Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
File: DKtCI5upRIWzELVRXczH_u2SIFw.mft (raw, json)
Hash identifier: wt9cVRddkQvs3haa4qHXIND/mtYY3uMeUgZK34yztHM=
Subject key identifier: A9:79:80:84:89:41:9E:93:1A:AC:3C:7B:CA:F2:77:EC:AE:62:56:FB
Authority key identifier: 0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
Certificate issuer: /CN=0cab42239ba94485b310b5515dccc7feed92205c
Certificate serial: 01974A7AC15AB6D3E18E939EFECC4B8E0694
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
Manifest number: 14BC
Signing time: Sat 07 Jun 2025 13:00:48 +0000
Manifest this update: Sat 07 Jun 2025 13:00:48 +0000
Manifest next update: Sun 08 Jun 2025 13:00:48 +0000
Files and hashes: 1: DKtCI5upRIWzELVRXczH_u2SIFw.crl (hash: VV+o4dTLFt+Zuukff7VeFx8NBK5Ynf2f0XJImCTL3gc=)
2: U2UqHVAbFqT-DpJ2VeePtrrb8ik.roa (hash: pXyykD/gM3hsVstV7hOq0+tHLwMN2H8uNSnz2A5Kgw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:c1:5a:b6:d3:e1:8e:93:9e:fe:cc:4b:8e:06:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cab42239ba94485b310b5515dccc7feed92205c
Validity
Not Before: Jun 7 13:00:48 2025 GMT
Not After : Jun 8 13:00:48 2025 GMT
Subject: CN=a979808489419e931aac3c7bcaf277ecae6256fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9c:f9:b1:e4:52:81:04:d8:4f:8b:f5:50:f4:
c1:5c:0a:2d:53:7e:fa:75:4e:1e:be:6a:e7:e7:63:
15:9d:45:f7:50:88:ec:c3:a5:e9:1f:57:0e:1e:95:
54:aa:c7:dd:f4:e0:ac:0e:15:6b:5e:96:38:23:a3:
e5:80:a6:2f:27:6d:42:d5:f2:0a:0d:30:fa:f8:3b:
57:4c:10:44:a7:dd:21:f4:36:ed:81:c1:89:9b:65:
5a:60:82:c7:7a:c8:9f:22:56:9e:63:85:4b:09:6f:
ef:af:7c:ab:19:dd:32:88:7f:52:7e:a2:7c:0c:14:
21:04:86:39:91:ad:a1:2a:63:eb:27:24:24:e8:f0:
c0:90:45:bb:7c:a0:d2:a5:b8:bc:41:83:20:e7:f4:
5c:64:c6:f0:1a:f3:f5:a2:8d:9e:1d:38:0d:c0:7a:
5e:e2:f6:98:72:a7:9a:d4:ec:dc:cb:da:77:7b:21:
ae:58:c2:58:5c:6e:b2:cc:10:71:7c:9a:5d:2d:3b:
24:0a:bd:b7:0f:ee:f6:5a:d6:c1:e4:5e:e3:45:b6:
e7:eb:ad:15:ca:48:19:5c:5f:07:15:ea:6c:7f:cc:
92:28:d5:97:8d:98:d1:1e:9e:22:26:94:de:00:8e:
67:e7:5b:b3:33:cc:46:44:d6:80:9b:ee:ca:70:2a:
44:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:79:80:84:89:41:9E:93:1A:AC:3C:7B:CA:F2:77:EC:AE:62:56:FB
X509v3 Authority Key Identifier:
keyid:0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:1d:fb:6e:25:63:db:55:dd:33:9f:a5:a0:e8:90:14:4c:98:
