Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
File: v42FRzQuL8ns-t_O8Azyc--dbpA.mft (raw, json)
Hash identifier: xY2pRg+f7yawsnR/peSlscXtxLJgy/dGGJQIoSUKx+A=
Subject key identifier: 59:F8:96:DE:31:EE:A2:1A:FC:88:F2:7E:2B:70:45:EE:BB:2A:7C:30
Authority key identifier: BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
Certificate issuer: /CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Certificate serial: 01988D33F68B0B6B106CD67132B72D8C6845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
Manifest number: 0384
Signing time: Sat 09 Aug 2025 05:00:49 +0000
Manifest this update: Sat 09 Aug 2025 05:00:49 +0000
Manifest next update: Sun 10 Aug 2025 05:00:49 +0000
Files and hashes: 1: fwI8WQwy5fbXMlIKzIdcXaYEMU0.roa (hash: bPDJhxbWV/nawvua5orm+AkfyQvA9xpKaA3uAdqYMPA=)
2: v42FRzQuL8ns-t_O8Azyc--dbpA.crl (hash: 3XHtRnw0Z3bYL0RzMvKdGSg0uzFGXF3Hgbbr9igv+24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:33:f6:8b:0b:6b:10:6c:d6:71:32:b7:2d:8c:68:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Validity
Not Before: Aug 9 05:00:49 2025 GMT
Not After : Aug 10 05:00:49 2025 GMT
Subject: CN=59f896de31eea21afc88f27e2b7045eebb2a7c30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a7:c5:37:2a:a9:48:39:fa:e2:a0:7c:ff:aa:
8c:9b:e7:43:c0:cf:bf:22:5e:a2:26:55:4a:e7:e1:
c3:de:69:dd:b8:28:4b:db:61:df:a7:f4:58:02:10:
0c:7a:05:53:1d:a1:05:99:19:e1:07:3d:fa:c5:db:
9b:c6:27:e6:1b:64:da:ad:7b:21:38:36:40:fa:61:
1b:72:91:fc:28:76:91:3c:32:b4:98:c0:68:e6:1d:
7a:b3:14:7e:f2:4a:8f:af:51:25:86:5e:8c:32:71:
f0:41:81:40:59:a1:e8:d4:d6:db:99:f7:ed:0b:20:
fe:0a:dd:04:23:7a:0f:ee:c2:73:da:7f:65:d5:89:
3f:60:16:62:fd:74:9f:3e:b6:5d:2a:00:3f:6d:c2:
5e:b8:c3:4e:15:8b:a9:6d:1d:2f:7b:5e:b7:09:8d:
7a:5c:04:a3:bc:87:30:f1:75:48:ac:47:9f:4f:14:
cb:6f:b2:50:91:3d:29:40:06:55:44:a2:b3:50:e7:
4e:e5:82:3a:45:ab:5d:2c:05:e6:84:5f:ba:96:c7:
e6:aa:f6:1c:69:ab:c0:f2:0c:40:89:94:e4:99:36:
e6:49:d0:ab:e7:50:a7:e3:85:8f:a8:d0:cc:8e:bb:
10:00:0d:8e:23:1e:b2:5a:92:5a:90:0a:5d:0a:a9:
f7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F8:96:DE:31:EE:A2:1A:FC:88:F2:7E:2B:70:45:EE:BB:2A:7C:30
X509v3 Authority Key Identifier:
keyid:BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:3a:3a:61:13:87:0c:89:54:d4:b6:08:48:d2:c8:9d:53:88:
54:04:68:8f:a6:5a:68:79:7f:75:8e:b6:5b:e5:75:dc:d8:bf:
