Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
File: Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft (raw, json)
Hash identifier: 8cw70qwGCh6GK9FlahEe010N0A/OMIMmPvEfQNUWAbg=
Subject key identifier: 71:60:A4:F9:0E:76:D1:1E:6D:11:9D:F8:85:C0:E3:67:B2:AF:A4:61
Authority key identifier: 0E:8C:E0:A6:AB:B8:EE:50:D4:4B:3B:AE:42:D4:A2:54:9F:FB:82:40
Certificate issuer: /CN=0e8ce0a6abb8ee50d44b3bae42d4a2549ffb8240
Certificate serial: 01988CFCF57DDADAE5D3D25DFDD51EC981EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
Manifest number: 1461
Signing time: Sat 09 Aug 2025 04:00:44 +0000
Manifest this update: Sat 09 Aug 2025 04:00:44 +0000
Manifest next update: Sun 10 Aug 2025 04:00:44 +0000
Files and hashes: 1: Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl (hash: 36bM3GvnkPCtusuLEFaubLfMxkmPV7PVHZfbUIadNBw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fc:f5:7d:da:da:e5:d3:d2:5d:fd:d5:1e:c9:81:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e8ce0a6abb8ee50d44b3bae42d4a2549ffb8240
Validity
Not Before: Aug 9 04:00:44 2025 GMT
Not After : Aug 10 04:00:44 2025 GMT
Subject: CN=7160a4f90e76d11e6d119df885c0e367b2afa461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f0:b2:01:61:25:0e:20:91:b1:c1:11:91:b0:
37:f3:be:11:57:47:24:9e:54:2f:2f:ea:b4:7b:04:
19:6f:d7:42:fd:19:fd:83:a6:6d:bf:13:32:40:d6:
de:61:63:de:81:3b:c7:6d:e5:c1:b3:a7:87:98:f5:
74:c2:9d:df:18:8a:12:db:fe:f5:3b:2e:0e:76:2c:
5e:35:45:74:58:2e:80:82:48:b6:48:29:8e:46:af:
8c:01:91:ed:f0:2f:e9:36:a6:4b:36:3e:50:33:e6:
96:03:88:53:93:8d:fd:3d:84:5a:00:2b:dd:82:57:
b6:74:29:d1:aa:47:5a:e1:86:ab:4b:74:44:29:e3:
68:e2:05:2d:c1:fc:8b:7d:80:af:94:2f:08:46:05:
35:20:cc:6a:a7:23:59:6e:65:d6:96:f3:1f:57:24:
42:24:e5:b0:51:5d:02:e0:21:b1:d8:6c:d6:eb:72:
23:12:ad:77:61:a6:bc:01:2e:1c:c0:83:6c:22:72:
0a:78:7c:5c:9f:c4:de:e4:cf:52:44:7d:f4:d4:03:
14:71:af:ba:1d:f9:89:86:bd:08:d0:77:ee:b0:59:
9f:e3:24:cb:71:d5:3f:a3:64:96:50:64:0e:23:13:
9b:8f:9a:05:5c:49:c5:5b:48:a8:ce:bb:89:ee:5d:
fc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:60:A4:F9:0E:76:D1:1E:6D:11:9D:F8:85:C0:E3:67:B2:AF:A4:61
X509v3 Authority Key Identifier:
keyid:0E:8C:E0:A6:AB:B8:EE:50:D4:4B:3B:AE:42:D4:A2:54:9F:FB:82:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:f0:8d:34:e5:8c:98:54:ba:c6:5a:e8:6b:d5:7a:bc:65:31:
10:0e:d3:24:ec:43:f6:31:02:ad:bb:e2:81:54:1c:26:86:2e:
