Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: xMV3UpEi23A7FJYiCPDIVMwGOMwdgaaIzKKt2FyZc2U=
Subject key identifier: 4A:36:9E:C8:64:72:5F:F3:34:50:EA:67:91:D0:79:EC:1F:22:E0:8C
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 0197D2F37063C4F2529F0AA8A2C9A6A242A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 02DF
Signing time: Fri 04 Jul 2025 01:00:58 +0000
Manifest this update: Fri 04 Jul 2025 01:00:58 +0000
Manifest next update: Sat 05 Jul 2025 01:00:58 +0000
Files and hashes: 1: 9jS2v21J95xARBtQOtdTT0EtYBQ.roa (hash: BeiYvaVP67aUM+eVkzjpflxlaHwkNmiJmUTQZAVqkOQ=)
2: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: GOxMmlpzaGPwxa0PbuKBM+RrT9mY8hOSk/1FkjUYcI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d2:f3:70:63:c4:f2:52:9f:0a:a8:a2:c9:a6:a2:42:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Jul 4 01:00:58 2025 GMT
Not After : Jul 5 01:00:58 2025 GMT
Subject: CN=4a369ec864725ff33450ea6791d079ec1f22e08c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:71:c1:90:fb:d6:24:cf:ae:95:4f:40:0b:5a:
70:9a:7b:03:90:ec:54:fa:1c:f6:8e:d9:d2:d4:9f:
64:53:b5:10:52:28:fb:17:45:b9:c3:5e:54:11:6b:
a1:54:d5:e7:6f:1d:7e:05:c3:0e:97:5c:b2:2e:89:
04:30:1f:34:84:24:80:1b:6a:4a:d6:79:f9:fc:bd:
6e:cc:18:78:52:0a:3f:72:c0:1b:e0:e4:78:11:f4:
12:a9:37:ba:65:61:7c:94:b5:97:8f:49:14:14:b5:
07:6b:4d:ed:82:59:da:cf:cd:5f:d1:6a:ef:72:59:
cc:5c:85:b6:05:2d:f6:59:71:07:8a:65:ec:47:b1:
45:11:11:98:f7:90:7d:e4:4b:a7:40:63:08:df:c6:
27:38:3f:1d:72:36:38:54:cd:84:65:99:7e:12:7e:
8f:30:ab:92:f2:19:1c:04:94:5d:83:7d:8a:69:e1:
8b:59:bf:49:fd:78:9a:93:22:b3:05:5e:00:e1:8b:
57:84:44:1d:23:d5:98:aa:f1:fb:28:61:94:c6:87:
0b:cf:8f:69:ba:12:9a:01:62:6f:eb:f7:51:06:70:
f4:2b:77:77:f6:e0:32:86:1e:b1:ca:46:c8:27:89:
82:7a:84:87:25:a0:98:11:61:6f:d0:ab:1d:0b:5b:
1a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:36:9E:C8:64:72:5F:F3:34:50:EA:67:91:D0:79:EC:1F:22:E0:8C
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:67:ea:71:78:58:88:4e:f2:c2:81:18:b2:10:5f:91:29:10:
e2:01:ba:39:fa:e7:6d:f5:29:1c:54:94:15:08:76:f5:f0:5c:
73:69:80:2f:31:f1:93:4f:a2:09:b5:20:83:f7:80:f9:52:ae:
0b:67:e9:80:f6:0f:8f:94:8e:51:64:27:ac:b0:c0:d6:d1:3c:
26:33:9e:2c:f8:a6:95:f5:31:ff:6b:66:a0:31:80:d3:17:39:
04:30:18:43:b8:05:04:ce:fe:d3:38:21:d2:bb:63:bf:5f:56:
36:d1:be:11:3e:14:b0:fa:2f:23:4f:cb:c0:5d:ef:0a:ae:aa:
cc:94:fb:e5:65:b1:3d:8f:a0:12:a0:1d:cd:ec:71:89:a4:1b:
2a:fa:cf:be:0a:41:d6:8b:7e:59:3c:6a:ac:93:aa:94:8d:35:
8d:fd:56:f6:da:c5:9a:80:74:8f:18:3f:de:e5:06:e0:22:23:
dd:d2:75:39:85:02:c3:0e:f9:9f:69:16:a9:49:b2:e0:b6:6a:
d3:cc:77:55:29:4f:82:62:1e:24:dd:61:ba:27:d4:9a:83:ab:
d7:16:e5:8f:e9:86:98:a2:50:dc:b5:21:29:bd:f1:79:64:b0:
83:ee:13:66:5b:fd:8e:5e:15:bc:3b:9a:67:39:bb:5c:fb:c2:
ac:3c:d5:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfS83BjxPJSnwqoosmmokKpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3MmY3MDM1YzI4OTNiMjhjZDA0ZmQxYTliM2NhY2QyNDI4
YzhkZmQwHhcNMjUwNzA0MDEwMDU4WhcNMjUwNzA1MDEwMDU4WjAzMTEwLwYDVQQD
Eyg0YTM2OWVjODY0NzI1ZmYzMzQ1MGVhNjc5MWQwNzllYzFmMjJlMDhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunHBkPvWJM+ulU9AC1pwmnsDkOxU
+hz2jtnS1J9kU7UQUij7F0W5w15UEWuhVNXnbx1+BcMOl1yyLokEMB80hCSAG2pK
1nn5/L1uzBh4Ugo/csAb4OR4EfQSqTe6ZWF8lLWXj0kUFLUHa03tglnaz81f0Wrv
clnMXIW2BS32WXEHimXsR7FFERGY95B95EunQGMI38YnOD8dcjY4VM2EZZl+En6P
MKuS8hkcBJRdg32KaeGLWb9J/XiakyKzBV4A4YtXhEQdI9WYqvH7KGGUxocLz49p
uhKaAWJv6/dRBnD0K3d39uAyhh6xykbIJ4mCeoSHJaCYEWFv0KsdC1saUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEo2nshkcl/zNFDqZ5HQeewfIuCMMB8GA1UdIwQY
MBaAFHcvcDXCiTsozQT9Gps8rNJCjI39MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi80MWVhZTAtNmI3Mi00NjI0LTljMjQt
ODMwMzVhZmU0YTM3LzEvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi80MWVhZTAtNmI3Mi00NjI0LTljMjQtODMwMzVhZmU0YTM3
LzEvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUmfqcXhY
iE7ywoEYshBfkSkQ4gG6OfrnbfUpHFSUFQh29fBcc2mALzHxk0+iCbUgg/eA+VKu
C2fpgPYPj5SOUWQnrLDA1tE8JjOeLPimlfUx/2tmoDGA0xc5BDAYQ7gFBM7+0zgh
0rtjv19WNtG+ET4UsPovI0/LwF3vCq6qzJT75WWxPY+gEqAdzexxiaQbKvrPvgpB
1ot+WTxqrJOqlI01jf1W9trFmoB0jxg/3uUG4CIj3dJ1OYUCww75n2kWqUmy4LZq
08x3VSlPgmIeJN1huifUmoOr1xblj+mGmKJQ3LUhKb3xeWSwg+4TZlv9jl4VvDua
Zzm7XPvCrDzVsg==
-----END CERTIFICATE-----
Generated at Fri Jul 4 08:26:44 2025 by rpki-client