Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft
File: 9dmpKCydJUfFZmNPO6zMvPJYiCc.mft (raw, json)
Hash identifier: 8u2EkwOO4vCT+6hKy2wHchpKglr8/C5SA7qdedJ+LCw=
Subject key identifier: 1C:7E:99:D9:07:70:3B:FB:C8:D1:5B:79:FF:5E:81:80:6F:FB:37:8D
Authority key identifier: F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27
Certificate issuer: /CN=f5d9a9282c9d2547c566634f3bacccbcf2588827
Certificate serial: 01993F15E79C5499A43538B98B6115E8C13C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft
Manifest number: 0CA0
Signing time: Fri 12 Sep 2025 18:00:24 +0000
Manifest this update: Fri 12 Sep 2025 18:00:24 +0000
Manifest next update: Sat 13 Sep 2025 18:00:24 +0000
Files and hashes: 1: 2fQddCIl-7Oq1WuhVFDb_ItwFWs.roa (hash: G5bUTFThyurFxXPOBBEBFBWKjBkZ0p5sb4xbB9qr44M=)
2: 37QCkG1k9gzLrRMVOTELOapS-4Y.roa (hash: fObIS1yLlqyANULO1cGplwcB5m0pXnjdZmigUly+6NA=)
3: 9dmpKCydJUfFZmNPO6zMvPJYiCc.crl (hash: 2NzFoi5y5e9b4zTIqoKECNlal+wQWf0zE49PrfpCN0A=)
4: C8rZpiwRRKp7HiBYnxrXRCtzNP4.roa (hash: /a2qXNrKqG5G3jKSkvjhWWJd/4eBrgaawytg7M/VZPQ=)
5: SyqNMF-ydxJR2kxngWZW5-SrEy0.roa (hash: KeocIUb7cPGt5yIgR1YWAUH1gGZjpJ9norLt8H3zU6Q=)
6: gAIi2RzKXjXCtYGsVRw03pRZYeU.roa (hash: PvQsJF0P/z+mLUrW2+GtvSyLdhymARBFgfCdxNsU3JE=)
7: hkqOX4mECokeZ3ChLO-NkzoKVG0.roa (hash: jDSI0Vi3uJHnivxkTcLJyUGbXo6jl9OF+5YD1t9wHog=)
8: xEaq7kolhQn1OmIod6QQM1Gthtk.roa (hash: IC+2lUW0/0ySDq3Q6puBeGjrJpCDJAXfXz5IauHoRHE=)
9: yZE684PU1B3lT-aKA30arKwyTEI.roa (hash: isFNdgWP0HVp5O76X23OI/gh9YCy0xYVcwqK0QPMZ60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft
rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Sep 2025 15:33:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:3f:15:e7:9c:54:99:a4:35:38:b9:8b:61:15:e8:c1:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5d9a9282c9d2547c566634f3bacccbcf2588827
Validity
Not Before: Sep 12 18:00:24 2025 GMT
Not After : Sep 13 18:00:24 2025 GMT
Subject: CN=1c7e99d907703bfbc8d15b79ff5e81806ffb378d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e8:9e:5e:0b:7c:a9:cf:f2:3b:41:c8:0c:a0:
16:45:16:50:46:c1:ff:79:77:0c:0a:4c:22:07:f9:
99:4b:6c:2d:f2:70:3a:b1:37:39:f0:9c:a3:0f:56:
e9:a6:57:55:db:db:16:09:d1:fe:cf:d6:aa:33:0d:
cc:3e:74:93:d7:6d:3b:2c:54:13:47:9b:95:55:da:
a6:ad:cf:27:70:ab:65:d1:ef:42:68:86:69:ed:16:
23:b6:47:95:f6:cb:1a:49:5f:03:65:33:e4:a3:01:
c3:0d:34:90:48:bc:40:7b:de:b2:df:84:e9:8a:96:
10:3f:e4:5f:37:d9:fa:0d:f2:27:b0:81:21:c3:eb:
a7:17:a2:54:72:f5:c7:35:c4:fa:2f:52:06:9b:db:
f4:05:d6:86:9b:24:6d:77:ba:a5:84:29:c2:ff:48:
c5:47:1a:1c:a5:65:c1:97:04:79:e7:6c:ea:00:50:
a9:db:af:95:77:c7:da:18:bf:e5:34:e0:23:3d:71:
