Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
File: DC-bLoowUI05GSr9WzTuVvd1l54.mft (raw, json)
Hash identifier: +Q6lNdHQLCZl56c1nEpHTkqpnhtfm3nQI4Th4fbGznQ=
Subject key identifier: 4A:FB:61:C3:17:EB:12:50:B1:1C:B8:C9:60:EB:7B:38:51:C4:69:C0
Authority key identifier: 0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E
Certificate issuer: /CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e
Certificate serial: 019922FA50B222410B2257B2CCBBD97F4A99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
Manifest number: 0E4D
Signing time: Sun 07 Sep 2025 07:00:53 +0000
Manifest this update: Sun 07 Sep 2025 07:00:53 +0000
Manifest next update: Mon 08 Sep 2025 07:00:53 +0000
Files and hashes: 1: DC-bLoowUI05GSr9WzTuVvd1l54.crl (hash: DteWVBTww8FIDfI91lnUlaVUOhLgmfBNwLig/YmwnsQ=)
2: NWAGhC2XbatfDitWodooC7bbFFI.roa (hash: FWUOW7wQ0G0TGl1V+k/KtSrSZ/FDNVfXj5gqfrNEtSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:50:b2:22:41:0b:22:57:b2:cc:bb:d9:7f:4a:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e
Validity
Not Before: Sep 7 07:00:53 2025 GMT
Not After : Sep 8 07:00:53 2025 GMT
Subject: CN=4afb61c317eb1250b11cb8c960eb7b3851c469c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b9:e9:a0:ba:bd:47:e5:b5:5a:77:c9:49:29:
62:cf:67:98:2b:ad:5d:87:94:8e:86:5b:80:47:cc:
f2:51:c4:24:8f:17:44:b6:c8:28:90:47:df:7e:c0:
bb:73:96:bc:f1:43:ae:14:9e:e3:d8:16:23:a5:23:
0d:5a:7b:15:a8:92:eb:09:6a:aa:ad:61:4c:0d:b7:
2e:1a:a3:ce:1e:5d:ad:85:ab:31:ad:4b:a6:c4:51:
16:04:a7:77:c8:62:ca:7c:07:21:3a:e7:d9:54:3d:
9a:f4:96:6f:8f:37:37:70:c0:3c:4f:fc:2a:10:4b:
9a:b7:29:a9:f6:8a:9a:6e:fb:8d:dc:6b:57:34:86:
2c:99:e1:b1:21:33:5c:b9:2a:82:9b:bd:a5:dd:57:
bd:88:91:19:da:eb:55:db:41:42:9e:ff:ba:61:d5:
4e:02:c5:d6:f1:ee:5f:f3:b9:d2:47:3d:bd:38:81:
1c:4d:c2:a6:39:44:0c:e1:d7:b2:61:b4:90:6c:47:
69:14:88:09:40:6e:a2:d7:e9:78:54:86:81:c0:9e:
52:21:e9:3b:13:3a:89:91:bf:d7:f2:c2:94:14:37:
83:a6:97:87:25:5f:02:aa:cd:63:d5:de:3d:2a:89:
a5:13:b8:73:e4:3f:ab:e9:8c:2e:c0:0b:e7:b1:13:
7b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:FB:61:C3:17:EB:12:50:B1:1C:B8:C9:60:EB:7B:38:51:C4:69:C0
X509v3 Authority Key Identifier:
keyid:0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:61:bc:2a:c7:c4:90:02:0f:f6:25:df:2b:8e:a9:24:47:e9:
ce:cf:70:e1:e8:d1:fa:03:1d:01:98:44:3b:b2:19:c4:51:6e:
cb:83:2b:65:96:07:8a:2b:7b:e4:b8:be:c2:cb:e4:38:d4:75:
8e:82:05:46:ba:15:4a:49:dd:ae:57:b0:a1:31:be:14:19:b7:
84:35:f7:fc:d7:93:9a:ba:d4:0b:3d:0e:5e:d2:4a:f5:3c:b2:
46:ea:4e:c3:d8:91:fc:91:af:26:e4:31:d3:34:6c:7c:5e:c1:
01:70:24:dd:8d:d9:c6:1f:80:fb:5d:32:7f:9a:ff:d5:3e:a9:
80:37:11:79:79:55:c9:79:1a:66:82:a9:2c:2b:dc:63:78:70:
8f:35:00:cd:c2:24:2e:68:9b:0a:cd:ff:6d:5e:23:90:cd:05:
3b:ea:67:00:7c:c4:50:68:19:7e:c2:fd:1f:08:bf:f7:2f:3d:
71:0e:d2:bd:a7:cd:5f:d0:ae:5a:f3:bc:49:2d:86:67:d1:84:
60:89:fb:7d:47:61:21:b5:e7:bb:3a:07:f0:02:b3:bf:e7:bf:
29:39:3d:7d:9c:95:51:cb:ba:63:23:53:7a:83:4e:62:56:25:
eb:13:41:2b:4c:f9:29:45:ba:44:b5:4f:61:aa:f8:08:d8:88:
f6:84:7d:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:54:32 2025 by rpki-client