Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
File: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft (raw, json)
Hash identifier: Xa5biTcLeTXPFbzmyXCF4yFwlFaViYZuRQ3c3gJxNgg=
Subject key identifier: F7:01:7A:C6:2C:F4:7F:8C:A6:AE:6E:EA:D6:DF:04:0A:F8:24:97:99
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: 0197B6326944A6D4F2BD8DAA7DEF0475EFDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
Manifest number: 0D18
Signing time: Sat 28 Jun 2025 11:00:46 +0000
Manifest this update: Sat 28 Jun 2025 11:00:46 +0000
Manifest next update: Sun 29 Jun 2025 11:00:46 +0000
Files and hashes: 1: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl (hash: JgS7DrUKE3zX/WJ47qn30K63goq9mRAOZDgu1BA5/00=)
2: zo9Y2aPXtg0v5rw18Mi_WOQc36Y.roa (hash: v9STSvD6P0pmUA0gxCp1HPZofea00hykboqUh1BCCCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:69:44:a6:d4:f2:bd:8d:aa:7d:ef:04:75:ef:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: Jun 28 11:00:46 2025 GMT
Not After : Jun 29 11:00:46 2025 GMT
Subject: CN=f7017ac62cf47f8ca6ae6eead6df040af8249799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:65:5d:bb:56:63:10:47:af:31:96:d0:fa:5b:
36:20:3f:9c:ef:e1:ec:bd:fc:4e:22:1b:0a:44:29:
00:4a:18:4d:5d:9b:34:7a:72:95:41:e2:73:84:6a:
68:e3:2b:e7:10:15:40:5d:7a:83:5d:89:33:61:b6:
c7:25:e0:d8:09:09:95:78:d6:e2:ef:15:5a:5b:10:
69:4c:92:71:4a:f1:c4:e6:ff:ef:0b:0d:d0:40:f5:
84:3e:1d:cc:02:3a:8e:32:dd:c8:a2:23:a3:2f:bd:
e8:3b:f0:76:34:2b:a3:50:00:0f:ae:90:50:b3:96:
78:68:b7:28:23:cd:dc:31:cf:fd:a4:3c:13:96:6a:
19:a9:9f:d8:1d:f3:09:d5:fe:54:61:7f:8b:49:12:
d4:d8:65:07:a6:24:e8:03:35:c3:a0:99:b8:86:e4:
2c:28:d7:20:c1:e5:00:55:f9:99:62:e4:7c:7b:fa:
4f:03:7d:7d:7b:4c:30:18:5a:26:e8:16:82:eb:62:
cc:4f:30:52:93:84:23:03:42:8d:0b:66:2f:4b:80:
63:05:58:8a:3b:c6:9d:55:71:15:38:c9:7e:d7:b8:
98:82:49:8a:ee:67:2d:f0:93:c1:b9:cd:9c:65:01:
1b:a3:08:ad:50:03:11:e3:51:ac:55:1b:8b:2d:32:
aa:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:01:7A:C6:2C:F4:7F:8C:A6:AE:6E:EA:D6:DF:04:0A:F8:24:97:99
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:73:8b:76:cb:d5:96:87:c6:aa:5c:f5:92:c7:14:9e:32:8b:
a3:7b:6a:8d:2d:f3:08:7f:09:0e:cd:12:12:40:c4:1d:a0:73:
73:7f:5b:c6:08:c7:a2:4c:73:a3:9e:c2:1e:e8:09:fe:16:51:
ce:50:0e:60:9e:b2:90:ba:f1:a5:33:33:44:c2:24:6b:33:59:
38:ea:be:d5:9a:e6:c8:a2:49:6c:81:12:72:ce:ea:4b:e9:eb:
f0:4e:68:06:ee:5b:9b:b0:28:23:69:73:60:e0:a2:04:64:ff:
9b:3c:97:e1:72:55:b9:cf:92:4e:68:9e:76:26:05:b1:9a:e8:
87:4b:95:b5:eb:d3:4e:7b:ad:72:b9:a3:26:a4:70:a9:56:13:
cc:27:9b:bc:e8:80:b0:7b:f0:a4:96:2b:bf:bb:14:61:13:03:
e0:3b:b2:69:e2:98:34:b3:dc:db:c5:a4:cd:e3:66:54:d8:34:
8d:af:e3:9b:c4:98:9e:27:a1:f8:8e:32:6b:e2:2e:e3:ff:e2:
ee:e0:23:cf:ec:4d:29:9f:ed:49:f9:0d:e0:88:3c:98:9e:e3:
58:0c:6d:02:3e:83:bd:d6:f3:b6:5b:18:af:6d:e0:3c:d8:4a:
1d:79:50:bd:af:a0:f5:ab:9a:a8:56:6c:24:68:86:1c:a6:4f:
aa:6a:6f:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2MmlEptTyvY2qfe8Ede/cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNzg0YmQ5NmE0NGJjMzYxZDEzMzQ0ZDU0YzhiYzUxZmY2
N2E4MDIwHhcNMjUwNjI4MTEwMDQ2WhcNMjUwNjI5MTEwMDQ2WjAzMTEwLwYDVQQD
EyhmNzAxN2FjNjJjZjQ3ZjhjYTZhZTZlZWFkNmRmMDQwYWY4MjQ5Nzk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWVdu1ZjEEevMZbQ+ls2ID+c7+Hs
vfxOIhsKRCkAShhNXZs0enKVQeJzhGpo4yvnEBVAXXqDXYkzYbbHJeDYCQmVeNbi
7xVaWxBpTJJxSvHE5v/vCw3QQPWEPh3MAjqOMt3IoiOjL73oO/B2NCujUAAPrpBQ
s5Z4aLcoI83cMc/9pDwTlmoZqZ/YHfMJ1f5UYX+LSRLU2GUHpiToAzXDoJm4huQs
KNcgweUAVfmZYuR8e/pPA319e0wwGFom6BaC62LMTzBSk4QjA0KNC2YvS4BjBViK
O8adVXEVOMl+17iYgkmK7mct8JPBuc2cZQEbowitUAMR41GsVRuLLTKqpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPcBesYs9H+Mpq5u6tbfBAr4JJeZMB8GA1UdIwQY
MBaAFA14S9lqRLw2HRM0TVTIvFH/Z6gCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFhoTDJXcEV2RFlkRXpSTlZNaThVZjlucUFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80MjVjMjQtYmZlMC00NzkwLWIyNTAt
ZDRjNjZmNGYzYjZlLzEvRFhoTDJXcEV2RFlkRXpSTlZNaThVZjlucUFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80MjVjMjQtYmZlMC00NzkwLWIyNTAtZDRjNjZmNGYzYjZl
LzEvRFhoTDJXcEV2RFlkRXpSTlZNaThVZjlucUFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsHOLdsvV
lofGqlz1kscUnjKLo3tqjS3zCH8JDs0SEkDEHaBzc39bxgjHokxzo57CHugJ/hZR
zlAOYJ6ykLrxpTMzRMIkazNZOOq+1ZrmyKJJbIEScs7qS+nr8E5oBu5bm7AoI2lz
YOCiBGT/mzyX4XJVuc+STmiediYFsZroh0uVtevTTnutcrmjJqRwqVYTzCebvOiA
sHvwpJYrv7sUYRMD4DuyaeKYNLPc28WkzeNmVNg0ja/jm8SYnieh+I4ya+Iu4//i
7uAjz+xNKZ/tSfkN4Ig8mJ7jWAxtAj6DvdbztlsYr23gPNhKHXlQva+g9auaqFZs
JGiGHKZPqmpveQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:00:37 2025 by rpki-client