Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json)
Hash identifier: z71nQquUmCCYo8625mLniDCGiatM+luUEL4CAhttzQ0=
Subject key identifier: DF:42:0A:50:CA:7F:C7:C7:32:54:23:23:FC:F2:CF:38:68:FC:3B:E1
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 019770AC5E73406457FD6B3E196DDFC1049F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
Manifest number: 1593
Signing time: Sat 14 Jun 2025 23:00:33 +0000
Manifest this update: Sat 14 Jun 2025 23:00:33 +0000
Manifest next update: Sun 15 Jun 2025 23:00:33 +0000
Files and hashes: 1: VGNUuwe-hqqAy7oOkHM2nEayK1o.roa (hash: PbhbER0ewQHcNx+5Jye/cmyEemdCt4HhzE4je62M8OM=)
2: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: 3rc0rxAUFutmi7inQwIWnFz/PQAQSVk3OTHi8/QEBTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:ac:5e:73:40:64:57:fd:6b:3e:19:6d:df:c1:04:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: Jun 14 23:00:33 2025 GMT
Not After : Jun 15 23:00:33 2025 GMT
Subject: CN=df420a50ca7fc7c732542323fcf2cf3868fc3be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4d:5a:81:1e:35:7a:df:a4:95:5b:19:3e:94:
60:4c:60:58:3b:2d:f7:da:57:b1:7a:aa:c1:be:f3:
1a:ac:2b:84:6e:61:67:67:d5:83:3c:45:7c:c3:9a:
a3:35:5a:cc:57:86:73:88:71:93:4e:b8:a4:04:6b:
f4:97:2c:be:3d:da:3d:cd:10:a1:1c:30:72:7f:c3:
35:4b:06:82:78:ad:7c:6c:b3:2c:7c:86:97:69:57:
03:3e:ef:81:8f:3d:42:43:76:4b:05:b1:d9:23:3a:
84:7c:a5:0e:fc:0b:98:81:21:2f:f0:b5:5f:c2:f5:
d1:96:35:5f:ba:37:11:b2:e8:3c:fe:75:c7:d2:92:
eb:7a:4f:df:53:7d:cb:b6:82:b3:94:34:57:a2:4f:
53:79:04:80:a3:1e:c8:37:53:f1:aa:fd:41:69:c1:
95:f3:39:40:0a:f3:a2:5d:69:4f:d7:e4:15:1f:40:
52:9d:99:f9:bf:89:be:5d:cf:25:72:b8:6a:2e:a2:
7e:43:da:55:3c:92:31:da:a0:6b:b8:fc:b0:65:70:
c0:5a:48:96:ad:77:48:7e:59:8e:96:db:bb:9b:c2:
70:0d:f4:e6:d8:7d:59:3c:59:c5:91:57:61:dd:86:
b7:cf:cf:6a:27:e4:f5:4b:91:08:db:98:57:e0:a0:
00:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:42:0A:50:CA:7F:C7:C7:32:54:23:23:FC:F2:CF:38:68:FC:3B:E1
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d7:04:5f:a3:46:96:a2:5d:6d:c5:36:84:01:e0:6b:01:bf:7d:
a8:86:f9:d9:65:d4:31:3f:e4:8c:f2:2b:63:f4:f7:c4:ef:b5:
a4:15:be:f6:12:a1:4f:a3:f3:12:a0:8f:e9:30:12:d7:bb:41:
ec:b6:a5:26:89:a7:99:a8:0a:af:38:f3:c2:6e:e5:89:4d:c7:
de:cb:ee:ab:5f:cc:7d:c7:b9:df:55:08:a5:13:3c:51:8e:94:
83:16:22:0f:d1:25:da:58:54:f0:9c:74:a8:f1:5c:db:cc:84:
3f:bc:9d:c2:2e:09:a5:70:12:b5:bb:c9:d8:7b:c7:a1:c1:e2:
94:29:0c:f1:ca:9a:a7:91:d1:77:e5:a5:a0:de:27:3e:b8:ad:
96:db:cd:a6:f8:b6:71:03:29:4d:47:3b:0c:bd:08:21:4d:4d:
23:ce:b2:5d:0f:5f:43:78:b7:12:86:de:af:8e:83:3f:1c:11:
5d:43:68:d8:9c:f0:b5:db:7c:ea:13:0b:2b:9e:a4:40:d8:14:
56:d6:53:f8:f3:91:f7:af:3a:8d:59:1f:ca:a4:97:87:a6:67:
04:d6:ce:91:4e:1c:d4:5a:5d:19:b3:bc:04:42:79:e4:2d:5f:
79:dd:08:f6:99:33:3b:30:9f:57:50:52:ea:47:21:e0:4b:84:
dd:f8:82:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 01:56:12 2025 by rpki-client