Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
File: dyDGcENNpRAiYQmdoQHyXdP3qto.mft (raw, json)
Hash identifier: 2f5J6w4g9VZMt8W4NTztQeq1rOdRrY5X325JgAJyShE=
Subject key identifier: 4F:5F:8A:CF:A1:2F:73:2B:E4:88:4A:C6:8C:F4:C6:03:7F:87:8F:76
Authority key identifier: 77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA
Certificate issuer: /CN=7720c670434da5102261099da101f25dd3f7aada
Certificate serial: 019937CA84BA2A0B8FBA9183D27142FFDBD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
Manifest number: 0EBF
Signing time: Thu 11 Sep 2025 08:00:43 +0000
Manifest this update: Thu 11 Sep 2025 08:00:43 +0000
Manifest next update: Fri 12 Sep 2025 08:00:43 +0000
Files and hashes: 1: dyDGcENNpRAiYQmdoQHyXdP3qto.crl (hash: 71Dlrg4SXZ4aAsU6Emhong2p5Luk0ILnLaJAIB6ztWI=)
2: s7pdPnsOB8imHTQwb8o3CB7JIMI.roa (hash: lFvR0bEMv7k9KIxJ6Wc08171+rqM84YXRxLTrqtVpQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:37:ca:84:ba:2a:0b:8f:ba:91:83:d2:71:42:ff:db:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7720c670434da5102261099da101f25dd3f7aada
Validity
Not Before: Sep 11 08:00:43 2025 GMT
Not After : Sep 12 08:00:43 2025 GMT
Subject: CN=4f5f8acfa12f732be4884ac68cf4c6037f878f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8a:b2:d1:a5:9a:01:cf:4d:d5:7d:30:ad:3a:
63:94:27:9d:e5:37:4b:9d:23:12:20:28:59:d3:5f:
43:55:75:ca:e0:43:52:94:b9:22:f1:90:a6:50:4c:
f0:39:48:3b:55:22:74:7d:97:38:41:86:3d:eb:56:
a7:f2:01:3a:9d:d8:e8:39:be:7e:68:98:6d:55:0f:
4b:e1:87:da:dd:a2:1b:e5:b5:f8:e1:98:2a:28:c3:
a8:5e:b4:21:6f:3a:13:db:1a:cc:01:27:79:1d:9a:
33:90:75:0c:e5:42:7a:9a:a7:ec:f1:10:78:93:f2:
22:ac:ec:9a:44:65:8a:bb:cb:35:60:36:31:a4:2b:
6a:cc:cb:09:18:cb:84:13:1f:e8:76:9e:fa:f2:e9:
fa:4f:e1:bd:cb:95:dc:f7:8e:50:db:df:30:d2:30:
64:91:5b:a7:99:c6:2f:2a:65:7a:17:01:68:27:d5:
8a:23:94:18:9a:d0:80:be:c1:9f:7a:ed:61:5c:a1:
e6:f2:7a:13:c5:7d:8f:10:a5:93:9f:b9:4e:25:6d:
35:a8:13:35:03:34:72:6b:8d:55:6a:4d:29:19:36:
9c:c8:e8:5d:1f:2e:47:d6:23:46:6d:8e:1f:d8:dd:
e5:2e:49:51:0f:6a:61:99:48:62:14:06:3c:ec:84:
4f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:5F:8A:CF:A1:2F:73:2B:E4:88:4A:C6:8C:F4:C6:03:7F:87:8F:76
X509v3 Authority Key Identifier:
keyid:77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:8e:dd:30:de:81:0e:36:04:04:5b:c2:9a:80:20:4a:7e:5a:
ad:f3:bb:a0:8b:e9:85:98:1a:7e:d9:95:66:bb:46:3a:86:14:
90:68:70:fd:d8:c0:62:6a:67:33:19:c1:bb:0b:b7:3d:25:8e:
05:0c:20:8c:b9:d2:63:43:87:78:a5:81:31:21:b2:dc:86:d5:
2c:c6:8f:8b:7b:13:d1:f2:0a:da:fb:83:67:5d:b1:0d:bb:d4:
b2:47:54:20:65:05:7e:66:18:16:a1:ef:a7:3b:ce:61:d8:fb:
d6:7d:4e:bf:9c:d4:9d:ea:69:8e:34:ab:98:ec:aa:36:34:8a:
28:2b:49:08:17:51:10:76:0b:ca:a9:be:9d:16:45:60:cf:80:
d3:8d:22:14:f1:29:47:51:50:64:d0:6e:f8:fd:73:de:05:74:
06:41:fc:75:e2:ad:6e:0b:90:66:5a:e7:c1:24:cb:e5:ac:02:
29:7e:cd:a2:35:6b:96:aa:82:47:f0:1f:52:47:96:94:23:c1:
cf:22:3a:2b:1d:8e:d3:28:b7:85:dc:f7:f6:e4:07:ff:96:f8:
a1:ef:1d:69:fd:2d:fc:a1:cb:35:1f:80:c4:00:01:85:30:dc:
89:9a:39:85:b4:91:c3:72:2e:42:41:68:23:cb:d4:37:93:54:
65:ff:92:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk3yoS6KguPupGD0nFC/9vXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3MjBjNjcwNDM0ZGE1MTAyMjYxMDk5ZGExMDFmMjVkZDNm
N2FhZGEwHhcNMjUwOTExMDgwMDQzWhcNMjUwOTEyMDgwMDQzWjAzMTEwLwYDVQQD
Eyg0ZjVmOGFjZmExMmY3MzJiZTQ4ODRhYzY4Y2Y0YzYwMzdmODc4Zjc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIqy0aWaAc9N1X0wrTpjlCed5TdL
nSMSIChZ019DVXXK4ENSlLki8ZCmUEzwOUg7VSJ0fZc4QYY961an8gE6ndjoOb5+
aJhtVQ9L4Yfa3aIb5bX44ZgqKMOoXrQhbzoT2xrMASd5HZozkHUM5UJ6mqfs8RB4
k/IirOyaRGWKu8s1YDYxpCtqzMsJGMuEEx/odp768un6T+G9y5Xc945Q298w0jBk
kVunmcYvKmV6FwFoJ9WKI5QYmtCAvsGfeu1hXKHm8noTxX2PEKWTn7lOJW01qBM1
AzRya41Vak0pGTacyOhdHy5H1iNGbY4f2N3lLklRD2phmUhiFAY87IRPGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE9fis+hL3Mr5IhKxoz0xgN/h492MB8GA1UdIwQY
MBaAFHcgxnBDTaUQImEJnaEB8l3T96raMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9jZjc1M2YtNzc4MS00ZGZlLWEzOGUt
ZDg0NTk5NTk5MWFjLzEvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9jZjc1M2YtNzc4MS00ZGZlLWEzOGUtZDg0NTk5NTk5MWFj
LzEvZHlER2NFTk5wUkFpWVFtZG9RSHlYZFAzcXRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa47dMN6B
DjYEBFvCmoAgSn5arfO7oIvphZgaftmVZrtGOoYUkGhw/djAYmpnMxnBuwu3PSWO
BQwgjLnSY0OHeKWBMSGy3IbVLMaPi3sT0fIK2vuDZ12xDbvUskdUIGUFfmYYFqHv
pzvOYdj71n1Ov5zUneppjjSrmOyqNjSKKCtJCBdREHYLyqm+nRZFYM+A040iFPEp
R1FQZNBu+P1z3gV0BkH8deKtbguQZlrnwSTL5awCKX7NojVrlqqCR/AfUkeWlCPB
zyI6Kx2O0yi3hdz39uQH/5b4oe8daf0t/KHLNR+AxAABhTDciZo5hbSRw3IuQkFo
I8vUN5NUZf+S5g==
-----END CERTIFICATE-----
Generated at Thu Sep 11 11:26:05 2025 by rpki-client