Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
File: dCnR70knCBDhAgzqhhmGQjORMaA.mft (raw, json)
Hash identifier: /X2XhyCHGWcpVitqEdCFmp8LdScb9jsjWVfqOea6PIE=
Subject key identifier: 6A:D8:E4:8E:55:48:64:E8:E0:5E:2B:FA:AD:46:CC:DC:BD:42:7F:64
Authority key identifier: 74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
Certificate issuer: /CN=7429d1ef49270810e1020cea86198642339131a0
Certificate serial: 01976D3DB2167A4721560AB580E101CC4B8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
Manifest number: 0A5B
Signing time: Sat 14 Jun 2025 07:00:49 +0000
Manifest this update: Sat 14 Jun 2025 07:00:49 +0000
Manifest next update: Sun 15 Jun 2025 07:00:49 +0000
Files and hashes: 1: dCnR70knCBDhAgzqhhmGQjORMaA.crl (hash: vAYTb10QLJhoIwCfi2J4bO4f+8gf60F8J5GSLNfuao8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:b2:16:7a:47:21:56:0a:b5:80:e1:01:cc:4b:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7429d1ef49270810e1020cea86198642339131a0
Validity
Not Before: Jun 14 07:00:49 2025 GMT
Not After : Jun 15 07:00:49 2025 GMT
Subject: CN=6ad8e48e554864e8e05e2bfaad46ccdcbd427f64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:26:70:05:fb:de:37:71:6b:e4:e1:df:94:71:
ab:94:94:b0:20:ff:dd:30:bc:49:46:4e:fe:0b:fc:
02:dc:6c:ee:a7:6c:de:c7:3b:38:5e:40:9e:e5:70:
05:12:9b:2c:af:9e:59:dc:3e:10:11:08:c3:86:76:
a2:6b:ca:c5:3f:24:20:3d:b3:e2:b6:1a:b3:12:cd:
e7:ac:cb:77:bc:76:f0:e8:5c:a1:2a:59:79:5b:31:
77:9d:5b:a7:5e:20:6b:4b:88:43:06:53:3a:53:ed:
ac:4f:80:4d:fe:64:28:21:54:c6:48:93:08:2c:2f:
da:3e:85:52:75:69:95:b4:af:43:33:d9:4b:49:d5:
03:b6:53:cc:9a:83:83:b8:1c:bd:79:48:9c:89:c6:
61:87:d8:0d:15:59:20:d5:3f:9b:75:47:19:b1:30:
0d:86:c2:bb:ff:3c:7a:6e:a0:0a:1b:d7:ef:42:65:
2b:40:6f:55:41:51:7c:6f:85:a6:34:a8:e8:cf:86:
12:7a:2d:0f:05:a7:a0:18:5b:4b:76:37:20:98:28:
ec:37:94:29:3a:da:c5:0a:66:13:03:37:97:9e:8a:
b8:d1:61:07:f3:eb:5d:41:f5:ce:4a:0d:d9:c4:96:
29:4d:d6:f1:cf:59:d9:d1:ee:ec:b9:57:2e:0c:39:
c8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D8:E4:8E:55:48:64:E8:E0:5E:2B:FA:AD:46:CC:DC:BD:42:7F:64
X509v3 Authority Key Identifier:
keyid:74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:4d:f0:7d:a3:62:2a:5a:ee:c6:fb:8e:a2:3d:7b:1f:99:cb:
4c:a9:f7:40:d5:a5:5e:49:fe:f0:e3:e1:ac:19:23:e2:03:ce:
71:88:49:ca:87:31:44:20:00:4b:41:cb:80:e7:fd:c2:82:e7:
81:c8:a6:95:99:e2:26:63:12:a4:ad:5c:f5:b8:be:a7:d6:f2:
dd:60:fa:37:8d:63:cb:90:3e:77:0c:a8:38:ef:bd:d6:c2:c2:
91:cd:d5:95:ac:be:8e:b5:1c:13:7d:98:32:a0:49:46:75:e6:
a6:75:49:44:e7:08:71:37:3b:8c:35:85:61:1d:5d:a4:52:13:
e1:cd:6d:7e:d8:a7:6c:3a:6c:1f:a5:a5:54:92:7a:e8:f3:02:
95:84:cf:95:fe:17:b6:2f:2d:54:d5:1c:2a:44:69:71:da:16:
71:93:ae:9b:89:c5:d6:4f:42:49:ae:99:cc:b5:03:86:8f:fc:
62:a2:4d:86:21:ca:91:e7:d5:1f:7d:dd:68:f2:16:ac:b7:c2:
7b:ff:7b:c7:7d:66:4b:b6:b2:41:f8:02:ca:16:3b:37:e0:66:
49:85:a8:c9:c7:08:4a:7a:82:b8:1f:5a:75:f2:59:bc:00:3c:
f4:0e:ae:fe:1d:ae:f4:a0:39:ba:84:e4:b6:cf:3b:fd:9b:08:
c5:23:fd:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:22:11 2025 by rpki-client