fe:d8:9b:b2:66:7d:b3:3d:2a:27:a8:99:09:a7:a9:24:bd:aa:
c0:04:29:7e:44:59:f3:69:38:82:0e:bf:45:b2:34:b7:41:cc:
07:ff:a9:2e:a9:c0:51:66:f6:de:f6:4e:e9:49:ae:86:0e:db:
ad:76:14:92:b9:3f:65:8d:c6:ed:d0:f8:dc:d9:33:c6:72:fc:
ad:67:e4:84:99:4e:78:f4:1b:72:92:77:ca:1d:0d:13:77:6a:
ee:4c:63:c2:13:72:48:72:1c:0e:5f:aa:fb:fc:de:71:11:c2:
96:ce:95:43:46:1c:7b:89:ad:49:2f:f0:45:cf:0e:d7:ec:bc:
be:97:fc:23:42:f6:42:ac:9e:8f:ea:a4:e0:95:5c:b5:5e:4e:
e7:e8:c5:d4:ce:f2:1b:b7:1c:80:d9:b0:89:8a:ac:cf:43:50:
34:f8:88:96:ef:6b:70:8b:38:e1:da:62:f7:72:10:9f:63:64:
a6:54:a6:b5:1c:6b:b5:2d:40:07:d2:17:08:b8:5c:24:f2:a7:
4b:c4:90:de:e5:9e:4a:26:66:44:ae:5a:e2:3c:70:49:19:a7:
3b:be:85:46
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiNM/aLC2sQbNZxMrctjGhFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmOGQ4NTQ3MzQyZTJmYzllY2ZhZGZjZWYwMGNmMjczZWY5
ZDZlOTAwHhcNMjUwODA5MDUwMDQ5WhcNMjUwODEwMDUwMDQ5WjAzMTEwLwYDVQQD
Eyg1OWY4OTZkZTMxZWVhMjFhZmM4OGYyN2UyYjcwNDVlZWJiMmE3YzMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxafFNyqpSDn64qB8/6qMm+dDwM+/
Il6iJlVK5+HD3mnduChL22Hfp/RYAhAMegVTHaEFmRnhBz36xdubxifmG2TarXsh
ODZA+mEbcpH8KHaRPDK0mMBo5h16sxR+8kqPr1Elhl6MMnHwQYFAWaHo1Nbbmfft
CyD+Ct0EI3oP7sJz2n9l1Yk/YBZi/XSfPrZdKgA/bcJeuMNOFYupbR0ve163CY16
XASjvIcw8XVIrEefTxTLb7JQkT0pQAZVRKKzUOdO5YI6RatdLAXmhF+6lsfmqvYc
aavA8gxAiZTkmTbmSdCr51Cn44WPqNDMjrsQAA2OIx6yWpJakApdCqn31QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFn4lt4x7qIa/IjyfitwRe67KnwwMB8GA1UdIwQY
MBaAFL+NhUc0Li/J7PrfzvAM8nPvnW6QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjQyRlJ6UXVMOG5zLXRfTzhBenljLS1kYnBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iNmY3MzQtYzY1NS00M2ExLTk5MzQt
MWU3MTkzMGZjYzBmLzEvdjQyRlJ6UXVMOG5zLXRfTzhBenljLS1kYnBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS9iNmY3MzQtYzY1NS00M2ExLTk5MzQtMWU3MTkzMGZjYzBm
LzEvdjQyRlJ6UXVMOG5zLXRfTzhBenljLS1kYnBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqzo6YROH
DIlU1LYISNLInVOIVARoj6ZaaHl/dY62W+V13Ni//tibsmZ9sz0qJ6iZCaepJL2q
wAQpfkRZ82k4gg6/RbI0t0HMB/+pLqnAUWb23vZO6Umuhg7brXYUkrk/ZY3G7dD4
3NkzxnL8rWfkhJlOePQbcpJ3yh0NE3dq7kxjwhNySHIcDl+q+/zecRHCls6VQ0Yc
e4mtSS/wRc8O1+y8vpf8I0L2Qqyej+qk4JVctV5O5+jF1M7yG7ccgNmwiYqsz0NQ
NPiIlu9rcIs44dpi93IQn2NkplSmtRxrtS1AB9IXCLhcJPKnS8SQ3uWeSiZmRK5a
4jxwSRmnO76FRg==
-----END CERTIFICATE-----
Generated at Sat Aug 9 14:16:12 2025 by rpki-client