Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
File: dAThbzM9iWUMZhOsbJXTSNxLeVA.mft (raw, json)
Hash identifier: po1u6lmWqwYae8ufKf2NX23DswKOQC0vB3m1pai2bks=
Subject key identifier: CD:B3:1A:EF:D3:E6:1A:4F:05:39:D5:15:B9:36:B2:CF:84:F3:02:E1
Authority key identifier: 74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50
Certificate issuer: /CN=7404e16f333d89650c6613ac6c95d348dc4b7950
Certificate serial: 0197462FC59308741A10322DF0DF6D237514
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
Manifest number: 0104
Signing time: Fri 06 Jun 2025 17:00:25 +0000
Manifest this update: Fri 06 Jun 2025 17:00:25 +0000
Manifest next update: Sat 07 Jun 2025 17:00:25 +0000
Files and hashes: 1: USYf1bw7MHizcISPSt3QDNx57-c.roa (hash: hlppK+U0LprItNasoWls7BUhYE5DrUbPlgUCcoN0Ou8=)
2: dAThbzM9iWUMZhOsbJXTSNxLeVA.crl (hash: H+f5wV6bXrn74kJtJySxCStL7mzDhzM1cxDuIWOp2wM=)
3: mPel-Ky4KTw-yipTpTX6XFn1X6g.roa (hash: N5pE0c5lXs23W7feBcxuowFluJhlp7T2zf0Dpvw7muA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:2f:c5:93:08:74:1a:10:32:2d:f0:df:6d:23:75:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7404e16f333d89650c6613ac6c95d348dc4b7950
Validity
Not Before: Jun 6 17:00:25 2025 GMT
Not After : Jun 7 17:00:25 2025 GMT
Subject: CN=cdb31aefd3e61a4f0539d515b936b2cf84f302e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:34:f3:30:c6:70:28:dc:9b:0a:fa:f2:3a:79:
5a:63:4b:dc:b6:41:4e:b2:a8:2e:be:bf:e8:8c:8d:
d4:54:ca:ec:ac:41:37:a5:b9:35:b6:2e:24:0d:94:
17:6f:99:d4:a5:a1:82:55:91:51:cf:cb:a0:33:e3:
e6:8c:03:07:6a:9c:b5:c4:64:d2:dd:13:26:a7:87:
f8:af:3c:20:23:7a:ad:2a:8f:e9:84:65:40:db:cc:
15:b5:22:56:9e:46:72:18:ce:2e:ef:5d:fc:1e:a6:
ac:9a:63:6b:e2:16:08:b6:6d:de:f8:db:80:a6:ea:
aa:bd:0f:a4:a5:a8:98:08:90:81:5b:b4:39:30:35:
e3:31:4e:6a:a8:fe:53:27:f1:41:1b:ce:c9:92:6f:
5e:bc:2c:22:fd:9e:37:dc:a5:a5:10:2c:88:81:f3:
4c:77:46:36:f8:a9:40:cd:e7:6f:5a:42:8f:90:41:
42:0f:77:3a:e5:4a:e3:65:f4:0b:22:bf:35:43:50:
e8:03:6b:e8:9c:f4:22:19:a4:92:49:14:17:4b:16:
c4:d0:78:da:88:2b:3d:7c:67:2a:a2:fe:73:f9:3b:
9d:bd:4b:89:0b:d7:de:8a:67:68:a7:ad:2d:a7:83:
e8:df:29:c5:cc:8a:7a:29:53:f9:d8:d1:44:1e:8e:
7c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B3:1A:EF:D3:E6:1A:4F:05:39:D5:15:B9:36:B2:CF:84:F3:02:E1
X509v3 Authority Key Identifier:
keyid:74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ce:e2:da:99:1c:88:be:5f:44:78:21:82:c5:24:b6:78:07:
