Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
File: DZ40sUlHfVXvC1lipeXgDN-1hIk.mft (raw, json)
Hash identifier: 5kAiITRZQbZDlf/zD8mcPFhBexW3xEWbdBnYwLMgubA=
Subject key identifier: 1C:D8:17:E1:BA:FD:03:F1:73:6D:E2:98:DE:A3:22:B7:77:DE:7F:BB
Authority key identifier: 0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
Certificate issuer: /CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Certificate serial: 0198D472BA8EB94D3AF7E516D0FB9BA4A0E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
Manifest number: 1385
Signing time: Sat 23 Aug 2025 01:02:25 +0000
Manifest this update: Sat 23 Aug 2025 01:02:25 +0000
Manifest next update: Sun 24 Aug 2025 01:02:25 +0000
Files and hashes: 1: DZ40sUlHfVXvC1lipeXgDN-1hIk.crl (hash: O7Yg1G/Gc1ab8sA5WTe/GkOuC552oMb6DdqvvFBwyYs=)
2: WGiFR-bGPm6J5ZNuq_i5kJB6Nzw.roa (hash: 74v2TFsnggZrqZFnVMwJ7ZEDqgCLlK+dkXL3Ua1EXV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:ba:8e:b9:4d:3a:f7:e5:16:d0:fb:9b:a4:a0:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Validity
Not Before: Aug 23 01:02:25 2025 GMT
Not After : Aug 24 01:02:25 2025 GMT
Subject: CN=1cd817e1bafd03f1736de298dea322b777de7fbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2b:21:64:0f:82:3d:6f:fe:1f:e1:07:9d:a6:
f0:70:9b:b9:32:65:13:11:07:4a:10:25:ed:3e:fb:
48:25:5b:3d:a0:94:68:49:fd:36:8a:61:c2:d8:99:
9a:07:e9:68:24:82:27:c7:d3:9e:f9:4a:b9:24:85:
d6:5a:4a:f5:cf:0f:0b:9d:dc:9b:11:7d:93:f7:24:
c8:79:fb:91:14:d8:c0:f9:2a:6b:8e:4b:af:c5:12:
9c:96:1c:7a:34:ab:7b:89:ed:93:a2:83:c8:f9:05:
82:d8:56:cc:92:08:e7:fb:d1:22:15:77:f4:f0:52:
a6:75:ee:56:88:e2:3f:fe:69:d2:e9:f4:ba:3d:de:
30:fb:03:05:de:5e:6e:64:5f:aa:6f:89:0e:02:54:
24:d0:1e:df:dc:7c:b9:a4:1f:b4:ee:ed:4d:2e:f6:
dc:36:63:c1:1d:1d:c4:41:02:dd:9a:a1:9d:a9:0e:
d8:63:a2:86:d5:39:32:22:71:7e:f2:ea:ec:66:36:
6e:97:1d:b8:64:e9:33:5c:ff:cb:c7:b5:79:ec:88:
52:a3:8b:0e:d0:3e:56:39:a0:a2:b2:8e:f5:52:1d:
e0:2b:83:93:22:73:58:ee:9a:22:3c:a0:2f:1f:74:
6f:74:38:bf:fa:de:4d:c7:ef:1f:1d:5f:ad:2e:91:
15:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D8:17:E1:BA:FD:03:F1:73:6D:E2:98:DE:A3:22:B7:77:DE:7F:BB
X509v3 Authority Key Identifier:
keyid:0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:58:ed:11:bf:94:24:8e:fd:19:46:07:59:b8:d6:8b:a9:13:
57:13:98:1f:e2:a8:42:71:52:fb:9d:cb:25:88:5a:d8:86:89:
