Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
File: dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft (raw, json)
Hash identifier: esWFUwUWJ+fJ0tTMiXVR48CaqgVitE7So6pxJWfl7eI=
Subject key identifier: CB:6A:40:87:DE:55:2F:26:82:16:FB:84:68:C2:E1:3C:D2:74:8E:7B
Authority key identifier: 74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
Certificate issuer: /CN=74d7da63929999603395877448ce50ac6e0213a9
Certificate serial: 0197469EA3DD47275A734D40667B7E8A10EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
Manifest number: 0DE2
Signing time: Fri 06 Jun 2025 19:01:31 +0000
Manifest this update: Fri 06 Jun 2025 19:01:31 +0000
Manifest next update: Sat 07 Jun 2025 19:01:31 +0000
Files and hashes: 1: dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl (hash: oLBU5BcB7Yg3+eKfR9m64cq4vwG3kg2XOw6uUsQSyIc=)
2: fU3MlRUECyf8Mob8gpdjGa0WFt0.roa (hash: 1bRjiSyIpRcT6gpZZI2DT+oOrLLRlf7RVwqkDF08rbw=)
3: fzU99qCGkV_CIT5aPe-FRXxnYbQ.roa (hash: vzw9SWyMsFCc6IE8QjYq1it7590sCq4Ux6IdTNIF19M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:a3:dd:47:27:5a:73:4d:40:66:7b:7e:8a:10:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d7da63929999603395877448ce50ac6e0213a9
Validity
Not Before: Jun 6 19:01:31 2025 GMT
Not After : Jun 7 19:01:31 2025 GMT
Subject: CN=cb6a4087de552f268216fb8468c2e13cd2748e7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ec:5e:b5:0f:a0:1f:39:46:4d:6c:3b:15:b3:
75:af:11:ac:b4:cd:5b:2d:34:67:b2:ec:9f:ae:5f:
7c:e5:51:96:df:13:13:c6:33:8e:67:e8:b5:f1:c6:
f6:ea:e8:49:88:69:55:bd:17:31:b5:d0:20:f5:bb:
0c:1f:da:7b:d9:b7:45:0d:81:b1:76:df:8f:a9:4d:
88:a9:59:0f:81:ef:51:0d:d4:a5:a7:be:7e:c6:04:
3f:2c:e8:85:29:07:d2:6c:72:93:1c:f6:c6:49:f4:
24:da:e4:c7:ec:b7:ee:00:bc:ad:f2:fb:9a:f4:02:
49:13:26:c6:04:f1:45:02:9c:3b:b5:b8:33:dd:fb:
73:63:c8:53:0a:3f:d8:1b:7e:18:06:ef:fe:f9:1a:
ee:dc:66:06:9f:d8:e9:97:0e:95:7d:51:b4:25:b9:
e1:9d:91:4a:1d:5e:56:8a:09:dd:fe:3d:e1:54:d5:
13:ed:be:d6:04:4d:38:7a:3d:6b:93:6a:34:63:8f:
4c:a5:b4:08:c0:1a:a3:67:99:16:6e:fc:5e:88:ef:
28:79:9f:a7:f5:c1:05:67:4c:95:e4:b3:5b:0f:ea:
8d:8d:1e:a9:8e:a2:68:41:bf:bf:64:bd:9f:5a:18:
1d:2c:f9:35:66:80:44:55:d9:3a:28:e0:7a:e0:5d:
61:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:6A:40:87:DE:55:2F:26:82:16:FB:84:68:C2:E1:3C:D2:74:8E:7B
X509v3 Authority Key Identifier:
keyid:74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:11:5f:50:73:97:30:05:11:c8:7e:fa:7d:0c:c4:cd:6b:53:
