Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
File: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft (raw, json)
Hash identifier: iYabWWSqkIXDdYkBI1mIoxkz7q0cgRaK8maJWJaEuQw=
Subject key identifier: 2B:3D:9D:8E:49:C9:6E:69:EB:D5:4F:29:4B:45:DF:E3:DA:5A:4E:E2
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: 019770AC9F048184E4F5641CFC7073D88F49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
Manifest number: 0CF4
Signing time: Sat 14 Jun 2025 23:00:50 +0000
Manifest this update: Sat 14 Jun 2025 23:00:50 +0000
Manifest next update: Sun 15 Jun 2025 23:00:50 +0000
Files and hashes: 1: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl (hash: 00unSyKIjAPAjhzxUAc4bh00Uz1KMOfHbYjm2Rcq+zk=)
2: zo9Y2aPXtg0v5rw18Mi_WOQc36Y.roa (hash: v9STSvD6P0pmUA0gxCp1HPZofea00hykboqUh1BCCCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:ac:9f:04:81:84:e4:f5:64:1c:fc:70:73:d8:8f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: Jun 14 23:00:50 2025 GMT
Not After : Jun 15 23:00:50 2025 GMT
Subject: CN=2b3d9d8e49c96e69ebd54f294b45dfe3da5a4ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:73:10:b1:9b:8a:62:15:6e:d5:06:0f:90:34:
22:3d:aa:98:ee:67:06:53:b0:d3:cc:ee:66:3a:ab:
52:01:7a:5d:67:51:30:d1:76:8c:b4:5c:76:d6:af:
f9:a3:d2:75:18:04:27:e3:82:d1:e8:89:bf:87:0e:
04:f4:ae:fc:14:81:dd:9f:71:31:93:05:f1:af:93:
e2:47:80:1e:d4:60:d0:9e:ba:89:dd:f9:5d:d9:e5:
3f:b4:33:d9:b7:ea:f6:a3:ac:75:8a:db:2e:5f:62:
d9:83:e0:04:bd:dc:16:a5:0f:19:43:09:ee:65:84:
15:68:9a:08:a5:0a:9d:74:82:09:31:05:b6:a3:bc:
47:a9:74:c1:6b:2e:00:d1:25:8f:0a:13:3e:b0:c3:
0b:62:f2:f7:b5:36:81:7c:bd:c0:1b:5b:08:a9:fc:
ef:f4:54:1b:8f:62:5e:90:33:65:7f:56:42:cd:dd:
ae:37:dc:37:39:91:48:41:d7:51:4e:ca:77:94:96:
9b:1a:d4:9d:f8:19:5f:0d:8f:08:2f:74:59:03:e0:
9a:f7:cf:2d:71:ca:00:a6:de:d7:fb:1b:b4:f4:df:
c3:06:38:66:56:b0:fb:6f:c6:18:e4:d0:0e:d9:05:
ae:5b:83:dc:b2:15:e0:b6:00:dc:e7:ad:cf:ee:bf:
b5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:3D:9D:8E:49:C9:6E:69:EB:D5:4F:29:4B:45:DF:E3:DA:5A:4E:E2
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:70:6e:de:d6:71:54:37:e0:c9:5d:af:76:94:c4:22:00:e2:
73:74:f9:04:18:7e:5b:29:62:3a:a3:28:ea:7f:0e:00:16:74:
90:d6:a2:a2:f4:c0:61:34:78:33:fc:1b:cc:ea:e5:eb:49:e2:
