Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
File: dy9i9-iZgXRBGAk19CuCo5mAotw.mft (raw, json)
Hash identifier: k3MMvtm3RGiRbJLKUMdxwZ6Me6nNggOxt0P+FFoZ5Uc=
Subject key identifier: 38:17:B2:04:4D:64:0B:3A:23:C0:9A:EE:55:23:31:21:E1:09:B3:68
Authority key identifier: 77:2F:62:F7:E8:99:81:74:41:18:09:35:F4:2B:82:A3:99:80:A2:DC
Certificate issuer: /CN=772f62f7e899817441180935f42b82a39980a2dc
Certificate serial: 019780C4999CBA0E9C929839F3E8D045C501
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
Manifest number: 0443
Signing time: Wed 18 Jun 2025 02:00:57 +0000
Manifest this update: Wed 18 Jun 2025 02:00:57 +0000
Manifest next update: Thu 19 Jun 2025 02:00:57 +0000
Files and hashes: 1: dy9i9-iZgXRBGAk19CuCo5mAotw.crl (hash: pEFHS6nwS0un4dWSL/jixzZVdwUHUMaqcUfraJWbRRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:80:c4:99:9c:ba:0e:9c:92:98:39:f3:e8:d0:45:c5:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f62f7e899817441180935f42b82a39980a2dc
Validity
Not Before: Jun 18 02:00:57 2025 GMT
Not After : Jun 19 02:00:57 2025 GMT
Subject: CN=3817b2044d640b3a23c09aee55233121e109b368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f9:55:c3:a6:a2:1e:62:bd:5b:ad:ad:14:ec:
da:b2:bd:5a:26:2f:d6:87:03:b0:09:d7:d1:21:cd:
c8:84:68:22:14:3d:0d:47:64:80:a1:6d:f5:5e:8e:
35:c0:ef:32:d1:d7:78:78:44:72:83:c8:af:27:2e:
a4:56:92:d6:e0:30:01:00:a9:f4:1d:57:f3:6e:4d:
12:9e:ba:4c:dd:86:72:09:20:02:19:3e:a6:2b:be:
4c:9c:40:f2:a3:9f:ae:0a:be:62:fa:42:fc:96:00:
77:cf:60:96:3f:ff:b3:f5:cd:99:01:7b:04:f5:af:
be:8f:8d:48:38:19:0b:b9:78:b3:56:54:3c:eb:59:
e3:32:08:79:70:47:3e:b7:c8:d2:c0:ef:df:fc:13:
16:27:b4:ce:5a:80:88:ce:ce:02:47:d3:d1:31:81:
7e:4b:20:b9:1c:3d:ce:60:6f:16:9f:d8:66:2f:05:
ba:2f:26:94:fe:e4:2e:53:fc:5d:df:85:60:26:37:
7f:c0:57:b6:1e:49:cd:95:28:6c:dd:0a:b7:5b:fd:
70:25:e3:dd:a2:11:87:5f:1b:03:a0:5c:b8:94:f6:
99:5e:45:ec:e3:c9:cb:43:91:53:1e:f7:8c:e8:f2:
02:3c:5b:36:8a:ed:2a:89:92:51:14:12:f5:81:4d:
cc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:17:B2:04:4D:64:0B:3A:23:C0:9A:EE:55:23:31:21:E1:09:B3:68
X509v3 Authority Key Identifier:
keyid:77:2F:62:F7:E8:99:81:74:41:18:09:35:F4:2B:82:A3:99:80:A2:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:a7:94:22:d9:ce:f3:ab:d1:7e:2d:34:bc:b6:81:80:44:0e:
23:2a:b3:ad:f9:21:0e:bc:a9:5d:6d:e3:53:89:df:57:55:4a:
6e:c5:a7:74:6c:c6:5a:af:77:c1:b1:2b:30:80:c6:57:f5:39:
2c:0e:b7:e3:7e:de:c9:5c:c0:4d:31:de:f2:ab:c2:89:10:f8:
70:8b:70:f6:f4:ee:52:5d:7c:d8:a2:b6:84:63:27:d0:eb:61:
e8:66:8a:f1:82:03:ce:60:1c:d0:0c:dc:e6:ff:1f:ec:ce:c4:
76:01:94:3c:77:6f:a8:ae:96:4c:61:09:b4:7a:80:c0:40:93:
7d:f0:22:66:58:c4:47:83:3c:01:fe:9e:de:62:82:9b:e8:5f:
e5:71:36:f2:94:4a:65:0a:04:35:e2:cc:a2:97:c1:9e:cf:70:
3e:59:15:aa:1e:f0:47:09:42:82:7e:aa:59:4a:14:6c:68:a7:
80:6b:87:7a:38:08:93:7e:5c:77:ba:0c:c5:50:6d:af:2e:e7:
43:80:57:6d:7f:33:ab:0e:66:c8:a8:c7:7c:97:0e:e8:ec:c6:
3b:49:35:eb:02:f0:b0:a2:5c:8b:a0:63:d0:85:8d:2c:88:c5:
de:56:2b:bf:ef:2c:2e:64:64:a9:3c:c7:8d:19:81:68:90:6f:
e5:ad:4a:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 05:30:12 2025 by rpki-client