Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft
File: dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft (raw, json)
Hash identifier: kN5ucVUiVpNxwCQKiPjyjZqrLXpM/b6C9po1RKmTWIY=
Subject key identifier: DC:FD:82:09:48:B7:A0:C9:69:0D:C8:35:66:EB:F5:E7:A4:9D:33:FA
Authority key identifier: 75:72:C9:A1:08:CE:3D:E5:2D:16:E2:11:E8:0C:95:E5:C5:B5:4C:84
Certificate issuer: /CN=7572c9a108ce3de52d16e211e80c95e5c5b54c84
Certificate serial: 01974A7A9D2A190EB106FB03DFAA59F2A3A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft
Manifest number: 1032
Signing time: Sat 07 Jun 2025 13:00:38 +0000
Manifest this update: Sat 07 Jun 2025 13:00:38 +0000
Manifest next update: Sun 08 Jun 2025 13:00:38 +0000
Files and hashes: 1: dXLJoQjOPeUtFuIR6AyV5cW1TIQ.crl (hash: 9dIJWHsQYzWYnywSQBF0L9X4ai/WKbsdS3Cs1M4LSio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:9d:2a:19:0e:b1:06:fb:03:df:aa:59:f2:a3:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7572c9a108ce3de52d16e211e80c95e5c5b54c84
Validity
Not Before: Jun 7 13:00:38 2025 GMT
Not After : Jun 8 13:00:38 2025 GMT
Subject: CN=dcfd820948b7a0c9690dc83566ebf5e7a49d33fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f4:fc:f5:66:eb:12:05:38:76:63:d1:5c:70:
9e:1e:cf:f7:58:36:a3:42:ae:23:d3:ba:c4:c5:aa:
30:b5:6f:07:77:3f:1e:2f:96:a2:8e:b9:87:68:9a:
07:0e:16:6c:1a:ba:b1:27:0c:3b:5a:c9:3f:aa:41:
68:73:ab:04:25:22:19:21:51:4e:85:75:95:73:98:
c8:c9:97:bd:58:a2:6f:2a:91:fe:de:2d:35:a9:a1:
7e:33:32:9c:4c:82:37:b0:b2:92:39:ab:35:a5:c5:
48:50:b1:c8:ba:1a:e9:68:55:4c:4e:70:5b:c5:02:
c1:e5:bc:18:a0:67:a1:1e:6b:1d:e0:1f:a8:0d:87:
70:f3:61:d7:2e:0e:8e:8f:fd:44:5a:26:4d:90:7d:
12:74:50:83:1a:dc:04:ff:8c:8a:37:11:97:bf:0a:
f8:4c:02:06:64:18:0c:a0:07:2a:95:eb:ce:ea:18:
c9:52:69:a6:68:b8:c5:3c:54:6e:1f:7f:8e:be:bb:
ca:95:66:73:42:c0:86:11:24:03:eb:cd:72:15:b2:
5f:1f:ff:10:d8:0b:e1:d8:23:b4:1d:a8:43:9f:28:
8d:df:1f:08:02:87:8a:b1:39:5b:d1:ac:8d:6c:94:
07:98:16:24:16:2b:1a:22:6c:0b:4c:41:dd:e3:6a:
d2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:FD:82:09:48:B7:A0:C9:69:0D:C8:35:66:EB:F5:E7:A4:9D:33:FA
X509v3 Authority Key Identifier:
keyid:75:72:C9:A1:08:CE:3D:E5:2D:16:E2:11:E8:0C:95:E5:C5:B5:4C:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:ce:fb:ed:07:06:fe:49:10:ce:7b:b1:ea:30:03:e0:0d:6a:
c2:07:1b:ff:e9:35:37:d9:05:3b:e4:82:3f:5d:e8:ef:7d:b7:
