Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
File: dhrP1knI7q2FUZQngfoW9o29EPM.mft (raw, json)
Hash identifier: h7d/qqSyqfGxRLeMTjLluyhPQoVPZpC/aabZnpyaCXU=
Subject key identifier: E9:60:8A:A2:BD:70:AA:59:61:74:29:E0:33:9D:4F:AA:31:47:F4:FC
Authority key identifier: 76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3
Certificate issuer: /CN=761acfd649c8eead8551942781fa16f68dbd10f3
Certificate serial: 019747E7DC987C8B51F79EC455BD00C965AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 01:01:06 +0000
Manifest this update: Sat 07 Jun 2025 01:01:06 +0000
Manifest next update: Sun 08 Jun 2025 01:01:06 +0000
Files and hashes: 1: UdkvXpXGLdhITVh5jtCCMBnxb7M.roa (hash: HifSo99m/eGKn8WJh44GwrCR837RJMUrmbV81B/JjSg=)
2: dhrP1knI7q2FUZQngfoW9o29EPM.crl (hash: e0iQD6LVBrtRUS9NQ9VBVsMT0++sXds24hp9r6tAYc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:dc:98:7c:8b:51:f7:9e:c4:55:bd:00:c9:65:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761acfd649c8eead8551942781fa16f68dbd10f3
Validity
Not Before: Jun 7 01:01:06 2025 GMT
Not After : Jun 8 01:01:06 2025 GMT
Subject: CN=e9608aa2bd70aa59617429e0339d4faa3147f4fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bd:3e:08:a0:4a:25:a8:5d:25:9e:ec:6d:ef:
e6:0e:50:f5:18:90:03:1d:50:42:da:ee:18:75:9a:
34:71:8f:8d:63:80:4b:50:c5:ef:76:80:7b:ef:c5:
16:d3:26:ac:56:c4:ff:c7:f3:db:f7:b9:fa:eb:20:
4e:89:95:97:d7:88:e3:0a:36:35:cd:b6:ce:ed:56:
c0:8e:ab:18:d7:3c:ea:21:16:82:74:db:f4:2a:c7:
23:68:82:b4:bc:8a:cc:a7:65:7d:8e:40:dc:8e:ca:
db:3c:a4:7f:77:e9:ff:19:47:9b:d2:f9:db:52:1f:
bf:f6:bd:eb:6c:01:ad:1c:bd:7d:7e:50:be:57:4f:
81:a5:3b:51:ed:24:c6:a2:b8:7b:0d:fd:f6:4f:1e:
52:3b:0a:e8:ac:71:46:64:48:40:76:aa:d4:c7:9a:
da:04:fa:d4:84:ef:40:64:f1:de:50:b7:1c:a3:fc:
04:91:03:18:34:54:89:92:96:70:e1:8c:54:16:15:
b0:27:8c:30:98:88:af:13:fb:d1:99:4b:85:f5:32:
9e:e3:e3:5e:ef:b4:d3:a8:75:6c:fd:74:17:fd:ee:
a1:2c:1f:94:1f:b0:ab:3b:c5:24:32:cd:bb:a7:ed:
dd:00:76:ab:27:d2:8a:b2:17:5b:5e:0b:30:34:ba:
66:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:60:8A:A2:BD:70:AA:59:61:74:29:E0:33:9D:4F:AA:31:47:F4:FC
X509v3 Authority Key Identifier:
keyid:76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:db:94:e4:54:de:75:7e:c9:46:8c:c0:22:bd:91:8b:04:1f:
49:64:62:0e:3b:87:11:87:9f:80:40:1d:38:20:e6:76:f8:6a:
