Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
File: DNpch0NU2Dgm5DwlNbduINW2GwU.mft (raw, json)
Hash identifier: d0+/ED3YAfasCs+bG4DUb071d2RGgV4/eVTPZVsonps=
Subject key identifier: AE:BC:47:E9:4B:84:CF:87:09:81:BA:69:1E:8E:BC:DF:50:C9:27:A5
Authority key identifier: 0C:DA:5C:87:43:54:D8:38:26:E4:3C:25:35:B7:6E:20:D5:B6:1B:05
Certificate issuer: /CN=0cda5c874354d83826e43c2535b76e20d5b61b05
Certificate serial: 0197B6A1FFEEF22C48789CEF1A22A267D146
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
Manifest number: 15C0
Signing time: Sat 28 Jun 2025 13:02:39 +0000
Manifest this update: Sat 28 Jun 2025 13:02:39 +0000
Manifest next update: Sun 29 Jun 2025 13:02:39 +0000
Files and hashes: 1: 32CQUiCUfdquX7Jbo_dmPVa4RAU.roa (hash: FAfiLPwl0dHpiVR3Uys5QcBsWLGjmkF+BWAYhU6veIk=)
2: DNpch0NU2Dgm5DwlNbduINW2GwU.crl (hash: gNMV8h0q2Ffx/VITXuq9k1OwdnbyFbsLDeCza5b8RNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:ff:ee:f2:2c:48:78:9c:ef:1a:22:a2:67:d1:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cda5c874354d83826e43c2535b76e20d5b61b05
Validity
Not Before: Jun 28 13:02:39 2025 GMT
Not After : Jun 29 13:02:39 2025 GMT
Subject: CN=aebc47e94b84cf870981ba691e8ebcdf50c927a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:31:ba:f2:28:03:b6:17:b0:25:d7:0c:40:9b:
4c:b3:4b:0e:40:3e:9d:54:76:fc:04:3d:5e:4f:53:
c9:d8:ea:44:e5:4b:08:f4:4c:33:a8:c6:56:e6:51:
ba:1a:0b:5b:0f:cb:90:95:13:d8:cb:71:ff:e1:07:
25:82:d9:10:fa:d1:d1:6e:11:85:2b:3f:7f:cf:56:
8b:70:d5:b1:07:9c:e3:a1:a8:ab:85:90:d8:d6:15:
6a:c7:1b:6c:c1:98:61:23:8e:1c:d7:9e:b9:b3:7a:
e0:49:f4:59:98:cd:33:56:60:fb:ab:b3:9f:8b:52:
26:8f:52:39:ab:ed:ed:76:99:26:2a:89:ef:9a:48:
12:b5:28:cb:8e:64:98:88:0a:cc:44:e1:aa:fc:8c:
a8:38:53:16:33:4a:9b:68:37:35:27:a3:52:85:07:
bc:7d:4b:9f:c2:08:44:4e:1c:5d:1a:7a:b0:f2:44:
39:0e:c5:c0:55:b8:cd:5a:81:e9:0a:b0:51:0f:33:
a8:fc:84:db:3e:65:2e:d9:40:32:da:93:65:cf:3b:
dd:d5:28:88:50:34:3d:c7:23:5c:55:4a:88:64:0e:
bc:85:29:7e:04:58:d9:57:00:e7:bf:e1:23:91:b6:
ee:0b:f0:7c:c6:86:30:e6:9c:ae:1e:7a:47:c5:05:
85:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:BC:47:E9:4B:84:CF:87:09:81:BA:69:1E:8E:BC:DF:50:C9:27:A5
X509v3 Authority Key Identifier:
keyid:0C:DA:5C:87:43:54:D8:38:26:E4:3C:25:35:B7:6E:20:D5:B6:1B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:13:4c:37:da:c5:7c:b0:7d:c5:a0:fd:02:1d:63:4f:a2:ed:
