Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
File: dt0D59chnX68HyMPcGMtyRNvNBM.mft (raw, json)
Hash identifier: BN62HfozaV6Bhl++Aftlhymg+vubsBLjMTL4iAE4Yvo=
Subject key identifier: C9:43:81:4A:A4:A1:BD:FB:B8:3B:FE:E3:1B:40:03:74:FD:B4:42:D1
Authority key identifier: 76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13
Certificate issuer: /CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413
Certificate serial: 01976BF40E2363F9FA5B1D55FADFF81A3E52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
Manifest number: 049A
Signing time: Sat 14 Jun 2025 01:00:45 +0000
Manifest this update: Sat 14 Jun 2025 01:00:45 +0000
Manifest next update: Sun 15 Jun 2025 01:00:45 +0000
Files and hashes: 1: dt0D59chnX68HyMPcGMtyRNvNBM.crl (hash: cFitrYgKE6B9OOVIDyFfj3Fx+gvur0EosAtcX9J1L9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:0e:23:63:f9:fa:5b:1d:55:fa:df:f8:1a:3e:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413
Validity
Not Before: Jun 14 01:00:45 2025 GMT
Not After : Jun 15 01:00:45 2025 GMT
Subject: CN=c943814aa4a1bdfbb83bfee31b400374fdb442d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:67:65:a4:ee:1a:aa:fc:9d:bd:9d:14:8b:3f:
bb:0e:11:6d:6e:94:4f:58:3e:b5:f9:22:60:a3:2d:
b9:b4:d5:74:bb:d4:e4:3d:48:40:3d:2a:6a:26:5d:
fa:1f:a6:73:90:4a:3b:16:27:3b:7b:03:7a:2d:6e:
f9:17:56:95:8a:1a:e1:7c:b4:1a:4d:75:80:e6:b4:
1d:46:0d:66:53:90:6d:d5:30:13:74:60:f7:55:9b:
f3:ff:82:8b:29:c1:a7:f8:9b:af:58:dc:e3:7e:01:
a1:8d:c9:9d:82:d5:1d:4f:05:f8:df:4f:c6:19:2d:
6d:a4:ec:ba:b6:9b:c8:e1:0a:f8:8d:5b:ce:ff:78:
dc:79:bb:bd:89:ed:53:2f:07:69:aa:4d:05:97:ec:
5a:01:4b:65:01:e3:82:de:e3:6f:62:ac:e4:00:7d:
d8:39:ae:0c:68:06:aa:54:52:ab:ca:f0:de:86:2b:
b1:45:c0:aa:4b:65:5c:07:71:40:ae:95:43:1f:48:
85:33:86:d8:27:d0:3a:f5:c5:b2:bd:b6:d0:37:39:
90:30:8b:f4:cf:ae:7d:46:ea:e4:fd:e0:3d:3c:ce:
a5:60:fc:57:0a:09:de:87:10:dc:cc:88:97:85:9a:
65:21:d1:c8:fc:c5:41:8c:dd:4a:a1:fb:f8:49:83:
2d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:43:81:4A:A4:A1:BD:FB:B8:3B:FE:E3:1B:40:03:74:FD:B4:42:D1
X509v3 Authority Key Identifier:
keyid:76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:2e:59:d3:aa:54:c3:71:e0:6f:91:ae:0f:3d:e2:5b:fb:2d:
93:44:70:2e:b9:dc:12:77:c5:35:a5:38:41:b5:cc:e6:b7:84:
f7:e3:c7:0a:db:1d:a0:f5:ca:a6:4a:04:62:a3:73:1d:62:3d:
3a:b5:09:fe:cf:36:26:a0:2f:ec:89:69:c0:92:b2:2b:1b:22:
56:a9:33:27:e9:17:b6:8c:ef:54:4e:7b:c7:05:a8:b6:fe:4b:
a3:0d:50:b6:ee:74:7a:d9:12:38:e4:6c:fd:03:8e:87:31:fc:
bb:0c:51:54:c4:e4:4b:ef:ab:d1:1e:7c:f3:f3:17:ea:d8:8e:
77:7d:c7:07:0e:32:94:c6:d0:bd:8d:89:dc:6c:52:ee:98:e7:
48:2a:43:be:06:ea:04:62:9e:b6:2b:30:a0:bd:99:c0:b8:e6:
15:29:e0:ce:98:ea:72:8b:a5:75:80:d4:57:db:17:82:75:3a:
37:35:ae:61:21:6d:f8:0d:be:35:49:95:89:77:c6:4c:5b:d7:
77:3f:c9:f0:36:90:55:01:96:bf:fc:97:e7:ac:3a:c3:b9:07:
aa:9c:8a:05:c0:e1:e5:8b:3f:b6:c6:3b:8f:4b:cf:74:12:8b:
88:b7:fe:b9:d1:94:d1:17:91:f3:7e:28:b8:42:96:ee:b8:a8:
41:a2:23:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:19:24 2025 by rpki-client