Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
File: Dv0crRIZAnVQiePKgLptfMxLm3E.mft (raw, json)
Hash identifier: EZYA4Xzgwk9gXpjDDOdr6FbVVELxw7DPxjujY4rYiXA=
Subject key identifier: D8:0E:C6:70:72:09:39:C0:9E:FD:D0:66:29:43:BF:50:BA:7B:29:43
Authority key identifier: 0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
Certificate issuer: /CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Certificate serial: 019922C364E1BDF283C79084EAB431BDBFC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
Manifest number: 0C6D
Signing time: Sun 07 Sep 2025 06:00:54 +0000
Manifest this update: Sun 07 Sep 2025 06:00:54 +0000
Manifest next update: Mon 08 Sep 2025 06:00:54 +0000
Files and hashes: 1: Dv0crRIZAnVQiePKgLptfMxLm3E.crl (hash: XRPXTH8JRo+q0GkkOZ3E7JMDLBLr597JdzlRZuxuwCw=)
2: kzypufx1A54QL9RnefA55meWSPM.roa (hash: cK+sc1FxI2UgckK1YuVxFsSFuYcOk8chhmHAVw1PhQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:64:e1:bd:f2:83:c7:90:84:ea:b4:31:bd:bf:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Validity
Not Before: Sep 7 06:00:54 2025 GMT
Not After : Sep 8 06:00:54 2025 GMT
Subject: CN=d80ec670720939c09efdd0662943bf50ba7b2943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:26:0a:d7:cf:6a:71:f4:de:7b:23:47:fd:0f:
a5:49:12:30:89:e8:3b:29:8e:29:b9:c6:e3:76:e6:
a8:c5:5a:d8:b3:d2:09:e0:e4:a7:5c:85:bd:8c:6f:
b8:98:84:4b:21:61:82:f1:5c:6e:da:e1:e9:15:2a:
3a:9b:13:8d:81:48:60:04:3a:7a:d8:60:f9:d5:8e:
04:33:d7:50:4a:43:4f:fd:d3:83:b2:23:ee:a5:6b:
27:9c:a4:54:7d:17:86:72:be:17:72:fe:c2:ed:79:
6b:2d:f3:74:84:f7:81:be:a7:1e:04:7b:04:66:fa:
3e:85:d4:23:68:43:66:71:d8:d6:c7:7e:c1:e9:a8:
35:e4:98:fb:af:f6:29:32:5a:cb:8b:1d:38:93:f8:
fa:4a:a9:2e:c3:8a:7f:e8:1b:da:0a:6e:f2:37:34:
6f:0e:8c:69:e1:34:20:e4:d4:60:6e:86:56:c8:8e:
60:c3:79:ba:fd:c3:d2:9e:4f:3e:d0:db:4f:bd:f6:
52:a0:a1:84:ad:c4:84:8c:07:a3:26:ce:47:6a:a3:
a6:86:30:07:9f:09:70:6e:fe:da:ac:da:c3:58:83:
9b:26:cb:e3:2d:06:41:c9:39:bb:93:de:3e:f0:96:
3a:5b:5c:48:5c:4b:84:69:bd:38:63:37:fd:34:57:
62:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:0E:C6:70:72:09:39:C0:9E:FD:D0:66:29:43:BF:50:BA:7B:29:43
X509v3 Authority Key Identifier:
keyid:0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:c9:24:14:c6:1d:7e:35:92:3d:cb:22:ba:98:7f:fd:1e:f0:
a4:ff:2d:d8:ed:44:15:b5:a6:13:8d:24:fc:6a:b8:fe:f9:6b:
43:4e:31:e0:72:f5:2e:bd:3a:15:bb:68:e1:10:02:f4:7c:a9:
4b:b7:97:13:e2:a3:60:32:f8:21:57:c0:44:37:a0:c2:cb:a4:
1e:36:6f:ec:50:bb:50:27:82:ca:e5:36:30:10:31:52:da:c8:
e1:a3:f0:46:dd:ff:ba:d8:41:d4:0a:5e:3a:0e:67:e1:56:61:
ae:2d:a0:ea:cf:ae:2b:d6:2d:17:2a:12:a9:e4:c4:c8:cc:94:
b2:5b:00:66:67:93:ac:ae:d2:33:34:c3:01:f5:96:ee:3e:91:
18:7d:85:d8:87:fe:01:19:c2:84:43:54:f0:d1:7b:34:21:55:
3d:26:88:74:c1:c9:15:46:b4:34:e9:9f:c0:3d:aa:bf:2b:9e:
a3:79:7c:5c:de:01:c2:4d:b0:80:a5:ba:19:a2:0e:b5:c3:13:
f8:3c:a5:2f:46:8d:5d:67:42:48:36:b9:72:4d:22:8f:27:68:
4f:b5:48:bd:f5:b4:d3:43:f5:14:73:7d:ee:6e:68:39:2f:09:
8c:55:a2:6f:aa:fc:0c:67:7d:41:b7:aa:70:4a:6c:1e:9c:f7:
90:db:cb:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiw2ThvfKDx5CE6rQxvb/JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlZmQxY2FkMTIxOTAyNzU1MDg5ZTNjYTgwYmE2ZDdjY2M0
YjliNzEwHhcNMjUwOTA3MDYwMDU0WhcNMjUwOTA4MDYwMDU0WjAzMTEwLwYDVQQD
EyhkODBlYzY3MDcyMDkzOWMwOWVmZGQwNjYyOTQzYmY1MGJhN2IyOTQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuyYK189qcfTeeyNH/Q+lSRIwieg7
KY4pucbjduaoxVrYs9IJ4OSnXIW9jG+4mIRLIWGC8Vxu2uHpFSo6mxONgUhgBDp6
2GD51Y4EM9dQSkNP/dODsiPupWsnnKRUfReGcr4Xcv7C7XlrLfN0hPeBvqceBHsE
Zvo+hdQjaENmcdjWx37B6ag15Jj7r/YpMlrLix04k/j6Sqkuw4p/6BvaCm7yNzRv
Doxp4TQg5NRgboZWyI5gw3m6/cPSnk8+0NtPvfZSoKGErcSEjAejJs5HaqOmhjAH
nwlwbv7arNrDWIObJsvjLQZByTm7k94+8JY6W1xIXEuEab04Yzf9NFdiJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNgOxnByCTnAnv3QZilDv1C6eylDMB8GA1UdIwQY
MBaAFA79HK0SGQJ1UInjyoC6bXzMS5txMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHYwY3JSSVpBblZRaWVQS2dMcHRmTXhMbTNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9kZjk5ZDMtNTAyOC00MzYxLWI3OTUt
M2FmNGE5NDYzYjc3LzEvRHYwY3JSSVpBblZRaWVQS2dMcHRmTXhMbTNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy9kZjk5ZDMtNTAyOC00MzYxLWI3OTUtM2FmNGE5NDYzYjc3
LzEvRHYwY3JSSVpBblZRaWVQS2dMcHRmTXhMbTNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUckkFMYd
fjWSPcsiuph//R7wpP8t2O1EFbWmE40k/Gq4/vlrQ04x4HL1Lr06Fbto4RAC9Hyp
S7eXE+KjYDL4IVfARDegwsukHjZv7FC7UCeCyuU2MBAxUtrI4aPwRt3/uthB1Ape
Og5n4VZhri2g6s+uK9YtFyoSqeTEyMyUslsAZmeTrK7SMzTDAfWW7j6RGH2F2If+
ARnChENU8NF7NCFVPSaIdMHJFUa0NOmfwD2qvyueo3l8XN4Bwk2wgKW6GaIOtcMT
+DylL0aNXWdCSDa5ck0ijydoT7VIvfW000P1FHN97m5oOS8JjFWib6r8DGd9Qbeq
cEpsHpz3kNvLkw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:51:55 2025 by rpki-client