
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
File: dZxU7z8HSxxmiPmXVM2KONmfbKw.mft (raw, json)
Hash identifier: uWu7Owp/Xxyvrkv4wDsrNIN5f6woiwuZQIJ7wJJGVx0=
Subject key identifier: DB:65:75:23:AD:68:19:C9:A7:2D:BD:CF:13:E7:8C:CB:3D:57:4E:8D
Authority key identifier: 75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
Certificate issuer: /CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Certificate serial: 0198729848CD8F5DB64C4D50A1971DE1DE75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
Manifest number: 09B6
Signing time: Mon 04 Aug 2025 01:00:39 +0000
Manifest this update: Mon 04 Aug 2025 01:00:39 +0000
Manifest next update: Tue 05 Aug 2025 01:00:39 +0000
Files and hashes: 1: dZxU7z8HSxxmiPmXVM2KONmfbKw.crl (hash: 0y3E2vahV6HEK2haGS34+mzLixocMz38Ri5lBWxAHlM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:48:cd:8f:5d:b6:4c:4d:50:a1:97:1d:e1:de:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Validity
Not Before: Aug 4 01:00:39 2025 GMT
Not After : Aug 5 01:00:39 2025 GMT
Subject: CN=db657523ad6819c9a72dbdcf13e78ccb3d574e8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2a:3b:b6:d2:e5:8c:a6:a3:71:ac:1b:c5:f1:
b0:70:79:70:8a:94:21:8b:7b:8e:39:f4:2b:17:9e:
d9:4c:20:c5:0a:b8:95:bf:c5:f8:94:b0:7c:3a:fd:
6f:e2:69:1c:c0:b5:55:0d:cb:6a:06:da:9b:e7:86:
7d:13:37:44:50:4d:34:d3:a1:3b:53:46:d7:69:99:
16:2b:d9:e7:37:81:bf:0d:65:79:73:eb:4b:9a:dd:
8b:1e:93:d6:0b:b4:f7:34:00:fb:c9:9a:7c:cb:dc:
b9:b9:c5:bd:58:c0:28:65:53:1a:a2:ef:4c:14:46:
55:91:12:0e:0a:66:5e:bf:5b:50:e4:be:fa:6c:1e:
97:a6:cf:f4:6f:8f:b6:c1:1c:0b:75:ad:a8:0a:e4:
fb:1b:da:d1:99:74:43:e6:2f:34:92:d6:ca:14:bd:
e6:2e:d5:89:cf:5c:e5:e6:f3:42:63:17:13:a0:8b:
c8:6d:db:be:30:b7:d4:49:09:f7:bb:c2:e6:78:24:
14:9c:2f:9f:ef:d4:3e:29:65:cc:61:cf:69:11:04:
dd:23:fd:c4:88:6f:45:2c:a2:d8:49:8a:35:bd:88:
c5:11:ba:0c:04:00:59:25:37:d4:c4:8f:35:d6:fa:
ab:02:58:01:85:7f:91:d3:66:82:70:01:df:08:35:
02:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:65:75:23:AD:68:19:C9:A7:2D:BD:CF:13:E7:8C:CB:3D:57:4E:8D
X509v3 Authority Key Identifier:
keyid:75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:15:4c:a1:af:d0:e5:a7:ae:96:82:de:83:9e:e2:dd:85:7d:
17:42:e2:98:2e:f6:b0:21:0c:b2:a6:7b:45:b7:bc:20:a2:a5:
b5:b7:25:6e:70:d8:fc:b3:e8:91:f2:dd:5d:86:f1:ed:a9:91:
ef:28:c7:9e:2a:b8:69:68:5b:b8:cc:ae:c4:76:42:da:85:8e:
07:45:92:17:e8:9c:2e:c2:e3:7c:45:cd:fc:9f:73:4a:aa:fb:
aa:8d:99:38:ce:82:33:10:a8:0d:28:eb:b8:c3:28:01:01:20:
c2:55:b0:43:f7:dd:fa:d3:cc:28:74:7f:bb:f5:9b:a6:54:a9:
4c:17:a2:51:03:b2:cc:f7:6e:f5:7e:2c:9b:7a:51:66:9c:b2:
13:57:bc:96:73:9e:43:02:17:f7:38:a4:a2:4b:64:48:fc:1c:
36:d5:35:34:e7:d3:c9:49:dd:cc:39:80:e3:d4:70:b7:62:4e:
03:f6:b4:72:8d:43:31:6c:35:df:42:3b:bf:a0:c2:b0:fa:d8:
66:6a:e3:bb:0b:32:3e:5b:48:ec:0f:8d:55:cb:be:21:e5:e7:
7f:a9:73:dc:04:14:e0:ba:d1:af:b1:15:ad:13:76:88:05:f4:
73:9b:6f:e2:14:5e:70:db:5e:50:be:2a:ea:36:39:d5:db:0f:
f6:2e:07:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:06:20 2025 by rpki-client