9b:8d:eb:53:62:f8:65:33:b6:ec:5c:61:7f:c3:cd:76:e2:78:
cd:6a:ee:06:8a:1e:29:df:15:d6:69:22:72:cb:e8:30:f0:fd:
35:bb:94:a0:3c:0e:b7:b0:d7:fc:d5:b5:93:d9:ea:2f:7b:b0:
43:c3:cf:4f:eb:dc:24:fa:5b:21:a5:b6:15:8e:d8:ab:47:11:
42:53:5b:01:3f:ad:cb:42:73:53:89:c5:0d:2c:3b:e5:33:9e:
c1:3a:12:60:e1:90:27:d7:5e:77:d7:cc:f8:40:ff:1f:7a:90:
8b:eb:76:6c:b0:86:a4:16:1e:8d:64:44:70:16:2b:3c:27:92:
85:79:61:b8:6a:95:41:5b:5d:20:d9:d2:fc:e3:63:f1:b0:be:
15:34:c2:3e:90:17:60:2f:9a:65:f3:fe:a9:f4:ec:a1:d8:63:
19:ef:49:1f:8c:24:84:1a:e4:67:88:2d:f0:c6:ed:82:98:f7:
b0:1a:5e:49:4d:96:3d:7e:3b:a3:a0:d3:9d:94:4e:b6:82:a7:
c9:5a:86:20:39:cf:09:06:c4:5b:e2:04:9a:24:5d:07:ff:50:
c1:24:55:86:70:56:2d:6a:dc:17:5f:60:68:12:f2:7a:47:6f:
d9:2f:dd:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGnqPdRydac01AZnt+ihDsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0ZDdkYTYzOTI5OTk5NjAzMzk1ODc3NDQ4Y2U1MGFjNmUw
MjEzYTkwHhcNMjUwNjA2MTkwMTMxWhcNMjUwNjA3MTkwMTMxWjAzMTEwLwYDVQQD
EyhjYjZhNDA4N2RlNTUyZjI2ODIxNmZiODQ2OGMyZTEzY2QyNzQ4ZTdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApuxetQ+gHzlGTWw7FbN1rxGstM1b
LTRnsuyfrl985VGW3xMTxjOOZ+i18cb26uhJiGlVvRcxtdAg9bsMH9p72bdFDYGx
dt+PqU2IqVkPge9RDdSlp75+xgQ/LOiFKQfSbHKTHPbGSfQk2uTH7LfuALyt8vua
9AJJEybGBPFFApw7tbgz3ftzY8hTCj/YG34YBu/++Rru3GYGn9jplw6VfVG0Jbnh
nZFKHV5Wignd/j3hVNUT7b7WBE04ej1rk2o0Y49MpbQIwBqjZ5kWbvxeiO8oeZ+n
9cEFZ0yV5LNbD+qNjR6pjqJoQb+/ZL2fWhgdLPk1ZoBEVdk6KOB64F1hcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMtqQIfeVS8mghb7hGjC4TzSdI57MB8GA1UdIwQY
MBaAFHTX2mOSmZlgM5WHdEjOUKxuAhOpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZE5mYVk1S1ptV0F6bFlkMFNNNVFyRzRDRTZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8wZWI4NTItYWYzNC00Y2I5LTg3MmUt
NGI1ZDVkNWY4Njk5LzEvZE5mYVk1S1ptV0F6bFlkMFNNNVFyRzRDRTZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC8wZWI4NTItYWYzNC00Y2I5LTg3MmUtNGI1ZDVkNWY4Njk5
LzEvZE5mYVk1S1ptV0F6bFlkMFNNNVFyRzRDRTZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAERFfUHOX
MAURyH76fQzEzWtTm43rU2L4ZTO27Fxhf8PNduJ4zWruBooeKd8V1mkicsvoMPD9
NbuUoDwOt7DX/NW1k9nqL3uwQ8PPT+vcJPpbIaW2FY7Yq0cRQlNbAT+ty0JzU4nF
DSw75TOewToSYOGQJ9ded9fM+ED/H3qQi+t2bLCGpBYejWREcBYrPCeShXlhuGqV
QVtdINnS/ONj8bC+FTTCPpAXYC+aZfP+qfTsodhjGe9JH4wkhBrkZ4gt8Mbtgpj3
sBpeSU2WPX47o6DTnZROtoKnyVqGIDnPCQbEW+IEmiRdB/9QwSRVhnBWLWrcF19g
aBLyekdv2S/dxw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 03:06:19 2025 by rpki-client