Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
File: dHnfUKMVAp6AqhlHr-EtselIYos.mft (raw, json)
Hash identifier: H5nQQm+ShNFzH8MYD+8YR4eJR1Ep6+OR0uNFSx3dpzE=
Subject key identifier: DC:B0:E3:53:B3:20:86:49:8D:B2:3B:68:F8:12:30:9E:11:90:54:00
Authority key identifier: 74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
Certificate issuer: /CN=7479df50a315029e80aa1947afe12db1e948628b
Certificate serial: 0197707531DDBC8F567F3E420C6A9F58B202
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
Manifest number: 0E94
Signing time: Sat 14 Jun 2025 22:00:18 +0000
Manifest this update: Sat 14 Jun 2025 22:00:18 +0000
Manifest next update: Sun 15 Jun 2025 22:00:18 +0000
Files and hashes: 1: KvOchdw6AYfLt261W6RR4KIthYY.roa (hash: WXdEqSkBC/gQsasA/7q/ZdUFdpwAbrzjieJX5Z97f4U=)
2: dHnfUKMVAp6AqhlHr-EtselIYos.crl (hash: 6f9/IBVlY3QxBeTz6MlMs3qMO518G/6qoSPZ18/gueo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:75:31:dd:bc:8f:56:7f:3e:42:0c:6a:9f:58:b2:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7479df50a315029e80aa1947afe12db1e948628b
Validity
Not Before: Jun 14 22:00:18 2025 GMT
Not After : Jun 15 22:00:18 2025 GMT
Subject: CN=dcb0e353b32086498db23b68f812309e11905400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e6:80:3f:0e:97:84:84:3a:9b:1a:65:8e:41:
02:6b:f3:e2:6e:85:2b:c6:8e:ab:ab:bb:16:cb:49:
73:21:8d:0b:0a:19:34:bd:22:16:f1:af:cc:7d:ab:
08:bc:c5:7c:d7:27:93:d7:d6:d0:98:86:c5:cc:0f:
b9:cc:5a:fd:37:ed:02:01:6f:c2:97:81:8d:c5:99:
44:32:3e:28:72:c6:a3:77:c5:7d:ff:45:0a:f8:89:
2b:e4:51:c9:10:66:60:bc:1a:a9:6e:35:dc:62:62:
11:7e:65:d3:27:e9:55:83:05:1d:41:4d:b3:a7:fc:
f9:4a:74:b0:94:8b:b6:38:61:85:fd:5e:6a:1e:e6:
19:b3:08:a0:0c:2d:f4:04:a3:b6:72:f6:83:f4:90:
0d:21:be:ca:91:3a:7e:2a:7a:78:04:d8:01:18:8c:
a2:b8:47:ba:87:51:85:18:32:67:da:5e:82:42:74:
c7:bf:7e:fa:98:8d:15:30:26:62:2f:f8:66:20:03:
9a:dd:2d:a3:3f:99:c9:49:e2:34:cc:46:fa:03:be:
62:77:42:3d:39:a7:73:31:9b:96:a9:d4:d3:b8:b6:
21:3d:bb:b6:61:22:f9:5c:d9:60:e6:7b:28:26:3d:
39:67:f3:fd:bb:70:fc:c4:39:b2:18:53:3a:8f:56:
97:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B0:E3:53:B3:20:86:49:8D:B2:3B:68:F8:12:30:9E:11:90:54:00
X509v3 Authority Key Identifier:
keyid:74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:9a:d4:9b:7b:c4:9f:3d:ef:62:6e:22:7e:f0:7c:ec:b9:28:
63:5f:d0:82:76:72:bb:1c:9b:52:cc:b0:a8:23:4b:e1:35:a1:
ad:42:86:55:03:4c:02:13:47:c6:da:7a:c4:f8:fe:d1:69:82:
f2:32:52:97:01:05:22:03:c4:6a:9b:89:19:e8:29:de:d1:86:
0e:d5:75:28:0e:48:3b:d2:4c:b5:39:b9:3c:c0:bf:7b:37:e7:
a8:54:72:aa:af:b2:3e:e4:2d:f4:ff:48:ff:c5:19:fe:1c:0d:
9e:94:ee:de:77:7d:ce:ba:36:ae:22:8c:8e:8c:6e:ae:31:c8:
a7:f8:26:68:de:a1:b5:42:4f:ea:81:43:5a:ea:8a:01:78:8e:
c0:3f:b2:27:11:3b:7a:84:2e:39:90:85:cf:ae:61:db:5f:a5:
f6:ee:5a:76:c6:2f:9a:e8:0c:b6:50:6c:45:13:e6:19:e4:30:
3c:b5:19:9b:74:79:1f:96:88:1d:0d:84:bb:c0:c1:92:2f:e5:
a3:33:65:f8:77:1c:bb:0a:41:7d:e3:64:f6:45:97:1a:4c:53:
04:cc:71:ae:51:73:f0:47:dd:68:aa:fa:70:7a:99:bb:d0:a6:
fe:a0:e3:e9:51:38:1a:9f:e7:b2:50:83:b5:c6:5b:c9:f9:e0:
bb:15:2a:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwdTHdvI9Wfz5CDGqfWLICMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NzlkZjUwYTMxNTAyOWU4MGFhMTk0N2FmZTEyZGIxZTk0
ODYyOGIwHhcNMjUwNjE0MjIwMDE4WhcNMjUwNjE1MjIwMDE4WjAzMTEwLwYDVQQD
EyhkY2IwZTM1M2IzMjA4NjQ5OGRiMjNiNjhmODEyMzA5ZTExOTA1NDAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOaAPw6XhIQ6mxpljkECa/PiboUr
xo6rq7sWy0lzIY0LChk0vSIW8a/MfasIvMV81yeT19bQmIbFzA+5zFr9N+0CAW/C
l4GNxZlEMj4ocsajd8V9/0UK+Ikr5FHJEGZgvBqpbjXcYmIRfmXTJ+lVgwUdQU2z
p/z5SnSwlIu2OGGF/V5qHuYZswigDC30BKO2cvaD9JANIb7KkTp+Knp4BNgBGIyi
uEe6h1GFGDJn2l6CQnTHv376mI0VMCZiL/hmIAOa3S2jP5nJSeI0zEb6A75id0I9
OadzMZuWqdTTuLYhPbu2YSL5XNlg5nsoJj05Z/P9u3D8xDmyGFM6j1aXjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNyw41OzIIZJjbI7aPgSMJ4RkFQAMB8GA1UdIwQY
MBaAFHR531CjFQKegKoZR6/hLbHpSGKLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEhuZlVLTVZBcDZBcWhsSHItRXRzZWxJWW9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8xNjczNWQtNjY1OC00YjZmLWEyNjEt
OTdiYTM3MzQ1YWE4LzEvZEhuZlVLTVZBcDZBcWhsSHItRXRzZWxJWW9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy8xNjczNWQtNjY1OC00YjZmLWEyNjEtOTdiYTM3MzQ1YWE4
LzEvZEhuZlVLTVZBcDZBcWhsSHItRXRzZWxJWW9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkprUm3vE
nz3vYm4ifvB87LkoY1/QgnZyuxybUsywqCNL4TWhrUKGVQNMAhNHxtp6xPj+0WmC
8jJSlwEFIgPEapuJGegp3tGGDtV1KA5IO9JMtTm5PMC/ezfnqFRyqq+yPuQt9P9I
/8UZ/hwNnpTu3nd9zro2riKMjoxurjHIp/gmaN6htUJP6oFDWuqKAXiOwD+yJxE7
eoQuOZCFz65h21+l9u5adsYvmugMtlBsRRPmGeQwPLUZm3R5H5aIHQ2Eu8DBki/l
ozNl+HccuwpBfeNk9kWXGkxTBMxxrlFz8EfdaKr6cHqZu9Cm/qDj6VE4Gp/nslCD
tcZbyfnguxUqLw==
-----END CERTIFICATE-----
Generated at Sun Jun 15 01:05:50 2025 by rpki-client