Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
File: DxgybgAap_xW-DUxMVN2-equCYg.mft (raw, json)
Hash identifier: 2cZR80/Nj3EphnacbkSroGSAh1D7rS6PIMHD+yp88xU=
Subject key identifier: 27:72:3E:97:1A:80:4B:9C:53:49:D7:F4:25:78:E0:75:8B:4D:BF:81
Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988
Certificate serial: 0197B77CD83568BB40E7D80BDE5C7703B5A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
Manifest number: 082C
Signing time: Sat 28 Jun 2025 17:01:41 +0000
Manifest this update: Sat 28 Jun 2025 17:01:41 +0000
Manifest next update: Sun 29 Jun 2025 17:01:41 +0000
Files and hashes: 1: DxgybgAap_xW-DUxMVN2-equCYg.crl (hash: +udECXrmrphVeOE7EZD7I3d6Z7m4rTe/9ijoYyY3qQM=)
2: IAritswAhqNQe77s1GDg_ezpHck.roa (hash: ILdWDEHhnQvuxpeMgx2XCbjW7CQm2ybVgtMQih2P4NU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:d8:35:68:bb:40:e7:d8:0b:de:5c:77:03:b5:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988
Validity
Not Before: Jun 28 17:01:41 2025 GMT
Not After : Jun 29 17:01:41 2025 GMT
Subject: CN=27723e971a804b9c5349d7f42578e0758b4dbf81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9f:d1:dc:b3:00:04:e4:dd:d4:40:da:e9:50:
06:14:47:ce:63:c8:be:3a:e9:f6:e7:ea:67:d7:dc:
fc:94:c0:9d:8d:62:55:4d:7a:fd:6b:9c:79:53:4a:
39:ab:36:5a:2f:bd:81:3c:71:95:c1:9a:4f:35:b3:
b1:ca:69:da:91:ad:54:01:09:f3:df:70:04:d5:9f:
c2:f5:59:80:01:6a:d5:84:78:59:f1:1d:73:16:86:
ff:82:c9:9b:1d:c5:7f:a3:2b:ff:b0:a1:79:37:de:
d7:6d:5f:c0:9c:f6:6b:48:33:71:56:b3:2d:83:e8:
78:04:3d:62:70:e0:a7:39:ae:31:39:c7:d7:00:65:
dc:03:ed:1b:2a:d4:7c:a0:80:39:64:87:21:1c:42:
60:b0:85:e4:b3:22:44:61:1c:4b:02:f2:9d:c9:f1:
e7:e2:c7:1c:92:1b:04:f8:98:04:96:54:0b:a0:4d:
ba:56:3c:5e:78:cf:cc:47:39:21:c9:0d:bd:56:8f:
6d:e8:ff:e7:0c:75:71:bb:a2:7c:43:ed:e6:01:ad:
b5:0d:0c:c3:a0:11:57:8b:da:38:39:69:a4:40:99:
31:4b:88:87:30:5a:90:d9:55:42:73:2f:f9:04:a9:
52:53:46:ee:c1:99:c0:87:6e:61:ca:67:7a:3d:c4:
d0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:72:3E:97:1A:80:4B:9C:53:49:D7:F4:25:78:E0:75:8B:4D:BF:81
X509v3 Authority Key Identifier:
keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:1e:75:11:d2:59:50:c5:59:9d:0b:72:59:d3:d3:06:a6:4e:
39:3d:65:01:c4:f5:23:62:c2:ba:62:c8:d3:0d:02:6c:47:69:
7f:66:3e:ca:5b:5f:5a:c6:29:e8:f1:49:35:a8:b7:a2:6d:0f:
48:de:5d:00:32:a3:e6:66:f5:54:80:10:b7:0d:d1:09:20:f1:
a8:28:de:fb:0c:72:98:0a:e9:6d:4f:97:53:ab:bf:31:1b:38:
e0:6a:e4:08:28:3e:1d:bd:51:e4:76:89:b0:1c:6e:49:d7:75:
41:67:36:6a:59:0c:e1:1f:94:0a:23:c3:ff:91:8a:cd:6a:00:
b3:1d:19:ba:f8:73:02:9c:80:12:99:f7:69:e4:b8:21:8f:6f:
ab:8f:85:b3:54:04:01:24:e0:3a:40:73:ff:a9:8d:7b:74:d4:
d9:66:6d:0d:f8:85:4f:21:b1:c7:14:a1:a0:36:c0:55:67:e2:
30:a4:c7:9c:76:0e:3b:bd:e9:83:57:53:a2:f9:f5:eb:13:52:
d5:d1:27:ab:66:77:e2:2e:f0:7d:cf:bc:82:e4:2e:af:07:2b:
63:31:07:5a:64:47:92:fe:8f:44:44:0c:9d:f7:74:65:a0:61:
31:4d:18:60:6a:2b:bd:78:4b:cd:15:61:56:31:fd:b9:0d:5c:
89:3f:b6:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fNg1aLtA59gL3lx3A7WjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmMTgzMjZlMDAxYWE3ZmM1NmY4MzUzMTMxNTM3NmY5ZWFh
ZTA5ODgwHhcNMjUwNjI4MTcwMTQxWhcNMjUwNjI5MTcwMTQxWjAzMTEwLwYDVQQD
EygyNzcyM2U5NzFhODA0YjljNTM0OWQ3ZjQyNTc4ZTA3NThiNGRiZjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqp/R3LMABOTd1EDa6VAGFEfOY8i+
Oun25+pn19z8lMCdjWJVTXr9a5x5U0o5qzZaL72BPHGVwZpPNbOxymnaka1UAQnz
33AE1Z/C9VmAAWrVhHhZ8R1zFob/gsmbHcV/oyv/sKF5N97XbV/AnPZrSDNxVrMt
g+h4BD1icOCnOa4xOcfXAGXcA+0bKtR8oIA5ZIchHEJgsIXksyJEYRxLAvKdyfHn
4scckhsE+JgEllQLoE26VjxeeM/MRzkhyQ29Vo9t6P/nDHVxu6J8Q+3mAa21DQzD
oBFXi9o4OWmkQJkxS4iHMFqQ2VVCcy/5BKlSU0buwZnAh25hymd6PcTQFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCdyPpcagEucU0nX9CV44HWLTb+BMB8GA1UdIwQY
MBaAFA8YMm4AGqf8Vvg1MTFTdvnqrgmIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYt
NmI4MTM2OTNiYzhjLzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYtNmI4MTM2OTNiYzhj
LzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKB51EdJZ
UMVZnQtyWdPTBqZOOT1lAcT1I2LCumLI0w0CbEdpf2Y+yltfWsYp6PFJNai3om0P
SN5dADKj5mb1VIAQtw3RCSDxqCje+wxymArpbU+XU6u/MRs44GrkCCg+Hb1R5HaJ
sBxuSdd1QWc2alkM4R+UCiPD/5GKzWoAsx0ZuvhzApyAEpn3aeS4IY9vq4+Fs1QE
ASTgOkBz/6mNe3TU2WZtDfiFTyGxxxShoDbAVWfiMKTHnHYOO73pg1dTovn16xNS
1dEnq2Z34i7wfc+8guQurwcrYzEHWmRHkv6PREQMnfd0ZaBhMU0YYGorvXhLzRVh
VjH9uQ1ciT+2HA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:48:02 2025 by rpki-client