Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
File: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft (raw, json)
Hash identifier: u8wlze8UfNFwiq6WbrV2lNFix+nRnYKXBnkyDOjJWeo=
Subject key identifier: 54:9D:4A:22:51:81:83:64:65:EE:43:88:83:3A:11:1D:C3:80:60:89
Authority key identifier: 0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
Certificate issuer: /CN=0d333f72d9e294543825be63729f8034a4517090
Certificate serial: 01974B1F1C4944A3080EBDB74BB9F2AFB30C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
Manifest number: 0973
Signing time: Sat 07 Jun 2025 16:00:19 +0000
Manifest this update: Sat 07 Jun 2025 16:00:19 +0000
Manifest next update: Sun 08 Jun 2025 16:00:19 +0000
Files and hashes: 1: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl (hash: PPIU9taHqO0cN1HtI5uLjOqqySNu1D4Q1PadMphegas=)
2: IoDHlDbNXO3jlcqfipIcULBON5A.roa (hash: KOgCTDaSahbElR1Ol4oBVrEjOtYhS4W0VzXtKth8BeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 16:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:1c:49:44:a3:08:0e:bd:b7:4b:b9:f2:af:b3:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d333f72d9e294543825be63729f8034a4517090
Validity
Not Before: Jun 7 16:00:19 2025 GMT
Not After : Jun 8 16:00:19 2025 GMT
Subject: CN=549d4a225181836465ee4388833a111dc3806089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:86:ef:4a:14:4b:1f:c8:37:6f:52:e5:8c:83:
fb:2f:0f:2c:cf:32:01:80:c9:fd:ec:47:be:3b:3c:
ae:d3:8c:ea:2b:c8:e2:64:0c:c9:68:39:b5:dc:cf:
1f:57:6f:3b:6c:68:3f:2c:71:4d:fd:63:c6:2e:07:
97:7b:d2:ac:c3:9c:b8:10:da:d3:0b:8e:d7:75:e1:
8f:a8:7e:14:89:08:24:dc:bc:92:d5:aa:cf:ed:9d:
ba:a8:5b:1c:39:ae:c9:09:ae:af:40:35:e9:f8:49:
43:7b:3d:e8:7a:d7:f5:e2:a3:53:03:b4:71:9e:2f:
df:ea:6e:b8:95:ba:58:0d:5f:f8:21:fc:99:9e:a7:
9f:99:c0:5e:1b:1b:8d:35:04:9c:27:74:ba:d3:32:
35:d9:3b:15:3d:43:a3:8b:f5:23:27:09:37:90:8c:
28:b8:d7:53:0e:a8:da:70:ac:04:4a:f1:d7:d9:79:
2a:27:22:84:35:eb:49:2f:fa:f9:65:ff:9a:6c:f6:
8c:53:c6:2c:18:eb:db:f6:b3:38:ca:b9:f1:9c:6f:
dc:b6:9d:6b:c4:49:0b:c4:e5:7b:19:b8:40:3c:b6:
6d:8b:f0:b1:97:5c:51:5b:70:a4:2c:6a:6d:6d:05:
40:7c:63:c6:e2:be:be:78:01:7a:5d:c1:79:5c:b7:
87:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:9D:4A:22:51:81:83:64:65:EE:43:88:83:3A:11:1D:C3:80:60:89
X509v3 Authority Key Identifier:
keyid:0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:21:5c:35:11:e1:bd:4a:08:ad:dd:f9:a0:a3:1a:59:fc:1f:
d2:56:73:62:22:12:de:32:48:56:4c:d2:e7:32:9f:14:ed:02:
95:89:a6:4b:5a:34:e0:85:e3:99:f8:0e:08:b4:26:8a:40:c1:
a7:0a:51:90:c5:d9:fa:8f:72:d3:e6:f7:68:20:14:36:d9:57:
dc:fd:f0:15:7b:8f:1b:b5:54:5e:fd:f7:05:53:fd:f0:fc:4b:
81:c1:e0:f4:11:23:b8:25:03:41:b8:7a:39:42:b8:0a:dc:dc:
0a:7d:b7:d9:e3:fc:75:b3:94:a2:6e:7b:7f:c3:48:4d:98:ed:
b0:c2:00:9a:17:b5:87:42:1a:14:f6:c8:d8:a1:d9:5b:f8:5e:
31:7a:a4:be:50:c0:e7:65:5f:6a:38:eb:f9:47:f4:06:f1:89:
71:6f:5c:56:c1:a3:2e:b5:26:d4:88:84:d7:ca:84:b0:72:5b:
d9:e3:37:33:df:1e:ca:42:fd:0b:31:2d:be:c6:ed:8f:cc:f2:
8d:65:bd:f9:7c:d2:e6:8f:7d:1b:6a:1d:09:ca:5b:ce:f5:ed:
10:fa:c8:ca:00:11:90:3c:2e:2b:46:a9:77:6f:d5:b8:87:b2:
42:41:e2:42:03:c0:ee:2e:c9:fc:ea:81:57:6a:55:21:ff:88:
72:ba:56:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLHxxJRKMIDr23S7nyr7MMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkMzMzZjcyZDllMjk0NTQzODI1YmU2MzcyOWY4MDM0YTQ1
MTcwOTAwHhcNMjUwNjA3MTYwMDE5WhcNMjUwNjA4MTYwMDE5WjAzMTEwLwYDVQQD
Eyg1NDlkNGEyMjUxODE4MzY0NjVlZTQzODg4MzNhMTExZGMzODA2MDg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYbvShRLH8g3b1LljIP7Lw8szzIB
gMn97Ee+Ozyu04zqK8jiZAzJaDm13M8fV287bGg/LHFN/WPGLgeXe9Ksw5y4ENrT
C47XdeGPqH4UiQgk3LyS1arP7Z26qFscOa7JCa6vQDXp+ElDez3oetf14qNTA7Rx
ni/f6m64lbpYDV/4IfyZnqefmcBeGxuNNQScJ3S60zI12TsVPUOji/UjJwk3kIwo
uNdTDqjacKwESvHX2XkqJyKENetJL/r5Zf+abPaMU8YsGOvb9rM4yrnxnG/ctp1r
xEkLxOV7GbhAPLZti/Cxl1xRW3CkLGptbQVAfGPG4r6+eAF6XcF5XLeHPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFSdSiJRgYNkZe5DiIM6ER3DgGCJMB8GA1UdIwQY
MBaAFA0zP3LZ4pRUOCW+Y3KfgDSkUXCQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFRNX2N0bmlsRlE0SmI1amNwLUFOS1JSY0pBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC82NWZlYTItYTNkOS00OTJmLThlNDQt
ODk0ZGZhNWRmMDE3LzEvRFRNX2N0bmlsRlE0SmI1amNwLUFOS1JSY0pBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC82NWZlYTItYTNkOS00OTJmLThlNDQtODk0ZGZhNWRmMDE3
LzEvRFRNX2N0bmlsRlE0SmI1amNwLUFOS1JSY0pBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJCFcNRHh
vUoIrd35oKMaWfwf0lZzYiIS3jJIVkzS5zKfFO0ClYmmS1o04IXjmfgOCLQmikDB
pwpRkMXZ+o9y0+b3aCAUNtlX3P3wFXuPG7VUXv33BVP98PxLgcHg9BEjuCUDQbh6
OUK4CtzcCn232eP8dbOUom57f8NITZjtsMIAmhe1h0IaFPbI2KHZW/heMXqkvlDA
52Vfajjr+Uf0BvGJcW9cVsGjLrUm1IiE18qEsHJb2eM3M98eykL9CzEtvsbtj8zy
jWW9+XzS5o99G2odCcpbzvXtEPrIygARkDwuK0apd2/VuIeyQkHiQgPA7i7J/OqB
V2pVIf+IcrpW/Q==
-----END CERTIFICATE-----
Generated at Sun Jun 8 00:29:52 2025 by rpki-client