Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
File: dxLiD1ELIrghfN8NIRSWsbnB7bg.mft (raw, json)
Hash identifier: l3JxR7p++ioXzKZJ/U8MBijDjS1JxZJ9yzQZbIsH+z4=
Subject key identifier: AA:9C:E9:4D:35:C8:BD:0C:74:97:F3:2C:D8:2B:05:FD:81:FF:55:AA
Authority key identifier: 77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8
Certificate issuer: /CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8
Certificate serial: 0197B6D7BF69ED8515B6BE027BE43FD91695
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 14:01:21 +0000
Manifest this update: Sat 28 Jun 2025 14:01:21 +0000
Manifest next update: Sun 29 Jun 2025 14:01:21 +0000
Files and hashes: 1: 0bjBu50yRFSQQCpaSDnz4Da59n0.roa (hash: EpIJkfUrUz0ncMqveTDKjCXPCU3oKNIvzwGQlVcXpbY=)
2: dxLiD1ELIrghfN8NIRSWsbnB7bg.crl (hash: rhh1mjbsgbObqK/XKDpyYfa56J/0Hx++4vHxm8NXiio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:bf:69:ed:85:15:b6:be:02:7b:e4:3f:d9:16:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8
Validity
Not Before: Jun 28 14:01:21 2025 GMT
Not After : Jun 29 14:01:21 2025 GMT
Subject: CN=aa9ce94d35c8bd0c7497f32cd82b05fd81ff55aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:52:84:d5:c4:77:41:96:8d:5e:38:46:7b:e0:
28:6a:f6:b2:e7:31:9e:1b:5b:a5:2d:53:ad:fa:3b:
ec:4c:61:40:1b:6e:87:28:22:e7:d5:4e:3f:0a:27:
bc:3e:9b:cf:d2:45:02:86:6f:69:08:d2:c0:8a:92:
f7:1f:d8:9b:aa:ba:56:13:a9:d3:cb:3f:d5:b5:48:
08:fa:dc:c8:bc:7e:fa:c0:1e:ef:e9:a5:39:fe:c8:
71:17:f0:8e:d0:e7:60:75:17:ed:2a:e2:43:09:05:
fc:3c:e5:36:6f:bd:3d:18:4d:98:3e:63:69:74:b7:
1f:06:be:1b:2d:31:8b:b2:b4:49:24:f3:2f:fb:09:
05:20:cc:f4:c1:db:ea:ff:8d:4d:80:73:34:34:46:
83:12:11:3f:83:10:34:12:01:b4:8b:30:86:b3:e6:
58:33:e2:ef:fa:77:ef:6c:2d:b8:07:f8:25:4d:21:
5a:b5:78:cf:28:1c:6d:87:45:16:ed:48:43:7a:f7:
d3:a6:e6:8e:c9:d5:8c:9d:b2:c5:c7:85:4d:3d:c7:
49:d6:4b:76:e1:13:bc:71:d2:8b:70:48:e5:56:87:
b3:ca:17:c5:f2:fb:ee:df:29:1e:3c:a6:4c:8a:52:
e8:6d:41:19:e4:24:58:21:91:5c:ef:e7:90:3e:13:
6a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:9C:E9:4D:35:C8:BD:0C:74:97:F3:2C:D8:2B:05:FD:81:FF:55:AA
X509v3 Authority Key Identifier:
keyid:77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:e2:9b:ca:50:d0:1a:74:70:c1:10:9e:c7:48:69:7c:cd:1d:
8d:37:a3:3b:d3:d7:89:55:ff:74:6d:e9:d4:37:e1:04:24:52:
8d:e4:9b:e4:9f:6b:4a:2e:8a:07:30:59:d1:76:b9:76:62:5b:
