Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
File: dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft (raw, json)
Hash identifier: 1/1lwC199siO64A7kP/RuXfBzg2SKfSIIrhBMag56P8=
Subject key identifier: 26:79:71:76:59:4E:E2:D9:A8:2F:86:EC:C5:0E:D2:C5:3B:23:A8:A9
Authority key identifier: 76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
Certificate issuer: /CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Certificate serial: 01975158C1979CAC7DF2356D2DAC5B8DF85D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
Manifest number: 12CB
Signing time: Sun 08 Jun 2025 21:01:00 +0000
Manifest this update: Sun 08 Jun 2025 21:01:00 +0000
Manifest next update: Mon 09 Jun 2025 21:01:00 +0000
Files and hashes: 1: P5ZnswUpMLyVjWj9pVZS-hlIw7A.roa (hash: 3hJsA3Q3EQecJR3hJHgLTYYEIcnWflx0DcKeSfNvhRM=)
2: dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl (hash: EQqTn8jcfwd999ou2YR5QwBC+Lq3a8gsL6ZI1l6Q/7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:58:c1:97:9c:ac:7d:f2:35:6d:2d:ac:5b:8d:f8:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Validity
Not Before: Jun 8 21:01:00 2025 GMT
Not After : Jun 9 21:01:00 2025 GMT
Subject: CN=26797176594ee2d9a82f86ecc50ed2c53b23a8a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a9:2c:ed:3b:c1:78:b7:aa:38:6d:b2:5e:b5:
9b:a7:0c:54:aa:ec:2c:65:16:e4:cd:fa:d0:e0:0e:
31:88:00:71:f8:c5:6f:e2:81:69:35:bc:cb:cf:24:
f3:85:72:92:9a:29:06:36:53:0c:82:8e:5e:4f:21:
b1:b8:97:2f:a8:2e:2c:28:2b:3a:e2:dc:a1:e3:17:
78:9b:af:cc:06:03:1b:b2:0c:ff:4c:8c:a1:2d:bc:
2d:53:06:39:f2:c5:22:78:0e:cc:62:4c:db:3c:34:
ed:fe:a5:29:5d:9f:e6:c7:ca:d0:0d:fe:7d:fc:b7:
8a:c3:9e:84:52:32:cf:94:8e:64:e9:50:36:12:29:
7b:46:54:c3:e4:b8:af:15:dc:08:b9:dc:20:89:e6:
37:40:ef:67:de:79:40:58:63:58:aa:8d:06:23:8c:
13:dd:74:5f:e1:4f:b9:73:03:ef:80:61:ae:59:9a:
13:e0:f2:45:6f:78:30:a6:72:3b:b5:e4:4a:f0:57:
6b:8a:71:ee:d1:2b:8e:a7:70:12:e6:b1:c2:8f:d7:
1b:a8:9f:98:d2:93:b8:d0:b3:9e:d6:45:d1:48:b8:
f1:9a:ea:08:27:ee:8c:0c:13:e9:36:70:75:be:9f:
a7:6b:2d:71:3d:98:d4:40:63:69:da:a4:d7:ec:db:
42:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:79:71:76:59:4E:E2:D9:A8:2F:86:EC:C5:0E:D2:C5:3B:23:A8:A9
X509v3 Authority Key Identifier:
keyid:76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:60:ef:a4:a0:19:1e:f3:bc:0c:58:c0:b7:f2:12:ff:be:94:
d6:c4:8a:f7:ac:73:77:d5:9c:13:46:4d:2c:59:bd:e7:b0:6c:
1b:b3:92:35:54:98:cd:32:d3:2e:3c:d2:85:d2:c7:da:21:d0:
ed:f9:d5:e6:70:b7:a3:48:0b:52:91:2b:d8:ee:eb:ed:ef:93:
51:65:cd:a0:11:84:cd:fd:59:df:ea:38:22:1f:cc:7c:d7:56:
a7:13:81:41:2a:3e:e0:2a:59:e6:47:87:da:ce:74:5d:6b:72:
14:4a:c8:b9:12:fb:79:29:0d:82:06:b3:56:dd:6e:48:1c:0c:
ed:a8:6c:fb:58:53:f4:9b:ab:93:ea:f0:06:11:95:b7:bf:54:
99:27:66:d4:55:66:02:74:12:f9:d7:e2:9e:c9:4d:dd:11:c2:
aa:a4:55:71:cd:a3:fd:6c:a3:27:b2:26:c9:32:01:e4:ab:4e:
98:71:bb:13:05:27:6a:c2:12:6b:93:0d:71:a7:d0:06:74:d8:
c0:52:bf:b5:28:7e:29:52:55:6b:25:9c:5b:ac:46:84:35:78:
fc:51:17:a8:7a:ec:d2:83:57:cd:55:41:a6:82:fe:d2:64:2d:
26:d7:cb:d7:3f:fc:b4:0b:2d:7f:a5:5f:54:6b:de:e1:fe:73:
8c:da:cd:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdRWMGXnKx98jVtLaxbjfhdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2N2JjMDJhNTg1OTYyM2Y1NjNlYTg0YTZiYjBhMjkyMGQ1
YjNlOTEwHhcNMjUwNjA4MjEwMTAwWhcNMjUwNjA5MjEwMTAwWjAzMTEwLwYDVQQD
EygyNjc5NzE3NjU5NGVlMmQ5YTgyZjg2ZWNjNTBlZDJjNTNiMjNhOGE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6ks7TvBeLeqOG2yXrWbpwxUquws
ZRbkzfrQ4A4xiABx+MVv4oFpNbzLzyTzhXKSmikGNlMMgo5eTyGxuJcvqC4sKCs6
4tyh4xd4m6/MBgMbsgz/TIyhLbwtUwY58sUieA7MYkzbPDTt/qUpXZ/mx8rQDf59
/LeKw56EUjLPlI5k6VA2Eil7RlTD5LivFdwIudwgieY3QO9n3nlAWGNYqo0GI4wT
3XRf4U+5cwPvgGGuWZoT4PJFb3gwpnI7teRK8FdrinHu0SuOp3AS5rHCj9cbqJ+Y
0pO40LOe1kXRSLjxmuoIJ+6MDBPpNnB1vp+nay1xPZjUQGNp2qTX7NtCiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCZ5cXZZTuLZqC+G7MUO0sU7I6ipMB8GA1UdIwQY
MBaAFHZ7wCpYWWI/Vj6oSmuwopINWz6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9jZGFiYzQtYmFlNS00ZDk5LTllMTct
NjgxNTU0OGJmMzNmLzEvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9jZGFiYzQtYmFlNS00ZDk5LTllMTctNjgxNTU0OGJmMzNm
LzEvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFGDvpKAZ
HvO8DFjAt/IS/76U1sSK96xzd9WcE0ZNLFm957BsG7OSNVSYzTLTLjzShdLH2iHQ
7fnV5nC3o0gLUpEr2O7r7e+TUWXNoBGEzf1Z3+o4Ih/MfNdWpxOBQSo+4CpZ5keH
2s50XWtyFErIuRL7eSkNggazVt1uSBwM7ahs+1hT9Jurk+rwBhGVt79UmSdm1FVm
AnQS+dfinslN3RHCqqRVcc2j/WyjJ7ImyTIB5KtOmHG7EwUnasISa5MNcafQBnTY
wFK/tSh+KVJVayWcW6xGhDV4/FEXqHrs0oNXzVVBpoL+0mQtJtfL1z/8tAstf6Vf
VGve4f5zjNrNQQ==
-----END CERTIFICATE-----
Generated at Mon Jun 9 07:25:51 2025 by rpki-client