e0:01:71:aa:67:40:c2:b1:5f:0a:f9:28:30:bb:36:cd:7f:ac:
90:65:cc:a9:e3:24:0a:ca:e9:24:00:19:08:dc:ad:0f:9d:7b:
6b:e3:e6:e4:c4:21:bd:66:f4:1e:ea:df:af:3b:b3:be:f7:6c:
54:36:99:3e:f0:f4:f7:6f:a4:0d:32:8b:b3:32:88:03:34:0a:
6c:12:63:a1:7e:de:b3:37:ae:2d:ba:c4:08:8b:2e:de:34:9c:
8f:07:c8:61:02:c0:13:a8:76:33:d9:a8:1e:d2:dd:2a:de:b3:
20:a9:40:e6:ac:09:ce:08:f5:62:0d:24:01:c3:cb:bd:94:53:
0c:47:ac:5a:74:9e:62:01:e0:e7:c5:4a:0b:33:50:80:a6:9c:
98:64:2c:cc:f0:f2:0c:8e:b3:39:03:6d:4d:db:d9:65:e6:d7:
95:01:42:4c:b5:a2:21:85:66:ef:d2:b2:15:bf:20:f6:9b:08:
8e:69:67:b5:b2:28:cb:0f:f6:a1:ac:fd:fe:f3:ce:5b:50:dd:
42:d4:2a:b6:3f:e9:a3:58:a5:e6:de:1f:99:57:1f:61:fb:a0:
2a:a6:6f:51:82:ba:99:69:80:6a:58:05:b9:3c:aa:51:1d:1e:
94:7b:39:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGL8WTCHQaEDIt8N9tI3UUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0MDRlMTZmMzMzZDg5NjUwYzY2MTNhYzZjOTVkMzQ4ZGM0
Yjc5NTAwHhcNMjUwNjA2MTcwMDI1WhcNMjUwNjA3MTcwMDI1WjAzMTEwLwYDVQQD
EyhjZGIzMWFlZmQzZTYxYTRmMDUzOWQ1MTViOTM2YjJjZjg0ZjMwMmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3TTzMMZwKNybCvryOnlaY0vctkFO
sqguvr/ojI3UVMrsrEE3pbk1ti4kDZQXb5nUpaGCVZFRz8ugM+PmjAMHapy1xGTS
3RMmp4f4rzwgI3qtKo/phGVA28wVtSJWnkZyGM4u7138HqasmmNr4hYItm3e+NuA
puqqvQ+kpaiYCJCBW7Q5MDXjMU5qqP5TJ/FBG87Jkm9evCwi/Z433KWlECyIgfNM
d0Y2+KlAzedvWkKPkEFCD3c65UrjZfQLIr81Q1DoA2vonPQiGaSSSRQXSxbE0Hja
iCs9fGcqov5z+TudvUuJC9feimdop60tp4Po3ynFzIp6KVP52NFEHo58+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM2zGu/T5hpPBTnVFbk2ss+E8wLhMB8GA1UdIwQY
MBaAFHQE4W8zPYllDGYTrGyV00jcS3lQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEFUaGJ6TTlpV1VNWmhPc2JKWFRTTnhMZVZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8xNTMyYzYtYTJmNS00OGU2LWIwMzct
MThjNWViZWYyN2E4LzEvZEFUaGJ6TTlpV1VNWmhPc2JKWFRTTnhMZVZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8xNTMyYzYtYTJmNS00OGU2LWIwMzctMThjNWViZWYyN2E4
LzEvZEFUaGJ6TTlpV1VNWmhPc2JKWFRTTnhMZVZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMs7i2pkc
iL5fRHghgsUktngH4AFxqmdAwrFfCvkoMLs2zX+skGXMqeMkCsrpJAAZCNytD517
a+Pm5MQhvWb0HurfrzuzvvdsVDaZPvD092+kDTKLszKIAzQKbBJjoX7eszeuLbrE
CIsu3jScjwfIYQLAE6h2M9moHtLdKt6zIKlA5qwJzgj1Yg0kAcPLvZRTDEesWnSe
YgHg58VKCzNQgKacmGQszPDyDI6zOQNtTdvZZebXlQFCTLWiIYVm79KyFb8g9psI
jmlntbIoyw/2oaz9/vPOW1DdQtQqtj/po1il5t4fmVcfYfugKqZvUYK6mWmAalgF
uTyqUR0elHs5Jg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 02:25:24 2025 by rpki-client