89:1c:01:f7:78:84:24:85:68:54:aa:58:0c:f2:d9:cd:60:82:
b2:22:48:0a:75:0e:44:5e:86:8d:d9:e8:77:7e:4e:d0:e8:7a:
71:54:17:a1:f6:be:9f:51:da:dd:78:dc:6e:0c:4c:7e:90:57:
f0:bb:85:7f:19:6e:e1:da:d8:a6:f6:7d:7d:b3:fc:b8:1f:0a:
94:af:26:fa:e0:eb:c4:bf:96:c1:e2:a8:b6:d0:de:70:b5:d9:
03:4a:e9:54:b1:97:39:49:18:15:6c:ec:73:7e:47:69:78:a4:
77:78:55:1d:b1:9b:44:2e:ca:59:9a:67:a1:b8:cb:e6:21:10:
47:ea:3b:ac:a2:02:d1:11:af:1d:2c:66:2d:c6:a0:7f:50:03:
fb:5c:41:18:5f:69:99:a9:c0:f6:2b:5c:b6:a0:eb:33:db:32:
45:80:0c:c8:e7:41:f0:94:96:b8:8e:d1:73:84:b1:5a:88:e8:
2a:3f:80:dd:1f:a7:7d:97:f1:a4:87:51:45:fb:67:c9:1a:8c:
ed:a5:94:38:1c:35:cb:e6:82:7b:b6:80:44:fd:44:1f:5e:1c:
e0:31:8e:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiM/PV92trl09Jd/dUeyYHrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlOGNlMGE2YWJiOGVlNTBkNDRiM2JhZTQyZDRhMjU0OWZm
YjgyNDAwHhcNMjUwODA5MDQwMDQ0WhcNMjUwODEwMDQwMDQ0WjAzMTEwLwYDVQQD
Eyg3MTYwYTRmOTBlNzZkMTFlNmQxMTlkZjg4NWMwZTM2N2IyYWZhNDYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/CyAWElDiCRscERkbA3874RV0ck
nlQvL+q0ewQZb9dC/Rn9g6ZtvxMyQNbeYWPegTvHbeXBs6eHmPV0wp3fGIoS2/71
Oy4OdixeNUV0WC6Agki2SCmORq+MAZHt8C/pNqZLNj5QM+aWA4hTk439PYRaACvd
gle2dCnRqkda4YarS3REKeNo4gUtwfyLfYCvlC8IRgU1IMxqpyNZbmXWlvMfVyRC
JOWwUV0C4CGx2GzW63IjEq13Yaa8AS4cwINsInIKeHxcn8Te5M9SRH301AMUca+6
HfmJhr0I0HfusFmf4yTLcdU/o2SWUGQOIxObj5oFXEnFW0iozruJ7l38cwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHFgpPkOdtEebRGd+IXA42eyr6RhMB8GA1UdIwQY
MBaAFA6M4KaruO5Q1Es7rkLUolSf+4JAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRG96Z3BxdTQ3bERVU3p1dVF0U2lWSl83Z2tBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi85ZjIwNzctZGY0Zi00OTdlLThlOTAt
YzQ5OTc1NWEyNjg5LzEvRG96Z3BxdTQ3bERVU3p1dVF0U2lWSl83Z2tBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi85ZjIwNzctZGY0Zi00OTdlLThlOTAtYzQ5OTc1NWEyNjg5
LzEvRG96Z3BxdTQ3bERVU3p1dVF0U2lWSl83Z2tBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiPCNNOWM
mFS6xlroa9V6vGUxEA7TJOxD9jECrbvigVQcJoYuiRwB93iEJIVoVKpYDPLZzWCC
siJICnUORF6Gjdnod35O0Oh6cVQXofa+n1Ha3XjcbgxMfpBX8LuFfxlu4drYpvZ9
fbP8uB8KlK8m+uDrxL+WweKottDecLXZA0rpVLGXOUkYFWzsc35HaXikd3hVHbGb
RC7KWZpnobjL5iEQR+o7rKIC0RGvHSxmLcagf1AD+1xBGF9pmanA9itctqDrM9sy
RYAMyOdB8JSWuI7Rc4SxWojoKj+A3R+nfZfxpIdRRftnyRqM7aWUOBw1y+aCe7aA
RP1EH14c4DGOOA==
-----END CERTIFICATE-----
Generated at Sat Aug 9 10:34:06 2025 by rpki-client