Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
File: D97nlErE2jERKV2B4p3roAwWOpY.mft (raw, json)
Hash identifier: iaOBHQlFOHNEAdk5m1mxSkcV5LKTzJr+Qc+mDRTsx1g=
Subject key identifier: 33:DD:D6:66:24:25:A3:69:4D:02:0C:21:31:0C:4F:35:55:EA:A3:CD
Authority key identifier: 0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
Certificate issuer: /CN=0fdee7944ac4da3111295d81e29deba00c163a96
Certificate serial: 01976DAB59BE3B11788E0B521B4AD2D5EDD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
Manifest number: 0F8A
Signing time: Sat 14 Jun 2025 09:00:35 +0000
Manifest this update: Sat 14 Jun 2025 09:00:35 +0000
Manifest next update: Sun 15 Jun 2025 09:00:35 +0000
Files and hashes: 1: D97nlErE2jERKV2B4p3roAwWOpY.crl (hash: j3tB4NgW86C27D5aJTMn0uC931dXVQ0H0ZiPB1/OZ3A=)
2: Fe73gwKx3TfChZQCePRdIEAemH0.roa (hash: qBzf7ILpA60OZzhZbHEoimpJXoZWWGpm51oGlU43AdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:59:be:3b:11:78:8e:0b:52:1b:4a:d2:d5:ed:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdee7944ac4da3111295d81e29deba00c163a96
Validity
Not Before: Jun 14 09:00:35 2025 GMT
Not After : Jun 15 09:00:35 2025 GMT
Subject: CN=33ddd6662425a3694d020c21310c4f3555eaa3cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f3:e3:6f:c5:93:6b:61:57:77:59:40:35:10:
ed:a0:d1:21:c4:95:3e:f0:e3:f9:be:0a:33:bb:dd:
14:d9:e4:ce:bb:fe:5c:24:a8:3d:60:5f:26:06:4e:
d2:2d:75:77:0f:fe:37:14:96:ab:ad:4b:99:4c:f1:
5b:d6:e1:19:70:69:8e:d2:45:34:93:bf:e2:b4:5a:
9d:ea:95:35:be:0e:a4:55:46:c5:d1:ae:df:79:81:
7b:e9:f6:6d:24:02:7c:c1:95:5a:69:8a:95:13:c0:
94:fe:5c:d1:84:82:2e:4c:f7:10:b8:5c:8a:47:30:
ef:47:8d:eb:22:cc:fe:01:28:ba:3f:82:65:d5:e9:
ba:8f:5c:b5:f9:91:06:97:4c:46:d3:fc:29:ef:86:
be:cf:1f:09:cb:df:f7:ee:ab:e1:48:76:c1:b6:7a:
d7:87:f3:52:17:c2:57:d5:0f:db:ea:ec:85:65:ec:
6f:0a:8b:5a:a4:5d:0b:22:a5:20:7f:7e:15:2a:94:
c0:03:61:da:1a:f7:01:49:67:4e:53:9a:4d:f1:c5:
95:32:7d:55:3c:81:d9:36:6d:2b:d5:c0:d6:e1:e2:
ba:c1:46:53:6a:8c:3f:c5:7a:5a:0d:72:e1:c5:42:
36:b6:99:51:19:d6:e2:51:09:18:76:81:5d:76:97:
5d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DD:D6:66:24:25:A3:69:4D:02:0C:21:31:0C:4F:35:55:EA:A3:CD
X509v3 Authority Key Identifier:
keyid:0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:91:86:5c:b9:b1:db:38:ef:38:49:b4:d8:d9:2b:3f:43:ee:
23:cb:ce:1d:a3:a8:1d:aa:b5:35:b0:da:5a:68:3e:5f:15:07:
1b:57:5a:99:a5:9a:ed:f2:12:81:43:6e:59:5d:5a:03:10:b5:
01:e2:9a:47:33:ce:b7:e8:56:b7:32:6f:f4:b0:5c:a1:9d:a1:
ea:5f:e2:3f:00:54:9f:6e:61:0e:9b:e7:cb:88:78:4d:8d:0b:
bb:c7:d8:d0:6e:59:7b:35:d8:b1:7e:af:6d:f4:c9:bb:97:7f:
b6:cb:88:ae:b4:4b:46:30:3a:d3:83:8a:2b:34:81:be:fa:19:
dd:01:5f:c9:a2:5b:45:a1:40:4d:82:4d:a2:2c:ae:78:86:f8:
7f:ca:cd:65:f1:bd:1e:fe:ad:49:e9:4a:0b:76:4a:67:5e:1b:
40:f8:26:db:22:b6:1f:bc:bc:ee:6e:30:7c:e8:ec:89:e0:1c:
c6:a8:e8:03:f6:15:2c:ea:d1:5a:31:81:81:0f:a4:8f:46:97:
63:9d:a5:5a:1b:81:1e:f7:42:24:ae:5c:d5:26:c2:b5:ae:c9:
ba:13:7f:e4:f4:15:58:33:7f:a2:00:9c:4b:3c:22:33:9f:49:
5e:3a:f6:26:d8:3a:db:c1:bb:12:14:d0:ec:12:32:de:74:2e:
3a:71:59:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtq1m+OxF4jgtSG0rS1e3RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmZGVlNzk0NGFjNGRhMzExMTI5NWQ4MWUyOWRlYmEwMGMx
NjNhOTYwHhcNMjUwNjE0MDkwMDM1WhcNMjUwNjE1MDkwMDM1WjAzMTEwLwYDVQQD
EygzM2RkZDY2NjI0MjVhMzY5NGQwMjBjMjEzMTBjNGYzNTU1ZWFhM2NkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvPjb8WTa2FXd1lANRDtoNEhxJU+
8OP5vgozu90U2eTOu/5cJKg9YF8mBk7SLXV3D/43FJarrUuZTPFb1uEZcGmO0kU0
k7/itFqd6pU1vg6kVUbF0a7feYF76fZtJAJ8wZVaaYqVE8CU/lzRhIIuTPcQuFyK
RzDvR43rIsz+ASi6P4Jl1em6j1y1+ZEGl0xG0/wp74a+zx8Jy9/37qvhSHbBtnrX
h/NSF8JX1Q/b6uyFZexvCotapF0LIqUgf34VKpTAA2HaGvcBSWdOU5pN8cWVMn1V
PIHZNm0r1cDW4eK6wUZTaow/xXpaDXLhxUI2tplRGdbiUQkYdoFddpdd/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDPd1mYkJaNpTQIMITEMTzVV6qPNMB8GA1UdIwQY
MBaAFA/e55RKxNoxESldgeKd66AMFjqWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDk3bmxFckUyakVSS1YyQjRwM3JvQXdXT3BZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS81NDRiZWEtZjFlYy00NjY2LTgxYzAt
NzhhNGQ2NTY5M2ZlLzEvRDk3bmxFckUyakVSS1YyQjRwM3JvQXdXT3BZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS81NDRiZWEtZjFlYy00NjY2LTgxYzAtNzhhNGQ2NTY5M2Zl
LzEvRDk3bmxFckUyakVSS1YyQjRwM3JvQXdXT3BZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHJGGXLmx
2zjvOEm02NkrP0PuI8vOHaOoHaq1NbDaWmg+XxUHG1damaWa7fISgUNuWV1aAxC1
AeKaRzPOt+hWtzJv9LBcoZ2h6l/iPwBUn25hDpvny4h4TY0Lu8fY0G5ZezXYsX6v
bfTJu5d/tsuIrrRLRjA604OKKzSBvvoZ3QFfyaJbRaFATYJNoiyueIb4f8rNZfG9
Hv6tSelKC3ZKZ14bQPgm2yK2H7y87m4wfOjsieAcxqjoA/YVLOrRWjGBgQ+kj0aX
Y52lWhuBHvdCJK5c1SbCta7JuhN/5PQVWDN/ogCcSzwiM59JXjr2Jtg628G7EhTQ
7BIy3nQuOnFZDQ==
-----END CERTIFICATE-----
Generated at Sat Jun 14 12:58:37 2025 by rpki-client