Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
File: 0DjDOLEo-Drewvadk8MsU1PKA5g.mft (raw, json)
Hash identifier: p5xSyRW+5h+NYtYSLjFsm3a94oJSVjlP7/JGSsniRx0=
Subject key identifier: 4C:B4:3C:B7:DD:56:FF:75:7A:0D:57:CC:45:1C:1D:72:5B:FE:19:B4
Authority key identifier: D0:38:C3:38:B1:28:F8:3A:DE:C2:F6:9D:93:C3:2C:53:53:CA:03:98
Certificate issuer: /CN=d038c338b128f83adec2f69d93c32c5353ca0398
Certificate serial: 019768BC625932994D5E54C8B503F40CA87A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
Manifest number: 1229
Signing time: Fri 13 Jun 2025 10:01:05 +0000
Manifest this update: Fri 13 Jun 2025 10:01:05 +0000
Manifest next update: Sat 14 Jun 2025 10:01:05 +0000
Files and hashes: 1: 0DjDOLEo-Drewvadk8MsU1PKA5g.crl (hash: HY9K4qIEwWofiinJQ2ZzrlQMkeDOoXI9M13IEoM91oI=)
2: 7PD1wIgjrZ9T9-fQhjLFUrZGUJE.roa (hash: 8HGos2aeHkG0saEvUQyEseTwmsTJnTnE4JuY9jxzUVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bc:62:59:32:99:4d:5e:54:c8:b5:03:f4:0c:a8:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d038c338b128f83adec2f69d93c32c5353ca0398
Validity
Not Before: Jun 13 10:01:05 2025 GMT
Not After : Jun 14 10:01:05 2025 GMT
Subject: CN=4cb43cb7dd56ff757a0d57cc451c1d725bfe19b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:92:0a:08:7f:50:7d:22:f8:c8:b2:49:c1:f4:
37:42:4c:28:1d:b9:03:0b:d1:55:73:4c:df:ff:e5:
c0:6d:c1:48:c0:c2:b9:c9:66:10:3a:cb:65:12:b2:
ee:8f:5f:d7:e7:02:43:f6:aa:95:6b:94:40:11:89:
3a:24:fa:e2:e0:06:0a:cb:da:bc:d4:b5:ce:31:c3:
d4:3d:22:57:31:f8:0f:50:27:9e:65:a4:2c:9e:51:
63:27:87:9d:74:16:a7:d5:f8:8d:0a:41:75:cf:5b:
61:a0:07:7f:18:45:21:26:1b:9f:69:b8:40:0f:db:
3c:b6:6d:46:cb:1a:08:17:fd:2f:ea:2a:fd:1d:06:
cd:20:0e:8d:14:a7:17:ae:b9:07:9a:08:2f:2f:59:
a6:fd:ed:93:79:b1:25:58:59:0f:d7:cb:ea:9e:2d:
17:a9:11:8e:e5:94:45:cf:3c:c8:92:a1:85:75:46:
9c:32:01:31:3f:78:d9:2b:c5:b8:d8:83:87:a8:d8:
be:fe:c6:15:94:e6:dc:6b:bf:59:fe:d3:93:a4:fd:
34:4e:a9:f8:e2:ae:d9:e5:42:36:b7:51:56:2c:27:
58:a3:dd:a9:7b:3a:86:d7:d7:0a:7e:a2:8d:2e:38:
0d:0c:79:c7:ee:92:d4:45:f2:8b:3b:0f:4f:9d:ce:
87:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B4:3C:B7:DD:56:FF:75:7A:0D:57:CC:45:1C:1D:72:5B:FE:19:B4
X509v3 Authority Key Identifier:
keyid:D0:38:C3:38:B1:28:F8:3A:DE:C2:F6:9D:93:C3:2C:53:53:CA:03:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:45:a3:40:53:95:83:28:de:fe:f3:c4:ff:14:17:1b:0a:6f:
