Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
File: dThqb64eVfV2pAW9dLfwjnpsRlM.mft (raw, json)
Hash identifier: 8s+45U6rV4cMpmgQTlsnAgJhYFZlWqlAOnxvSaAw4V4=
Subject key identifier: C8:66:8A:2A:09:70:4B:8E:C7:20:6F:CA:09:F3:64:59:14:43:6E:03
Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Certificate serial: 01992DEC36DE2567A15A43F19B901D29579B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
Manifest number: 0924
Signing time: Tue 09 Sep 2025 10:01:19 +0000
Manifest this update: Tue 09 Sep 2025 10:01:19 +0000
Manifest next update: Wed 10 Sep 2025 10:01:19 +0000
Files and hashes: 1: RbCZ4FuBiM5bQVW3sP5PrxSE_ic.roa (hash: heyjJE1M941WJSvHrhTQkBoLwbj5RIQs9kFiPjSVnUw=)
2: VgQVNXTLznzmHsP79v3Zsr2IWwU.roa (hash: V8Zv8ak7cEH62i1TGjfWmCMowy8kun9bTSlwi87+E9s=)
3: dThqb64eVfV2pAW9dLfwjnpsRlM.crl (hash: vWW4lj5DRb3jsf0Rw7l+snGloOLkB9OwhkhejvfyglU=)
4: rgad5_QrqjzIqPuzW_IRWvVFFb4.roa (hash: CW37KfuVvlCtejt5YGCTadY3jiqhfL5iQfoIqu008Bo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 08:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:ec:36:de:25:67:a1:5a:43:f1:9b:90:1d:29:57:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Validity
Not Before: Sep 9 10:01:19 2025 GMT
Not After : Sep 10 10:01:19 2025 GMT
Subject: CN=c8668a2a09704b8ec7206fca09f3645914436e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:43:ba:93:03:07:da:15:f6:ce:1b:f6:26:72:
15:e6:9b:99:bd:2b:64:99:b9:9d:31:73:d7:9e:62:
fa:62:09:3b:1f:b9:aa:a2:9b:2c:42:03:81:45:b0:
50:b6:d0:de:6c:25:1c:19:71:e4:4d:41:a4:39:d0:
4b:0e:17:71:5a:cf:1d:4e:25:8e:70:54:38:38:a2:
b0:43:28:d8:27:24:da:47:bb:91:c2:2b:c1:bb:58:
8d:18:ac:bb:e4:72:ba:9e:b8:81:75:90:b8:31:a2:
0d:61:63:3c:4b:b4:97:3b:01:f3:ba:f8:5e:6e:6d:
f3:de:6a:8b:d0:4c:86:ae:de:cd:2a:36:a4:e8:e9:
e4:59:af:fd:02:0e:6a:7c:81:13:e9:6a:d0:99:e1:
c1:45:c3:7e:fb:e3:3f:ef:c4:a5:f4:c4:22:44:89:
16:d2:64:4e:1b:2e:e8:94:e8:e7:7a:9d:b5:bd:34:
8a:fc:a0:e5:6f:cc:17:65:96:f6:97:14:fa:75:7e:
f9:20:ad:eb:82:0e:9f:df:0e:43:ab:cc:fd:5a:00:
7a:61:f0:ce:1d:db:c2:d6:12:0c:15:17:e4:9b:bc:
11:e9:79:a1:3a:c3:25:26:bb:be:1e:e3:d6:8f:4f:
92:0d:88:ac:75:49:c8:c8:2c:f1:9f:14:e2:59:fe:
54:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:66:8A:2A:09:70:4B:8E:C7:20:6F:CA:09:F3:64:59:14:43:6E:03
X509v3 Authority Key Identifier:
keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:fd:a1:11:d4:dc:84:8d:99:b5:6d:f5:c2:b4:54:7d:da:2a:
db:44:d5:67:87:f1:c5:c9:75:0a:ee:84:8f:19:5d:76:1b:7d:
14:95:ab:d6:7b:d5:1b:5e:6d:b5:e4:1c:af:8c:1b:b3:76:1b:
59:45:f0:dd:2d:75:ac:5d:39:e5:13:10:d8:f6:2f:cc:04:ff:
04:77:f7:3e:5d:92:3c:06:28:3e:e2:57:31:1e:e2:81:99:78:
60:b1:6e:d7:5d:78:b7:e4:0c:b1:50:1a:31:eb:c0:b6:0e:08:
39:2f:8e:90:9d:4f:a2:e9:51:56:a3:ce:50:18:e0:91:1e:2b:
6b:b4:49:d3:05:59:bb:e6:f8:9e:66:5e:e7:09:45:14:55:18:
9e:15:49:30:a7:ca:0c:8c:94:69:0e:8a:ca:b1:86:73:7b:5a:
51:30:2e:89:a2:70:00:40:62:d2:5d:75:78:e9:4b:db:26:b7:
c6:d6:49:1f:bf:96:5f:8c:9f:d5:d9:89:a2:3b:c5:c9:92:8e:
3a:40:fe:88:8d:33:dc:91:d6:50:cb:de:66:5f:ca:c5:b8:61:
c1:1d:7e:b7:63:a9:81:0d:87:16:b2:91:82:86:59:2f:b2:00:
32:c6:fc:9d:57:98:a2:ba:09:e5:00:18:6b:27:75:d1:fe:7b:
82:41:32:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkt7DbeJWehWkPxm5AdKVebMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1Mzg2YTZmYWUxZTU1ZjU3NmE0MDViZDc0YjdmMDhlN2E2
YzQ2NTMwHhcNMjUwOTA5MTAwMTE5WhcNMjUwOTEwMTAwMTE5WjAzMTEwLwYDVQQD
EyhjODY2OGEyYTA5NzA0YjhlYzcyMDZmY2EwOWYzNjQ1OTE0NDM2ZTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUO6kwMH2hX2zhv2JnIV5puZvStk
mbmdMXPXnmL6Ygk7H7mqopssQgOBRbBQttDebCUcGXHkTUGkOdBLDhdxWs8dTiWO
cFQ4OKKwQyjYJyTaR7uRwivBu1iNGKy75HK6nriBdZC4MaINYWM8S7SXOwHzuvhe
bm3z3mqL0EyGrt7NKjak6OnkWa/9Ag5qfIET6WrQmeHBRcN+++M/78Sl9MQiRIkW
0mROGy7olOjnep21vTSK/KDlb8wXZZb2lxT6dX75IK3rgg6f3w5Dq8z9WgB6YfDO
HdvC1hIMFRfkm7wR6XmhOsMlJru+HuPWj0+SDYisdUnIyCzxnxTiWf5UcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMhmiioJcEuOxyBvygnzZFkUQ24DMB8GA1UdIwQY
MBaAFHU4am+uHlX1dqQFvXS38I56bEZTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9kOWEwMWMtNWM5MS00ZDAwLWEwOWEt
Zjg3OTJmNTc3YjlhLzEvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS9kOWEwMWMtNWM5MS00ZDAwLWEwOWEtZjg3OTJmNTc3Yjlh
LzEvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAff2hEdTc
hI2ZtW31wrRUfdoq20TVZ4fxxcl1Cu6Ejxlddht9FJWr1nvVG15tteQcr4wbs3Yb
WUXw3S11rF055RMQ2PYvzAT/BHf3Pl2SPAYoPuJXMR7igZl4YLFu1114t+QMsVAa
MevAtg4IOS+OkJ1PoulRVqPOUBjgkR4ra7RJ0wVZu+b4nmZe5wlFFFUYnhVJMKfK
DIyUaQ6KyrGGc3taUTAuiaJwAEBi0l11eOlL2ya3xtZJH7+WX4yf1dmJojvFyZKO
OkD+iI0z3JHWUMveZl/KxbhhwR1+t2OpgQ2HFrKRgoZZL7IAMsb8nVeYoroJ5QAY
ayd10f57gkEyHg==
-----END CERTIFICATE-----
Generated at Tue Sep 9 14:00:29 2025 by rpki-client