15:dc:e1:c4:7b:79:46:1a:de:81:f1:0d:12:1b:9e:49:8e:33:
8b:75:a2:ef:7d:59:8f:e2:33:6d:e9:ff:8c:83:8c:9e:cd:90:
b2:99:9e:e9:33:e6:89:24:85:ef:05:ad:2a:88:25:c2:55:b5:
26:d5:01:ad:25:78:a7:69:ca:1c:00:7a:79:80:02:1d:42:ef:
7f:51:84:62:21:20:d6:27:26:e7:78:62:0b:0e:12:23:b4:bf:
34:ab:dc:af:22:5f:cf:f2:ac:c0:48:91:4d:b6:26:66:c2:41:
c0:c2:28:03:71:a8:4d:ca:2f:24:d6:17:82:ff:a6:08:2f:6b:
f9:ce:6c:d9:4c:71:71:0e:11:0a:30:29:79:6d:09:b2:86:3d:
d7:84:8c:34:69:a9:5d:2f:08:9d:b7:10:ee:82:61:0b:ea:99:
cf:3f:f0:31:5e:a8:d9:83:05:c3:d6:85:66:2e:26:cd:42:94:
d7:b8:6a:93:1b:f0:73:be:d2:9a:be:53:01:c8:12:ab:8b:a7:
94:0a:7a:91:43:e4:4a:e2:71:1b:06:02:0f:b9:4a:a2:e7:55:
68:f5:26:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdH59yYfItR957EVb0AyWWuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2MWFjZmQ2NDljOGVlYWQ4NTUxOTQyNzgxZmExNmY2OGRi
ZDEwZjMwHhcNMjUwNjA3MDEwMTA2WhcNMjUwNjA4MDEwMTA2WjAzMTEwLwYDVQQD
EyhlOTYwOGFhMmJkNzBhYTU5NjE3NDI5ZTAzMzlkNGZhYTMxNDdmNGZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAub0+CKBKJahdJZ7sbe/mDlD1GJAD
HVBC2u4YdZo0cY+NY4BLUMXvdoB778UW0yasVsT/x/Pb97n66yBOiZWX14jjCjY1
zbbO7VbAjqsY1zzqIRaCdNv0KscjaIK0vIrMp2V9jkDcjsrbPKR/d+n/GUeb0vnb
Uh+/9r3rbAGtHL19flC+V0+BpTtR7STGorh7Df32Tx5SOwrorHFGZEhAdqrUx5ra
BPrUhO9AZPHeULcco/wEkQMYNFSJkpZw4YxUFhWwJ4wwmIivE/vRmUuF9TKe4+Ne
77TTqHVs/XQX/e6hLB+UH7CrO8UkMs27p+3dAHarJ9KKshdbXgswNLpmSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOlgiqK9cKpZYXQp4DOdT6oxR/T8MB8GA1UdIwQY
MBaAFHYaz9ZJyO6thVGUJ4H6FvaNvRDzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGhyUDFrbkk3cTJGVVpRbmdmb1c5bzI5RVBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC82ZjkyODMtYjRkNC00NGNkLWE2OWIt
YzczMjAxZGY5OTk1LzEvZGhyUDFrbkk3cTJGVVpRbmdmb1c5bzI5RVBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC82ZjkyODMtYjRkNC00NGNkLWE2OWItYzczMjAxZGY5OTk1
LzEvZGhyUDFrbkk3cTJGVVpRbmdmb1c5bzI5RVBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEduU5FTe
dX7JRozAIr2RiwQfSWRiDjuHEYefgEAdOCDmdvhqFdzhxHt5RhregfENEhueSY4z
i3Wi731Zj+Izben/jIOMns2Qspme6TPmiSSF7wWtKoglwlW1JtUBrSV4p2nKHAB6
eYACHULvf1GEYiEg1icm53hiCw4SI7S/NKvcryJfz/KswEiRTbYmZsJBwMIoA3Go
TcovJNYXgv+mCC9r+c5s2UxxcQ4RCjApeW0JsoY914SMNGmpXS8InbcQ7oJhC+qZ
zz/wMV6o2YMFw9aFZi4mzUKU17hqkxvwc77Smr5TAcgSq4unlAp6kUPkSuJxGwYC
D7lKoudVaPUmww==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:17:44 2025 by rpki-client