67:F5:62:38:2D:11:FF:91:06:A1:AC:39:7A:E9:D1
Authority key identifier: 0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
Certificate issuer: /CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Certificate serial: 01976BBD66147DCBDDF6C9795E81FC323600
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
Manifest number: 0214
Signing time: Sat 14 Jun 2025 00:01:03 +0000
Manifest this update: Sat 14 Jun 2025 00:01:03 +0000
Manifest next update: Sun 15 Jun 2025 00:01:03 +0000
Files and hashes: 1: DXtk3YGIxSbrXrReqB6mqK-cWek.crl (hash: Sio0ndTWXeGHxA9PJDx9suOiBCATZQewKMSVr90jVqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:66:14:7d:cb:dd:f6:c9:79:5e:81:fc:32:36:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Validity
Not Before: Jun 14 00:01:03 2025 GMT
Not After : Jun 15 00:01:03 2025 GMT
Subject: CN=20e6155ead67f562382d11ff9106a1ac397ae9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:90:9a:40:c5:18:78:1d:ac:65:c2:ac:a1:98:
47:b5:af:ea:10:56:90:24:9e:ae:2d:08:b5:96:ad:
be:49:90:06:3e:61:26:a6:ea:2d:8a:3a:f0:8d:06:
be:be:c9:d2:d7:3a:f6:e1:98:83:6a:f4:c0:3d:d1:
b9:9e:2a:8f:67:03:30:c2:37:86:a0:0f:ce:06:89:
af:c7:ec:17:a8:b9:df:53:52:35:b6:ca:36:8d:f2:
85:c8:f4:ce:b9:6d:a0:07:95:87:4e:91:7d:98:40:
cd:78:ed:b2:02:84:e7:3c:2e:42:e8:f4:1b:d2:22:
8c:bc:31:2a:ef:d0:6d:d5:ca:a2:ad:f5:eb:a1:38:
d9:31:17:10:c5:f2:fd:7f:c4:bb:95:41:1e:90:44:
a6:3c:5a:8a:9f:d5:ec:74:fc:b9:d9:16:fd:8f:e1:
e5:e6:28:ba:2e:c0:a9:04:ca:e5:da:a0:7a:37:67:
28:0c:86:ce:99:33:a8:b6:10:7b:36:99:f0:fd:90:
89:9b:9f:1d:31:aa:e2:df:85:f4:01:76:a1:1c:b6:
76:7c:2c:75:4b:61:57:18:0c:5b:cb:b6:02:7a:a3:
08:18:89:83:79:bd:67:4c:c7:74:76:79:ee:d8:4c:
0a:52:54:cf:e2:3a:ef:72:0f:e2:ee:c2:a0:f4:5c:
f8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:E6:15:5E:AD:67:F5:62:38:2D:11:FF:91:06:A1:AC:39:7A:E9:D1
X509v3 Authority Key Identifier:
keyid:0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:af:98:0b:c8:25:5d:b0:87:11:30:7a:fc:0f:06:6f:e9:a2:
80:c3:f2:68:02:9c:49:86:47:91:be:34:58:77:53:55:ba:8e:
5a:5b:57:31:a3:a1:5f:6e:e4:ea:70:1e:6f:1f:bd:0b:f3:6d:
d3:b0:ab:7e:80:b8:1e:ad:2f:a5:f2:28:b7:54:99:92:70:4a:
f8:38:86:c3:45:58:2b:15:b5:e4:55:c5:d7:1c:46:45:d1:b6:
af:b4:6c:ab:a6:6b:f4:00:23:65:50:9d:85:74:12:82:02:a8:
fe:25:ed:59:93:2f:be:08:46:d0:f4:b7:df:57:07:36:f0:19:
2e:ff:74:f8:1a:cc:c9:b2:26:d1:0b:7a:3b:2f:7c:c9:0e:84:
c6:e2:39:1b:04:a2:1f:3c:da:e1:41:c4:aa:1f:0c:01:d3:2d:
23:8f:09:21:d4:0d:87:09:c8:3c:67:89:03:36:31:48:13:c3:
a1:e9:23:91:8c:b4:e7:ce:63:b4:eb:d8:6a:d0:79:34:94:fe:
8a:69:90:8d:e6:0b:fd:20:f7:34:b1:2a:d4:9c:94:c6:bf:a9:
a2:0d:a4:6c:23:c0:71:b0:cb:ec:af:3f:1e:9a:a3:50:01:75:
96:35:de:4b:66:87:fa:5f:76:a3:49:e9:82:77:a3:89:9b:46:
b5:d3:2a:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:13:42 2025 by rpki-client