48:20:9b:e0:a7:ad:13:90:04:c8:1d:21:07:a4:12:b5:0f:8b:
81:c5:3c:fd:ef:a7:a9:b6:c1:11:ec:ba:1b:a7:54:92:2e:97:
26:ba:da:e8:1e:dc:44:e0:af:fc:06:12:54:ac:fc:07:b6:2c:
26:47:0a:ad:22:40:cb:66:8f:cf:3d:eb:fe:8d:00:ad:b5:f6:
f8:f7:30:91:1b:42:bb:e5:1b:71:37:16:e0:30:83:a0:36:d4:
22:80:d1:f0:aa:8f:e7:15:cd:0c:77:3a:b1:4f:a7:a7:29:8e:
be:b5:c7:9b:ce:ad:3e:3e:4f:89:af:1d:b3:0e:f4:81:70:b8:
ad:d9:94:05:88:b1:e0:7a:13:07:a6:a7:b7:84:4d:60:65:17:
13:84:ac:04:ac:65:6f:dd:00:52:8a:44:ba:fc:9a:58:a2:20:
eb:b4:00:11:4f:63:84:be:01:30:30:11:c4:8b:a5:7a:67:04:
53:a7:15:f6:9e:e6:9b:18:87:81:f8:f5:cb:de:78:26:3e:65:
ac:00:74:79:53:3f:59:b1:03:28:31:14:67:6f:ff:72:47:bf:
ce:5b:2e:94:f7:87:ef:9c:6a:f7:5f:a5:49:d6:5f:53:31:b0:
a0:a1:aa:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdovGJZMplNXlTItQP0DKh6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwMzhjMzM4YjEyOGY4M2FkZWMyZjY5ZDkzYzMyYzUzNTNj
YTAzOTgwHhcNMjUwNjEzMTAwMTA1WhcNMjUwNjE0MTAwMTA1WjAzMTEwLwYDVQQD
Eyg0Y2I0M2NiN2RkNTZmZjc1N2EwZDU3Y2M0NTFjMWQ3MjViZmUxOWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5IKCH9QfSL4yLJJwfQ3QkwoHbkD
C9FVc0zf/+XAbcFIwMK5yWYQOstlErLuj1/X5wJD9qqVa5RAEYk6JPri4AYKy9q8
1LXOMcPUPSJXMfgPUCeeZaQsnlFjJ4eddBan1fiNCkF1z1thoAd/GEUhJhufabhA
D9s8tm1GyxoIF/0v6ir9HQbNIA6NFKcXrrkHmggvL1mm/e2TebElWFkP18vqni0X
qRGO5ZRFzzzIkqGFdUacMgExP3jZK8W42IOHqNi+/sYVlObca79Z/tOTpP00Tqn4
4q7Z5UI2t1FWLCdYo92pezqG19cKfqKNLjgNDHnH7pLURfKLOw9Pnc6H0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEy0PLfdVv91eg1XzEUcHXJb/hm0MB8GA1UdIwQY
MBaAFNA4wzixKPg63sL2nZPDLFNTygOYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMERqRE9MRW8tRHJld3ZhZGs4TXNVMVBLQTVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS85MjVmOTEtMzBjNS00YTZiLWExNDkt
OWJmOGIxZWYyZTk2LzEvMERqRE9MRW8tRHJld3ZhZGs4TXNVMVBLQTVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS85MjVmOTEtMzBjNS00YTZiLWExNDktOWJmOGIxZWYyZTk2
LzEvMERqRE9MRW8tRHJld3ZhZGs4TXNVMVBLQTVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHEWjQFOV
gyje/vPE/xQXGwpvSCCb4KetE5AEyB0hB6QStQ+LgcU8/e+nqbbBEey6G6dUki6X
Jrra6B7cROCv/AYSVKz8B7YsJkcKrSJAy2aPzz3r/o0ArbX2+PcwkRtCu+UbcTcW
4DCDoDbUIoDR8KqP5xXNDHc6sU+npymOvrXHm86tPj5Pia8dsw70gXC4rdmUBYix
4HoTB6ant4RNYGUXE4SsBKxlb90AUopEuvyaWKIg67QAEU9jhL4BMDARxIulemcE
U6cV9p7mmxiHgfj1y954Jj5lrAB0eVM/WbEDKDEUZ2//cke/zlsulPeH75xq91+l
SdZfUzGwoKGqFg==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:16:24 2025 by rpki-client