
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
File: dzW3DconD8uOS5CStyADZBOPXfE.mft (raw, json)
Hash identifier: VHYx8PdhvYKzWD7ZVfhyk/6V606wsv7nRwThxpmQSZM=
Subject key identifier: F5:A9:5C:65:2A:BC:78:04:BD:CE:D6:7C:D9:D5:45:19:89:F0:34:69
Authority key identifier: 77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
Certificate issuer: /CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Certificate serial: 019847780DC95D1B3976A4678DA6F9CA1069
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
Manifest number: 15FD
Signing time: Sat 26 Jul 2025 16:01:46 +0000
Manifest this update: Sat 26 Jul 2025 16:01:46 +0000
Manifest next update: Sun 27 Jul 2025 16:01:46 +0000
Files and hashes: 1: dzW3DconD8uOS5CStyADZBOPXfE.crl (hash: L4ErN6rnG/HHCXzwZLIo7aTITfeXqgPDAm1ILQc/9gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 15:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:78:0d:c9:5d:1b:39:76:a4:67:8d:a6:f9:ca:10:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Validity
Not Before: Jul 26 16:01:46 2025 GMT
Not After : Jul 27 16:01:46 2025 GMT
Subject: CN=f5a95c652abc7804bdced67cd9d5451989f03469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:1c:f5:93:70:ca:7f:00:4b:8f:fd:92:b3:93:
b3:b4:47:48:1b:07:3c:54:be:9f:96:4e:02:f8:23:
c3:c0:f2:c8:aa:ec:c8:88:50:b8:d7:43:4a:6e:30:
d1:52:25:5b:83:e1:0c:23:cc:b0:48:61:7a:41:bf:
6a:7e:d8:50:d9:56:ab:94:e5:20:5c:f7:49:41:ab:
35:1e:ec:b7:4f:bc:47:6a:90:58:e0:bf:09:11:0e:
06:02:68:45:5e:90:1f:4b:f0:34:49:eb:5d:4e:9f:
af:1c:0e:5a:94:eb:ac:b1:f6:43:28:c1:0a:b9:f0:
9a:e5:58:bd:be:33:85:bb:20:a4:34:28:c4:8d:ab:
74:8b:6a:cd:56:9a:63:d4:41:24:e4:c3:5a:03:b8:
c5:c2:c3:57:0c:6e:15:3a:7b:11:5a:a6:fc:a1:5d:
bd:db:17:46:d0:65:48:76:f5:7e:b4:d4:a7:4e:b2:
7e:4d:e8:17:40:a1:1f:b7:04:bb:ed:14:a7:c5:7d:
ff:c4:d7:80:5f:d3:43:6e:d0:96:2f:01:51:6f:e9:
e3:9a:77:e1:cf:37:e9:cd:cd:06:4a:71:87:28:aa:
90:45:c9:9b:25:71:61:23:91:21:44:00:c9:87:40:
e3:6c:4f:4e:64:e8:da:64:ab:76:55:c9:d2:e5:21:
3c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A9:5C:65:2A:BC:78:04:BD:CE:D6:7C:D9:D5:45:19:89:F0:34:69
X509v3 Authority Key Identifier:
keyid:77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:d4:5b:a8:4a:cd:da:76:5b:04:06:a1:25:f1:42:1a:f5:63:
33:6f:94:d7:b0:59:16:9d:55:d8:1c:bb:e9:44:9a:0b:aa:d0:
90:6b:a0:14:1c:8d:0d:17:7e:8a:86:90:77:d3:5b:0b:07:32:
ba:d5:89:63:14:c3:36:52:03:c7:b7:72:46:60:8d:26:df:12:
7c:28:49:80:4a:22:e0:e6:14:db:03:8a:84:ae:95:bd:1f:a4:
d3:a7:a9:b4:e8:e9:d4:17:fc:9e:31:44:6e:9f:a6:a8:38:8f:
e5:c0:4b:e3:1a:5e:ee:87:40:a7:61:a7:4f:a7:8d:3c:d0:46:
c7:36:c3:d9:8a:47:04:0c:16:f3:f0:7f:0b:fd:20:02:da:69:
29:71:80:b0:5c:3b:55:1f:45:89:96:72:19:e0:34:1c:bf:85:
0d:64:f4:0a:57:63:23:56:c3:e8:48:ce:58:af:74:40:5e:c8:
9e:74:19:94:5f:2e:66:6d:f0:20:3d:06:89:74:ee:36:27:8c:
e0:0e:d3:eb:4c:f8:00:18:e9:a1:9e:69:a8:ee:c0:9d:f5:96:
8a:08:54:54:c3:e5:b6:ad:31:66:d7:08:e4:31:b0:e2:8e:2d:
c0:76:15:97:96:b8:72:29:85:66:b6:10:1b:d0:39:23:9e:d7:
f0:3e:44:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhHeA3JXRs5dqRnjab5yhBpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3MzViNzBkY2EyNzBmY2I4ZTRiOTA5MmI3MjAwMzY0MTM4
ZjVkZjEwHhcNMjUwNzI2MTYwMTQ2WhcNMjUwNzI3MTYwMTQ2WjAzMTEwLwYDVQQD
EyhmNWE5NWM2NTJhYmM3ODA0YmRjZWQ2N2NkOWQ1NDUxOTg5ZjAzNDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+xz1k3DKfwBLj/2Ss5OztEdIGwc8
VL6flk4C+CPDwPLIquzIiFC410NKbjDRUiVbg+EMI8ywSGF6Qb9qfthQ2VarlOUg
XPdJQas1Huy3T7xHapBY4L8JEQ4GAmhFXpAfS/A0SetdTp+vHA5alOussfZDKMEK
ufCa5Vi9vjOFuyCkNCjEjat0i2rNVppj1EEk5MNaA7jFwsNXDG4VOnsRWqb8oV29
2xdG0GVIdvV+tNSnTrJ+TegXQKEftwS77RSnxX3/xNeAX9NDbtCWLwFRb+njmnfh
zzfpzc0GSnGHKKqQRcmbJXFhI5EhRADJh0DjbE9OZOjaZKt2VcnS5SE8OQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPWpXGUqvHgEvc7WfNnVRRmJ8DRpMB8GA1UdIwQY
MBaAFHc1tw3KJw/LjkuQkrcgA2QTj13xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9kZmJjZTgtNTQzNy00OWQ3LWE3Zjkt
YzZkZGViNDk0NzM1LzEvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS9kZmJjZTgtNTQzNy00OWQ3LWE3ZjktYzZkZGViNDk0NzM1
LzEvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaNRbqErN
2nZbBAahJfFCGvVjM2+U17BZFp1V2By76USaC6rQkGugFByNDRd+ioaQd9NbCwcy
utWJYxTDNlIDx7dyRmCNJt8SfChJgEoi4OYU2wOKhK6VvR+k06eptOjp1Bf8njFE
bp+mqDiP5cBL4xpe7odAp2GnT6eNPNBGxzbD2YpHBAwW8/B/C/0gAtppKXGAsFw7
VR9FiZZyGeA0HL+FDWT0CldjI1bD6EjOWK90QF7InnQZlF8uZm3wID0GiXTuNieM
4A7T60z4ABjpoZ5pqO7AnfWWighUVMPltq0xZtcI5DGw4o4twHYVl5a4cimFZrYQ
G9A5I57X8D5Ejw==
-----END CERTIFICATE-----
Generated at Sat Jul 26 23:42:56 2025 by rpki-client