Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
File: DxgybgAap_xW-DUxMVN2-equCYg.mft (raw, json)
Hash identifier: 4VqJIO5KGXtg/LnfKUK/A6Xjk6HGlJnGfr1V+aDANvw=
Subject key identifier: C2:90:BD:C2:1E:92:FF:84:D3:4E:8C:45:5D:EB:DB:18:6C:E6:05:6A
Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988
Certificate serial: 01976C2B17B43CFF587EB8A4A6DA91256BD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
Manifest number: 0805
Signing time: Sat 14 Jun 2025 02:00:52 +0000
Manifest this update: Sat 14 Jun 2025 02:00:52 +0000
Manifest next update: Sun 15 Jun 2025 02:00:52 +0000
Files and hashes: 1: DxgybgAap_xW-DUxMVN2-equCYg.crl (hash: c57ptKfAUfeznvj2Ae4dOwQp+LRsGbFtoaf+dBFLmn8=)
2: IAritswAhqNQe77s1GDg_ezpHck.roa (hash: ILdWDEHhnQvuxpeMgx2XCbjW7CQm2ybVgtMQih2P4NU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:17:b4:3c:ff:58:7e:b8:a4:a6:da:91:25:6b:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988
Validity
Not Before: Jun 14 02:00:52 2025 GMT
Not After : Jun 15 02:00:52 2025 GMT
Subject: CN=c290bdc21e92ff84d34e8c455debdb186ce6056a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bc:08:28:5f:fc:68:d7:0b:72:de:c2:7b:e0:
da:c7:5a:81:01:92:48:3d:ec:14:d4:6c:d6:9a:53:
0e:bd:2d:60:cf:f0:37:a2:91:f8:97:cf:65:86:56:
51:af:af:31:06:e4:6c:d8:59:04:a0:e8:e4:c8:7e:
82:05:5a:17:29:bd:7c:55:ad:38:5b:36:16:f2:b2:
f9:51:a3:f3:22:8a:9b:5f:59:a9:39:71:37:4a:c9:
68:c4:6e:00:6e:8b:9c:94:df:43:9b:08:47:f7:1f:
aa:1e:16:c3:24:81:91:85:c3:50:da:62:31:0f:52:
54:29:20:c0:76:84:3e:12:c0:69:f2:f0:8d:8b:c8:
6c:21:14:e6:1d:d9:40:c6:ec:78:96:cc:d6:44:65:
63:2b:c5:0a:5b:79:1d:12:ea:67:7f:99:50:8a:fb:
27:8a:29:95:9f:9a:2f:56:b2:ed:65:e6:97:16:5b:
d2:1f:8b:93:7e:be:b0:fb:b6:94:19:b2:6c:45:7d:
1c:89:1d:e1:86:20:68:6c:98:9d:98:ad:64:1d:f3:
02:1d:37:cb:43:e2:9b:4b:94:54:77:13:83:f2:88:
49:f1:a2:c9:86:93:2e:5e:68:69:00:33:f8:68:ea:
18:1a:ce:46:47:c4:21:83:26:af:e6:90:14:ba:9f:
e2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:90:BD:C2:1E:92:FF:84:D3:4E:8C:45:5D:EB:DB:18:6C:E6:05:6A
X509v3 Authority Key Identifier:
keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:40:d1:84:63:d8:3b:a6:82:f2:1c:2c:07:00:33:1b:a5:d4:
5e:fa:24:cd:0d:a2:66:24:4d:eb:38:1e:e5:69:98:da:10:00:
ed:cb:de:4f:5a:e2:d3:ea:25:7a:06:91:d6:bc:8c:8f:1a:0b:
31:6b:93:88:61:6a:f6:71:09:56:55:59:35:df:e7:f3:64:63:
b8:2b:d3:0f:a9:0f:26:74:6f:9e:55:3a:2f:52:66:9d:a7:23:
6a:7a:a9:89:a9:55:68:fe:d9:15:cc:fe:f5:c7:7a:d2:3b:a2:
7f:15:05:ef:06:2a:d5:f4:af:a1:27:42:ce:c5:a5:85:23:d5:
a6:5f:bb:9b:a2:e6:20:dc:2d:16:9c:7b:78:27:2a:97:a3:e1:
9c:c9:4e:cc:ca:a1:db:cf:9b:9d:f1:c2:15:af:8f:a3:36:f2:
5b:08:ec:1a:a4:83:f2:2f:65:fb:bd:4b:f7:b6:4b:1f:af:71:
f2:cf:62:b8:92:4a:ff:7b:46:70:40:54:74:d2:28:72:d2:73:
b9:54:92:12:a3:f0:94:55:2d:68:df:ed:74:ab:90:b9:f4:2b:
3d:ef:12:77:82:7f:7d:df:2a:92:ae:bb:e6:f7:01:bc:f9:c2:
b6:13:9b:25:92:58:b4:44:5a:dc:c5:94:37:eb:b7:87:ba:88:
d1:fe:7b:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsKxe0PP9YfrikptqRJWvZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmMTgzMjZlMDAxYWE3ZmM1NmY4MzUzMTMxNTM3NmY5ZWFh
ZTA5ODgwHhcNMjUwNjE0MDIwMDUyWhcNMjUwNjE1MDIwMDUyWjAzMTEwLwYDVQQD
EyhjMjkwYmRjMjFlOTJmZjg0ZDM0ZThjNDU1ZGViZGIxODZjZTYwNTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrwIKF/8aNcLct7Ce+Dax1qBAZJI
PewU1GzWmlMOvS1gz/A3opH4l89lhlZRr68xBuRs2FkEoOjkyH6CBVoXKb18Va04
WzYW8rL5UaPzIoqbX1mpOXE3SsloxG4AbouclN9DmwhH9x+qHhbDJIGRhcNQ2mIx
D1JUKSDAdoQ+EsBp8vCNi8hsIRTmHdlAxux4lszWRGVjK8UKW3kdEupnf5lQivsn
iimVn5ovVrLtZeaXFlvSH4uTfr6w+7aUGbJsRX0ciR3hhiBobJidmK1kHfMCHTfL
Q+KbS5RUdxOD8ohJ8aLJhpMuXmhpADP4aOoYGs5GR8Qhgyav5pAUup/i1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMKQvcIekv+E006MRV3r2xhs5gVqMB8GA1UdIwQY
MBaAFA8YMm4AGqf8Vvg1MTFTdvnqrgmIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYt
NmI4MTM2OTNiYzhjLzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYtNmI4MTM2OTNiYzhj
LzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM0DRhGPY
O6aC8hwsBwAzG6XUXvokzQ2iZiRN6zge5WmY2hAA7cveT1ri0+olegaR1ryMjxoL
MWuTiGFq9nEJVlVZNd/n82RjuCvTD6kPJnRvnlU6L1JmnacjanqpialVaP7ZFcz+
9cd60juifxUF7wYq1fSvoSdCzsWlhSPVpl+7m6LmINwtFpx7eCcql6PhnMlOzMqh
28+bnfHCFa+PozbyWwjsGqSD8i9l+71L97ZLH69x8s9iuJJK/3tGcEBUdNIoctJz
uVSSEqPwlFUtaN/tdKuQufQrPe8Sd4J/fd8qkq675vcBvPnCthObJZJYtERa3MWU
N+u3h7qI0f57Cw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 12:14:25 2025 by rpki-client