9d:b4:3e:90:2b:b2:ea:1a:74:09:39:27:b9:ce:fb:85:2e:a5:
f6:0a:a6:28:ca:b3:5f:1b:e9:e5:74:e9:ac:6f:ed:06:5f:95:
7a:f5:e1:82:11:e8:da:b6:86:6f:1e:52:04:2b:39:c6:7e:5e:
cd:41:7a:75:c2:3b:92:b6:d7:3c:ab:96:0a:7c:8c:6e:61:ff:
dd:bc:39:95:eb:02:5a:31:d6:d0:c3:60:a0:c2:1d:1e:5d:58:
1b:27:50:82:ba:e7:60:4a:e1:e0:6a:70:24:29:8f:ac:db:4f:
f5:31:95:44:85:eb:dd:c9:27:69:bc:28:d8:48:cb:d8:48:2d:
ac:e1:d8:87:cc:ee:85:4b:5b:53:8c:76:5a:98:41:a0:54:90:
ac:95:bb:4e:cb:1e:dd:bf:5d:8b:03:e4:6d:b2:59:63:5b:d3:
15:eb:64:20:54:c5:5b:75:81:70:b1:bf:a2:2e:45:c5:58:6a:
8f:62:d0:2b:5c:a2:cb:ac:84:96:a8:35:1a:77:d2:2b:8f:d7:
5d:32:d1:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwrJ8EgYTk9WQc/HBz2I9JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNzg0YmQ5NmE0NGJjMzYxZDEzMzQ0ZDU0YzhiYzUxZmY2
N2E4MDIwHhcNMjUwNjE0MjMwMDUwWhcNMjUwNjE1MjMwMDUwWjAzMTEwLwYDVQQD
EygyYjNkOWQ4ZTQ5Yzk2ZTY5ZWJkNTRmMjk0YjQ1ZGZlM2RhNWE0ZWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HMQsZuKYhVu1QYPkDQiPaqY7mcG
U7DTzO5mOqtSAXpdZ1Ew0XaMtFx21q/5o9J1GAQn44LR6Im/hw4E9K78FIHdn3Ex
kwXxr5PiR4Ae1GDQnrqJ3fld2eU/tDPZt+r2o6x1itsuX2LZg+AEvdwWpQ8ZQwnu
ZYQVaJoIpQqddIIJMQW2o7xHqXTBay4A0SWPChM+sMMLYvL3tTaBfL3AG1sIqfzv
9FQbj2JekDNlf1ZCzd2uN9w3OZFIQddRTsp3lJabGtSd+BlfDY8IL3RZA+Ca988t
ccoApt7X+xu09N/DBjhmVrD7b8YY5NAO2QWuW4PcshXgtgDc563P7r+1VwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCs9nY5JyW5p69VPKUtF3+PaWk7iMB8GA1UdIwQY
MBaAFA14S9lqRLw2HRM0TVTIvFH/Z6gCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFhoTDJXcEV2RFlkRXpSTlZNaThVZjlucUFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80MjVjMjQtYmZlMC00NzkwLWIyNTAt
ZDRjNjZmNGYzYjZlLzEvRFhoTDJXcEV2RFlkRXpSTlZNaThVZjlucUFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80MjVjMjQtYmZlMC00NzkwLWIyNTAtZDRjNjZmNGYzYjZl
LzEvRFhoTDJXcEV2RFlkRXpSTlZNaThVZjlucUFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwXBu3tZx
VDfgyV2vdpTEIgDic3T5BBh+WyliOqMo6n8OABZ0kNaiovTAYTR4M/wbzOrl60ni
nbQ+kCuy6hp0CTknuc77hS6l9gqmKMqzXxvp5XTprG/tBl+VevXhghHo2raGbx5S
BCs5xn5ezUF6dcI7krbXPKuWCnyMbmH/3bw5lesCWjHW0MNgoMIdHl1YGydQgrrn
YErh4GpwJCmPrNtP9TGVRIXr3cknabwo2EjL2EgtrOHYh8zuhUtbU4x2WphBoFSQ
rJW7Tsse3b9diwPkbbJZY1vTFetkIFTFW3WBcLG/oi5FxVhqj2LQK1yiy6yElqg1
GnfSK4/XXTLRUg==
-----END CERTIFICATE-----
Generated at Sun Jun 15 01:07:26 2025 by rpki-client