92:fb:e5:b3:ec:e9:91:37:6d:d9:7e:9f:a6:39:4f:ce:6f:c5:
18:d6:9d:d5:c7:87:33:ea:59:7d:5a:3d:f4:d6:b0:62:79:9d:
6d:1f:40:2c:0a:2c:be:c1:9c:2d:45:11:15:4c:c1:45:eb:32:
77:59:8e:c8:0e:22:b4:97:69:aa:ae:ff:4c:6f:64:47:f1:2e:
d9:cb:e6:5d:6e:f8:e0:9c:b1:74:f6:e3:98:e0:db:0f:ec:d0:
e9:46:0e:1f:ca:88:fa:00:2c:a8:5a:16:66:58:b7:d0:db:f6:
5c:ba:b8:4a:76:c2:96:6f:7e:13:da:11:22:8c:50:41:70:15:
ea:ac:6f:97:f5:27:01:0e:78:05:ca:97:35:c0:5b:1f:8e:79:
c4:66:7a:fd:d8:2e:17:39:4a:b2:11:e8:cc:d0:8d:2f:8b:de:
f5:61:87:d8:d5:96:9a:4c:e4:65:df:40:47:2f:92:78:f6:8c:
87:1f:c6:1c:21:46:f5:2a:67:0a:42:70:8f:92:e1:48:00:39:
45:00:e7:b3:64:a8:09:cc:38:89:3e:9b:73:75:47:e8:ab:4a:
12:6d:0c:09:ea:d7:48:04:de:f4:66:14:9f:dc:ad:99:94:4b:
94:94:3c:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2of/u8ixIeJzvGiKiZ9FGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZGE1Yzg3NDM1NGQ4MzgyNmU0M2MyNTM1Yjc2ZTIwZDVi
NjFiMDUwHhcNMjUwNjI4MTMwMjM5WhcNMjUwNjI5MTMwMjM5WjAzMTEwLwYDVQQD
EyhhZWJjNDdlOTRiODRjZjg3MDk4MWJhNjkxZThlYmNkZjUwYzkyN2E1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDG68igDthewJdcMQJtMs0sOQD6d
VHb8BD1eT1PJ2OpE5UsI9EwzqMZW5lG6GgtbD8uQlRPYy3H/4QclgtkQ+tHRbhGF
Kz9/z1aLcNWxB5zjoairhZDY1hVqxxtswZhhI44c1565s3rgSfRZmM0zVmD7q7Of
i1Imj1I5q+3tdpkmKonvmkgStSjLjmSYiArMROGq/IyoOFMWM0qbaDc1J6NShQe8
fUufwghEThxdGnqw8kQ5DsXAVbjNWoHpCrBRDzOo/ITbPmUu2UAy2pNlzzvd1SiI
UDQ9xyNcVUqIZA68hSl+BFjZVwDnv+EjkbbuC/B8xoYw5pyuHnpHxQWFcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK68R+lLhM+HCYG6aR6OvN9QySelMB8GA1UdIwQY
MBaAFAzaXIdDVNg4JuQ8JTW3biDVthsFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE5wY2gwTlUyRGdtNUR3bE5iZHVJTlcyR3dVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi85MjMzMmYtMDNlMC00MTE2LWI2ZjMt
YzgyZjQyNGI2ZDBkLzEvRE5wY2gwTlUyRGdtNUR3bE5iZHVJTlcyR3dVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi85MjMzMmYtMDNlMC00MTE2LWI2ZjMtYzgyZjQyNGI2ZDBk
LzEvRE5wY2gwTlUyRGdtNUR3bE5iZHVJTlcyR3dVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXxNMN9rF
fLB9xaD9Ah1jT6Ltkvvls+zpkTdt2X6fpjlPzm/FGNad1ceHM+pZfVo99NawYnmd
bR9ALAosvsGcLUURFUzBResyd1mOyA4itJdpqq7/TG9kR/Eu2cvmXW744JyxdPbj
mODbD+zQ6UYOH8qI+gAsqFoWZli30Nv2XLq4SnbClm9+E9oRIoxQQXAV6qxvl/Un
AQ54BcqXNcBbH455xGZ6/dguFzlKshHozNCNL4ve9WGH2NWWmkzkZd9ARy+SePaM
hx/GHCFG9SpnCkJwj5LhSAA5RQDns2SoCcw4iT6bc3VH6KtKEm0MCerXSATe9GYU
n9ytmZRLlJQ86A==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:33:02 2025 by rpki-client