8f:ae:43:06:a3:23:27:63:42:50:7a:50:9d:20:29:bf:8d:03:
58:3b:69:e1:ba:eb:12:de:48:3a:03:85:86:da:c4:64:04:81:
22:73:d7:6b:7b:6a:7b:e2:2c:22:35:9b:5a:4c:e8:8b:7d:fe:
e0:28:6f:35:15:d1:47:94:e9:24:20:67:1b:7e:9b:1d:f5:61:
4b:a8:6e:b3:dc:cb:34:6d:65:01:13:1b:69:ff:95:fb:e5:b2:
41:ed:a5:77:bd:ab:9a:ba:d4:2a:65:62:f0:5a:5c:c3:3a:f3:
b7:74:30:cb:69:94:ac:57:13:d8:ca:c5:f5:e7:26:da:57:27:
36:2e:4b:2e:fa:38:d9:6b:e8:49:04:df:1a:18:e4:99:94:60:
14:cc:a7:72:c1:f0:bc:f3:00:7d:7c:b9:98:42:e6:d0:0e:4b:
62:f2:55:9c:1c:ac:7a:5d:a0:d4:b6:e6:0c:0e:e7:bc:0b:77:
cc:51:72:66:d2:ca:43:ec:c3:18:48:1b:58:61:2f:7b:b7:5f:
db:b1:8b:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2179p7YUVtr4Ce+Q/2RaVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3MTJlMjBmNTEwYjIyYjgyMTdjZGYwZDIxMTQ5NmIxYjlj
MWVkYjgwHhcNMjUwNjI4MTQwMTIxWhcNMjUwNjI5MTQwMTIxWjAzMTEwLwYDVQQD
EyhhYTljZTk0ZDM1YzhiZDBjNzQ5N2YzMmNkODJiMDVmZDgxZmY1NWFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1KE1cR3QZaNXjhGe+Aoavay5zGe
G1ulLVOt+jvsTGFAG26HKCLn1U4/Cie8PpvP0kUChm9pCNLAipL3H9ibqrpWE6nT
yz/VtUgI+tzIvH76wB7v6aU5/shxF/CO0OdgdRftKuJDCQX8POU2b709GE2YPmNp
dLcfBr4bLTGLsrRJJPMv+wkFIMz0wdvq/41NgHM0NEaDEhE/gxA0EgG0izCGs+ZY
M+Lv+nfvbC24B/glTSFatXjPKBxth0UW7UhDevfTpuaOydWMnbLFx4VNPcdJ1kt2
4RO8cdKLcEjlVoezyhfF8vvu3ykePKZMilLobUEZ5CRYIZFc7+eQPhNq7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKqc6U01yL0MdJfzLNgrBf2B/1WqMB8GA1UdIwQY
MBaAFHcS4g9RCyK4IXzfDSEUlrG5we24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHhMaUQxRUxJcmdoZk44TklSU1dzYm5CN2JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS82Y2I3MTQtYzcxNC00MjgxLThhZGEt
NDNjZTk0OTY2M2Q5LzEvZHhMaUQxRUxJcmdoZk44TklSU1dzYm5CN2JnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS82Y2I3MTQtYzcxNC00MjgxLThhZGEtNDNjZTk0OTY2M2Q5
LzEvZHhMaUQxRUxJcmdoZk44TklSU1dzYm5CN2JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ+KbylDQ
GnRwwRCex0hpfM0djTejO9PXiVX/dG3p1DfhBCRSjeSb5J9rSi6KBzBZ0Xa5dmJb
j65DBqMjJ2NCUHpQnSApv40DWDtp4brrEt5IOgOFhtrEZASBInPXa3tqe+IsIjWb
Wkzoi33+4ChvNRXRR5TpJCBnG36bHfVhS6hus9zLNG1lARMbaf+V++WyQe2ld72r
mrrUKmVi8Fpcwzrzt3Qwy2mUrFcT2MrF9ecm2lcnNi5LLvo42WvoSQTfGhjkmZRg
FMyncsHwvPMAfXy5mELm0A5LYvJVnBysel2g1LbmDA7nvAt3zFFyZtLKQ+zDGEgb
WGEve7df27GLRw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:30:03 2025 by rpki-client