Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: 5TBpl9Z8PJ8W/o5GCdzjr8hFZmj60l1DHodPztXhSdo=
Subject key identifier: 9C:3A:8B:D3:45:C1:A9:F2:F2:C4:6F:3A:3C:E4:69:44:F8:3C:C7:A2
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 0197507CB2D8300468B8014280AB9DD2463F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 1581
Signing time: Sun 08 Jun 2025 17:00:38 +0000
Manifest this update: Sun 08 Jun 2025 17:00:38 +0000
Manifest next update: Mon 09 Jun 2025 17:00:38 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: saVh5jdqKYazBoOrhbLJbYMsaYwUle/14J/BREBoook=)
2: b7sNWlzHmaj36hpl7542OiFeLhk.roa (hash: r2LdfaqH2ThvketoRQBfUQ9ZRTad2+2P2sxQXJTCIiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:7c:b2:d8:30:04:68:b8:01:42:80:ab:9d:d2:46:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Jun 8 17:00:38 2025 GMT
Not After : Jun 9 17:00:38 2025 GMT
Subject: CN=9c3a8bd345c1a9f2f2c46f3a3ce46944f83cc7a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cf:04:20:34:ed:11:c1:9a:59:99:75:c8:03:
77:ef:39:3f:01:0e:ac:e9:fd:47:46:fe:13:df:c5:
52:80:a7:11:8d:72:e2:ab:fb:62:df:b4:d5:a4:e7:
23:9f:bb:9a:af:79:a7:7a:84:c7:0d:19:19:e3:9f:
fb:74:24:67:d1:89:0e:4c:a5:c9:ba:13:b2:09:36:
d8:8a:f2:c3:d3:17:8f:10:8b:8d:48:3a:61:8a:1b:
26:e6:9a:df:20:cf:f5:83:7d:96:97:ad:e4:8c:53:
80:7a:0f:b5:8d:2c:f8:9e:43:16:13:a3:bf:52:17:
69:17:61:db:ef:51:6c:c9:fb:47:f9:d8:43:ef:4b:
10:7d:c9:8a:a4:24:28:36:dc:00:38:a9:43:15:da:
25:36:1c:b5:3f:d0:d7:fe:55:44:4e:5b:58:f0:fa:
b4:7a:47:5c:01:f6:1a:00:71:12:4f:20:2d:0b:28:
74:50:dd:2b:56:10:61:2e:ea:59:77:8d:32:01:61:
c9:eb:f9:9e:01:a7:fc:53:13:dc:6c:2d:5f:50:31:
a9:e1:ff:54:a5:19:f3:c4:12:27:9d:c8:55:68:4a:
3a:8d:8b:18:77:aa:c5:49:bb:73:3e:e3:11:4c:c9:
3b:67:98:95:cf:51:21:41:e8:d1:d3:7a:32:1e:c4:
b3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:3A:8B:D3:45:C1:A9:F2:F2:C4:6F:3A:3C:E4:69:44:F8:3C:C7:A2
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:c7:ac:31:04:de:8d:a9:7b:55:b3:a6:28:ad:19:df:dd:c5:
60:a1:f8:61:0b:9d:d6:6a:6a:07:6c:4b:6c:dd:77:b8:e9:d1:
ba:cf:b8:93:9b:05:ef:78:7e:54:28:e5:16:72:c1:b2:4b:87:
0f:b8:9f:9e:5c:6e:0b:6f:bb:64:6e:35:e2:52:ad:bb:86:08:
d3:7b:fa:09:e5:65:e6:d5:a3:13:3f:6e:d6:5c:c2:09:37:73:
04:84:61:86:cd:15:82:a3:99:ba:76:6d:30:a2:6f:b2:25:c1:
20:cd:fa:b7:c3:c5:cd:21:56:89:0d:92:e9:1f:2c:62:00:be:
af:db:04:e6:95:47:fc:9a:48:ae:04:02:c1:f3:14:ff:77:ae:
d9:de:0d:c9:bb:df:be:7c:a5:04:d9:f1:ab:e5:ed:ed:34:9c:
97:37:c2:c9:80:8f:64:f6:10:af:a3:6e:78:97:f2:21:a5:4c:
ef:56:95:76:0c:fb:44:cb:47:38:32:a9:56:45:c6:ea:36:c4:
e3:76:76:d9:c6:4c:e3:a2:65:ea:c2:f3:54:c3:4e:c1:55:20:
e4:2d:fc:fa:28:72:ab:06:73:b3:c9:3b:60:01:dc:9b:c1:1c:
39:5b:11:78:2b:89:7d:75:fa:07:71:7b:41:a8:35:ea:bd:31:
7c:bb:a4:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQfLLYMARouAFCgKud0kY/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZGRhODMyNzY5YzMxNjgxZjgyNTY4NTE0NzM2OGFmM2Ex
MWY2ZjgwHhcNMjUwNjA4MTcwMDM4WhcNMjUwNjA5MTcwMDM4WjAzMTEwLwYDVQQD
Eyg5YzNhOGJkMzQ1YzFhOWYyZjJjNDZmM2EzY2U0Njk0NGY4M2NjN2EyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArs8EIDTtEcGaWZl1yAN37zk/AQ6s
6f1HRv4T38VSgKcRjXLiq/ti37TVpOcjn7uar3mneoTHDRkZ45/7dCRn0YkOTKXJ
uhOyCTbYivLD0xePEIuNSDphihsm5prfIM/1g32Wl63kjFOAeg+1jSz4nkMWE6O/
UhdpF2Hb71FsyftH+dhD70sQfcmKpCQoNtwAOKlDFdolNhy1P9DX/lVETltY8Pq0
ekdcAfYaAHESTyAtCyh0UN0rVhBhLupZd40yAWHJ6/meAaf8UxPcbC1fUDGp4f9U
pRnzxBInnchVaEo6jYsYd6rFSbtzPuMRTMk7Z5iVz1EhQejR03oyHsSzOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJw6i9NFwany8sRvOjzkaUT4PMeiMB8GA1UdIwQY
MBaAFNHdqDJ2nDFoH4JWhRRzaK86Efb4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81YTZkM2MtMTdkYS00NGQzLWE0MDIt
ODYyMzZiYWMxMzA4LzEvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC81YTZkM2MtMTdkYS00NGQzLWE0MDItODYyMzZiYWMxMzA4
LzEvMGQyb01uYWNNV2dmZ2xhRkZITm9yem9SOXZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVsesMQTe
jal7VbOmKK0Z393FYKH4YQud1mpqB2xLbN13uOnRus+4k5sF73h+VCjlFnLBskuH
D7ifnlxuC2+7ZG414lKtu4YI03v6CeVl5tWjEz9u1lzCCTdzBIRhhs0VgqOZunZt
MKJvsiXBIM36t8PFzSFWiQ2S6R8sYgC+r9sE5pVH/JpIrgQCwfMU/3eu2d4Nybvf
vnylBNnxq+Xt7TSclzfCyYCPZPYQr6NueJfyIaVM71aVdgz7RMtHODKpVkXG6jbE
43Z22cZM46Jl6sLzVMNOwVUg5C38+ihyqwZzs8k7YAHcm8EcOVsReCuJfXX6B3F7
Qag16r0xfLukhA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 23:11:57 2025 by rpki-client