9e:d9:0b:4d:f0:0d:9d:da:55:12:58:7f:89:48:86:a3:b3:d1:
13:25:75:e8:dc:5c:1f:15:64:78:64:64:ed:77:16:54:18:8e:
6e:b2:ae:c3:90:2d:15:84:6f:7d:a3:7c:a4:ba:2b:18:8f:82:
bc:31:25:3b:47:54:ec:62:5e:95:b1:fa:2d:6c:30:ec:7c:d2:
22:e5:7b:60:41:79:4a:d1:06:b0:97:49:f2:c0:82:df:d8:80:
6e:fa:2a:73:b0:bb:6f:0e:94:2a:d3:e0:86:25:25:01:36:43:
4b:67:06:c3:69:f0:e4:c9:c7:a8:75:f0:ef:63:9d:58:a5:72:
92:c1:53:8c:70:00:ca:a8:ca:8d:39:10:ac:78:0c:cd:b1:0f:
4a:8e:db:2f:61:bb:cb:58:fd:00:35:bb:c8:8e:dd:85:98:29:
c3:aa:b9:d3:c7:d8:ae:3d:66:c8:fb:be:11:3e:db:c5:57:8e:
c5:11:e3:8f:8f:95:5a:52:41:d0:db:73:bf:f1:32:4d:f1:9f:
9a:b9:25:33:01:b5:e1:0d:fa:ef:d4:28:17:58:e4:87:2d:fc:
4c:8f:7d:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKep0qGQ6xBvsD36pZ8qOnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1NzJjOWExMDhjZTNkZTUyZDE2ZTIxMWU4MGM5NWU1YzVi
NTRjODQwHhcNMjUwNjA3MTMwMDM4WhcNMjUwNjA4MTMwMDM4WjAzMTEwLwYDVQQD
EyhkY2ZkODIwOTQ4YjdhMGM5NjkwZGM4MzU2NmViZjVlN2E0OWQzM2ZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPT89WbrEgU4dmPRXHCeHs/3WDaj
Qq4j07rExaowtW8Hdz8eL5aijrmHaJoHDhZsGrqxJww7Wsk/qkFoc6sEJSIZIVFO
hXWVc5jIyZe9WKJvKpH+3i01qaF+MzKcTII3sLKSOas1pcVIULHIuhrpaFVMTnBb
xQLB5bwYoGehHmsd4B+oDYdw82HXLg6Oj/1EWiZNkH0SdFCDGtwE/4yKNxGXvwr4
TAIGZBgMoAcqlevO6hjJUmmmaLjFPFRuH3+OvrvKlWZzQsCGESQD681yFbJfH/8Q
2Avh2CO0HahDnyiN3x8IAoeKsTlb0ayNbJQHmBYkFisaImwLTEHd42rSowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNz9gglIt6DJaQ3INWbr9eeknTP6MB8GA1UdIwQY
MBaAFHVyyaEIzj3lLRbiEegMleXFtUyEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFhMSm9Rak9QZVV0RnVJUjZBeVY1Y1cxVElRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS82ZmQ3ZTUtYzJjOS00OTBiLTk1ZTkt
NWZhZWM1YWJhZjFiLzEvZFhMSm9Rak9QZVV0RnVJUjZBeVY1Y1cxVElRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS82ZmQ3ZTUtYzJjOS00OTBiLTk1ZTktNWZhZWM1YWJhZjFi
LzEvZFhMSm9Rak9QZVV0RnVJUjZBeVY1Y1cxVElRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXc777QcG
/kkQznux6jAD4A1qwgcb/+k1N9kFO+SCP13o7323ntkLTfANndpVElh/iUiGo7PR
EyV16NxcHxVkeGRk7XcWVBiObrKuw5AtFYRvfaN8pLorGI+CvDElO0dU7GJelbH6
LWww7HzSIuV7YEF5StEGsJdJ8sCC39iAbvoqc7C7bw6UKtPghiUlATZDS2cGw2nw
5MnHqHXw72OdWKVyksFTjHAAyqjKjTkQrHgMzbEPSo7bL2G7y1j9ADW7yI7dhZgp
w6q508fYrj1myPu+ET7bxVeOxRHjj4+VWlJB0Ntzv/EyTfGfmrklMwG14Q3679Qo
F1jkhy38TI99WQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:12:06 2025 by rpki-client