bc:23:46:92:2e:df:c4:a6:a2:2f:68:ac:61:87:dc:5c:65:28:
3f:cd:be:cf:13:2b:9e:e5:c4:55:0d:e9:15:3e:ab:c3:a3:e2:
fe:e6:c8:02:f0:2b:75:6c:b7:25:1a:d6:91:e2:fa:df:95:e4:
dc:cd:ad:45:7f:1a:21:79:09:92:2f:38:e7:2f:3d:f3:1a:6e:
4e:c8:ab:5f:f8:de:34:23:8a:5e:c9:ff:93:59:4c:0f:66:43:
c5:53:26:7e:bb:2a:8f:2b:84:cc:a0:64:32:c9:8b:da:86:3c:
41:19:f7:bb:fc:6b:5e:13:17:1e:e7:06:0e:9a:bd:6b:b9:87:
ce:1f:e1:d5:84:16:d9:de:4b:a5:d1:0d:21:83:dd:d8:59:a7:
81:4b:31:6f:e4:24:17:0d:e7:29:30:6f:02:16:2b:a0:12:77:
c9:bd:a6:9a:6b:64:63:6c:54:99:8c:46:35:b3:e3:3b:03:cf:
13:ff:4d:c6:76:c2:e5:3d:6a:61:88:15:9b:25:31:c0:82:c1:
bd:48:61:f9:97:0c:a5:dd:7c:87:87:39:6c:c0:83:a5:5f:26:
6a:9c:0d:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcrqOuU069+UW0PubpKDkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkOWUzNGIxNDk0NzdkNTVlZjBiNTk2MmE1ZTVlMDBjZGZi
NTg0ODkwHhcNMjUwODIzMDEwMjI1WhcNMjUwODI0MDEwMjI1WjAzMTEwLwYDVQQD
EygxY2Q4MTdlMWJhZmQwM2YxNzM2ZGUyOThkZWEzMjJiNzc3ZGU3ZmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjyshZA+CPW/+H+EHnabwcJu5MmUT
EQdKECXtPvtIJVs9oJRoSf02imHC2JmaB+loJIInx9Oe+Uq5JIXWWkr1zw8Lndyb
EX2T9yTIefuRFNjA+SprjkuvxRKclhx6NKt7ie2TooPI+QWC2FbMkgjn+9EiFXf0
8FKmde5WiOI//mnS6fS6Pd4w+wMF3l5uZF+qb4kOAlQk0B7f3Hy5pB+07u1NLvbc
NmPBHR3EQQLdmqGdqQ7YY6KG1TkyInF+8ursZjZulx24ZOkzXP/Lx7V57IhSo4sO
0D5WOaCiso71Uh3gK4OTInNY7poiPKAvH3RvdDi/+t5Nx+8fHV+tLpEVbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBzYF+G6/QPxc23imN6jIrd33n+7MB8GA1UdIwQY
MBaAFA2eNLFJR31V7wtZYqXl4AzftYSJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFo0MHNVbEhmVlh2QzFsaXBlWGdETi0xaElrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNTMyODItNTNlMi00NmEyLThmYzQt
NDFkNDlhOGZmYzgxLzEvRFo0MHNVbEhmVlh2QzFsaXBlWGdETi0xaElrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8zNTMyODItNTNlMi00NmEyLThmYzQtNDFkNDlhOGZmYzgx
LzEvRFo0MHNVbEhmVlh2QzFsaXBlWGdETi0xaElrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiFjtEb+U
JI79GUYHWbjWi6kTVxOYH+KoQnFS+53LJYha2IaJvCNGki7fxKaiL2isYYfcXGUo
P82+zxMrnuXEVQ3pFT6rw6Pi/ubIAvArdWy3JRrWkeL635Xk3M2tRX8aIXkJki84
5y898xpuTsirX/jeNCOKXsn/k1lMD2ZDxVMmfrsqjyuEzKBkMsmL2oY8QRn3u/xr
XhMXHucGDpq9a7mHzh/h1YQW2d5LpdENIYPd2FmngUsxb+QkFw3nKTBvAhYroBJ3
yb2mmmtkY2xUmYxGNbPjOwPPE/9NxnbC5T1qYYgVmyUxwILBvUhh+ZcMpd18h4c5
bMCDpV8mapwN0A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:47 2025 by rpki-client