
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
File: DXtk3YGIxSbrXrReqB6mqK-cWek.mft (raw, json)
Hash identifier: VlrRui4QIzZwj6CYsaYbC2okYUMY2+ny8OPyjB4PbNY=
Subject key identifier: 55:40:80:A4:A3:4F:93:29:42:12:E1:4A:56:A0:27:B4:93:1D:3E:9D
Authority key identifier: 0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
Certificate issuer: /CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Certificate serial: 0198744FB943F80F4FF674E87904468972AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
Manifest number: 029D
Signing time: Mon 04 Aug 2025 09:00:38 +0000
Manifest this update: Mon 04 Aug 2025 09:00:38 +0000
Manifest next update: Tue 05 Aug 2025 09:00:38 +0000
Files and hashes: 1: DXtk3YGIxSbrXrReqB6mqK-cWek.crl (hash: rPunJeieOM2F2yMgGFShGn+nl5aPzzlCSn/OT5vWEJc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:4f:b9:43:f8:0f:4f:f6:74:e8:79:04:46:89:72:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Validity
Not Before: Aug 4 09:00:38 2025 GMT
Not After : Aug 5 09:00:38 2025 GMT
Subject: CN=554080a4a34f93294212e14a56a027b4931d3e9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:62:39:ef:33:cc:fd:b5:96:81:b3:51:9c:13:
eb:35:5b:b5:f4:95:5a:2e:e6:86:c6:a7:82:b9:e5:
78:79:e5:78:23:42:a5:c1:14:38:ae:67:59:34:8f:
de:9c:c0:a6:1b:df:ce:ee:29:a3:1f:26:2e:61:9a:
e6:4a:c6:d8:0f:76:76:12:1c:86:b9:77:ca:72:5a:
8c:01:52:e8:ed:79:52:e0:dd:79:ad:ba:c9:0b:8f:
c2:78:21:ff:cc:51:8b:0d:6d:9c:3c:c1:ae:f1:74:
e3:c8:05:94:84:48:04:40:6c:ae:da:c6:11:07:be:
0c:c8:99:23:bd:38:12:2c:2e:36:3c:ea:c3:4c:50:
55:94:a7:eb:46:55:c9:44:99:b4:20:f8:8d:35:fa:
96:fa:c0:0d:eb:03:1b:29:72:0a:01:be:4d:7d:db:
93:fc:ac:24:1f:20:e5:d2:f7:21:3a:7e:9d:3d:a9:
af:1d:fe:ad:3d:26:fe:9f:62:ba:36:32:0d:a1:7e:
7b:65:78:b0:05:b0:e3:7c:8c:86:bc:68:36:c9:4e:
68:d2:b7:74:49:60:7a:61:cd:83:df:9c:d7:e7:aa:
db:c6:03:06:00:b9:8c:53:57:06:27:41:23:1d:58:
9e:89:51:ed:4b:5b:52:6b:c4:42:94:ae:ec:49:56:
16:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:40:80:A4:A3:4F:93:29:42:12:E1:4A:56:A0:27:B4:93:1D:3E:9D
X509v3 Authority Key Identifier:
keyid:0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:f7:65:8c:21:63:02:a9:aa:2a:19:d7:34:63:0b:c1:d0:31:
fb:42:98:0a:39:55:24:8c:99:fd:71:aa:fe:5b:d2:5d:41:1d:
bb:4a:85:4d:53:56:d7:e8:4d:96:b9:84:82:d2:d6:8c:c3:7c:
04:4b:1b:06:d8:d6:0b:0d:ec:99:5d:94:3d:7b:23:b4:64:3c:
93:72:00:7e:a0:c1:de:31:bc:23:8c:2f:fe:12:f6:3e:60:ca:
b8:38:a1:e7:b7:4f:57:66:a9:ff:00:d1:fe:e8:9c:07:14:fd:
2d:53:aa:b5:f4:f8:fc:eb:3b:96:9d:74:66:2f:cf:48:23:ec:
34:7a:c0:04:6a:81:79:06:19:a8:24:db:f6:84:e1:2d:15:5a:
7b:f7:da:fc:36:4b:6e:d7:40:f3:bc:d7:4c:ae:8b:1d:b5:33:
47:f6:e1:31:0a:b4:c2:42:d9:ed:cb:55:77:59:a9:2b:8e:13:
b6:69:1c:b2:20:71:03:d4:4b:4b:cd:7f:0c:f9:dc:87:e4:c2:
5f:01:2d:2f:b1:84:9a:d9:1e:5f:12:ec:50:77:a3:03:6d:91:
99:9d:6c:76:aa:84:49:6a:6c:7e:2f:d8:42:05:5e:8f:77:36:
ba:25:27:d1:7f:21:57:0b:59:c9:c7:ce:f4:32:ae:2b:58:d4:
dc:3e:90:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:04:08 2025 by rpki-client