83:f2:84:2a:a7:0c:39:25:a3:6d:be:44:40:8d:c3:ff:62:75:
0d:fa:06:a8:a9:22:1a:89:f9:f0:64:39:a7:87:d1:d9:99:eb:
86:69:3d:1c:40:8e:8a:24:f9:42:77:56:11:b4:9a:dd:91:7f:
30:f6:20:11:2e:b1:6b:a8:e5:d5:8e:d0:d2:2e:e7:13:5e:d0:
41:d1:3c:c6:81:86:a1:3e:f5:b8:43:d9:7d:26:02:f1:d9:4e:
6c:8a:28:ca:a1:0c:f3:b2:41:2b:ee:e1:e1:a2:a8:c2:82:c8:
77:78:ba:fb:89:4c:70:25:f2:7d:8d:70:fc:f5:f2:e6:0f:f4:
c5:6f:2b:11:75:a9:2a:56:05:90:c0:24:c0:17:a4:53:6f:ae:
18:6b:62:0b:5e:48:a3:7e:f7:80:42:6b:f7:23:d9:c5:1a:22:
65:5d:48:f6:a0:c1:e9:27:4e:fd:1b:8d:e9:e5:64:71:0b:87:
14:46:2d:3b:7e:ad:9e:75:21:04:2a:7b:e8:92:c1:5d:45:d5:
b1:16:c9:bd:14:8c:7f:44:68:56:11:29:7c:33:8c:e9:79:e9:
d8:e7:cf:84:d5:c7:ce:8d:8c:6c:ec:6f:f9:37:5f:e1:4d:74:
a1:36:ad:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKesFattPhjpOe/sxLjgaUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjYWI0MjIzOWJhOTQ0ODViMzEwYjU1MTVkY2NjN2ZlZWQ5
MjIwNWMwHhcNMjUwNjA3MTMwMDQ4WhcNMjUwNjA4MTMwMDQ4WjAzMTEwLwYDVQQD
EyhhOTc5ODA4NDg5NDE5ZTkzMWFhYzNjN2JjYWYyNzdlY2FlNjI1NmZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJz5seRSgQTYT4v1UPTBXAotU376
dU4evmrn52MVnUX3UIjsw6XpH1cOHpVUqsfd9OCsDhVrXpY4I6PlgKYvJ21C1fIK
DTD6+DtXTBBEp90h9DbtgcGJm2VaYILHesifIlaeY4VLCW/vr3yrGd0yiH9SfqJ8
DBQhBIY5ka2hKmPrJyQk6PDAkEW7fKDSpbi8QYMg5/RcZMbwGvP1oo2eHTgNwHpe
4vaYcqea1Ozcy9p3eyGuWMJYXG6yzBBxfJpdLTskCr23D+72WtbB5F7jRbbn660V
ykgZXF8HFepsf8ySKNWXjZjRHp4iJpTeAI5n51uzM8xGRNaAm+7KcCpEJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKl5gISJQZ6TGqw8e8ryd+yuYlb7MB8GA1UdIwQY
MBaAFAyrQiObqUSFsxC1UV3Mx/7tkiBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9hYWI2MmUtNDA4Yy00ODNkLTk1ZmEt
Y2MxMTlkMjc3MTQ4LzEvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9hYWI2MmUtNDA4Yy00ODNkLTk1ZmEtY2MxMTlkMjc3MTQ4
LzEvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOx37biVj
21XdM5+loOiQFEyYg/KEKqcMOSWjbb5EQI3D/2J1DfoGqKkiGon58GQ5p4fR2Znr
hmk9HECOiiT5QndWEbSa3ZF/MPYgES6xa6jl1Y7Q0i7nE17QQdE8xoGGoT71uEPZ
fSYC8dlObIooyqEM87JBK+7h4aKowoLId3i6+4lMcCXyfY1w/PXy5g/0xW8rEXWp
KlYFkMAkwBekU2+uGGtiC15Io373gEJr9yPZxRoiZV1I9qDB6SdO/RuN6eVkcQuH
FEYtO36tnnUhBCp76JLBXUXVsRbJvRSMf0RoVhEpfDOM6Xnp2OfPhNXHzo2MbOxv
+Tdf4U10oTatJg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:49:31 2025 by rpki-client