c5:08:c4:18:60:a2:56:c1:e5:e1:a6:8e:5a:fb:18:
11:8c:38:55:7b:e2:64:ca:ad:8b:fe:11:9c:20:7b:
c1:94:f2:68:fc:1f:46:aa:58:f3:27:b4:79:c1:4f:
68:5d:17:a4:2c:f0:81:4a:3e:30:4d:2a:e7:02:76:
a6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:7E:99:D9:07:70:3B:FB:C8:D1:5B:79:FF:5E:81:80:6F:FB:37:8D
X509v3 Authority Key Identifier:
keyid:F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:0f:54:81:f7:44:1e:66:b3:e0:b4:4a:8e:97:81:20:71:80:
7c:f2:cb:3b:75:09:9c:ee:bc:04:64:1d:95:50:d7:27:27:6d:
91:b3:a2:5e:2a:2b:29:28:06:05:13:80:99:d4:fc:b7:a5:7d:
29:a0:1c:fe:06:da:05:c8:ef:fb:fc:71:c3:76:d0:7e:0a:81:
ac:14:83:2a:96:c8:d8:56:fe:71:0f:c3:ef:38:8d:3b:7a:b4:
28:fc:30:e4:08:a9:b1:91:5e:6d:f5:c6:32:b1:b1:62:8d:4d:
39:6e:fd:58:10:97:e5:01:71:33:6c:da:ee:2a:c6:4a:95:44:
38:d7:26:ce:93:05:e5:4e:64:1e:a4:6b:29:2b:74:e2:72:12:
46:a5:77:43:a8:c9:10:92:f5:55:23:8a:70:ff:c4:bd:3b:fe:
91:02:94:a5:f7:f3:1b:6c:a8:02:f3:03:08:76:99:54:ec:e0:
ab:eb:69:ce:ba:ac:d8:c3:c8:34:94:92:ed:86:0a:6a:f9:e4:
8e:28:7d:48:d7:de:32:3c:1c:6d:28:5b:38:32:40:38:91:25:
99:0f:9c:6e:96:a6:49:56:87:97:98:3d:9f:2b:98:c3:58:c6:
0b:12:fb:ea:ff:91:d3:e7:c7:30:60:3b:b9:6a:df:eb:9a:90:
e8:a0:ab:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk/FeecVJmkNTi5i2EV6ME8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1ZDlhOTI4MmM5ZDI1NDdjNTY2NjM0ZjNiYWNjY2JjZjI1
ODg4MjcwHhcNMjUwOTEyMTgwMDI0WhcNMjUwOTEzMTgwMDI0WjAzMTEwLwYDVQQD
EygxYzdlOTlkOTA3NzAzYmZiYzhkMTViNzlmZjVlODE4MDZmZmIzNzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAseieXgt8qc/yO0HIDKAWRRZQRsH/
eXcMCkwiB/mZS2wt8nA6sTc58JyjD1bppldV29sWCdH+z9aqMw3MPnST1207LFQT
R5uVVdqmrc8ncKtl0e9CaIZp7RYjtkeV9ssaSV8DZTPkowHDDTSQSLxAe96y34Tp
ipYQP+RfN9n6DfInsIEhw+unF6JUcvXHNcT6L1IGm9v0BdaGmyRtd7qlhCnC/0jF
RxocpWXBlwR552zqAFCp26+Vd8faGL/lNOAjPXHFCMQYYKJWweXhpo5a+xgRjDhV
e+Jkyq2L/hGcIHvBlPJo/B9GqljzJ7R5wU9oXRekLPCBSj4wTSrnAnamywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBx+mdkHcDv7yNFbef9egYBv+zeNMB8GA1UdIwQY
MBaAFPXZqSgsnSVHxWZjTzuszLzyWIgnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjct
OGNmNDFjYWZkY2UyLzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjctOGNmNDFjYWZkY2Uy
LzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgg9UgfdE
Hmaz4LRKjpeBIHGAfPLLO3UJnO68BGQdlVDXJydtkbOiXiorKSgGBROAmdT8t6V9
KaAc/gbaBcjv+/xxw3bQfgqBrBSDKpbI2Fb+cQ/D7ziNO3q0KPww5AipsZFebfXG
MrGxYo1NOW79WBCX5QFxM2za7irGSpVEONcmzpMF5U5kHqRrKSt04nISRqV3Q6jJ
EJL1VSOKcP/EvTv+kQKUpffzG2yoAvMDCHaZVOzgq+tpzrqs2MPINJSS7YYKavnk
jih9SNfeMjwcbShbODJAOJElmQ+cbpamSVaHl5g9nyuYw1jGCxL76v+R0+fHMGA7
uWrf65qQ6KCrrw==
-----END CERTIFICATE-----
Generated at Fri Sep 12 23:20:01 2025 by rpki-client