Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
File: ddl3qipMEMe0evKt2WgESH4idKk.mft (raw, json)
Hash identifier: iCj1R7afFBK1sv6Npi+qBmROWgOmXa3SEF/uFBcx6qE=
Subject key identifier: F0:42:3B:53:1B:70:26:2D:88:7B:23:70:4C:99:69:94:EE:C4:CE:2C
Authority key identifier: 75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
Certificate issuer: /CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Certificate serial: 0197B70E799CC2C0D44EE413F0E355AAE154
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 15:01:08 +0000
Manifest this update: Sat 28 Jun 2025 15:01:08 +0000
Manifest next update: Sun 29 Jun 2025 15:01:08 +0000
Files and hashes: 1: d1djO8IkOk-DAQF-B5CVMX1fEOA.roa (hash: ObQ/agHgncZ7LWNprlr11FO8JEBhRFid61XXKnLc8Hc=)
2: ddl3qipMEMe0evKt2WgESH4idKk.crl (hash: zDdLNIdNI/5T7yjS9rIOz+QYxnMN/b5mxgjbTkkruLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:79:9c:c2:c0:d4:4e:e4:13:f0:e3:55:aa:e1:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Validity
Not Before: Jun 28 15:01:08 2025 GMT
Not After : Jun 29 15:01:08 2025 GMT
Subject: CN=f0423b531b70262d887b23704c996994eec4ce2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:02:06:7c:45:c0:43:2c:46:42:1a:bc:cc:5a:
49:80:a6:13:62:13:d6:9f:cf:1d:b8:7e:f6:42:d1:
83:a5:d0:31:58:62:28:41:9b:81:93:55:cf:96:50:
18:3b:ad:76:4c:f7:36:3c:88:b2:2e:43:6e:ff:8c:
5c:00:0d:14:3c:ad:84:f5:d2:5b:4b:9c:e0:66:52:
9f:c5:2a:50:8a:ee:76:1e:8f:8e:df:e2:24:0d:21:
5c:40:94:7f:ba:ec:99:e8:66:ea:18:94:fb:93:54:
55:96:40:af:49:61:10:1c:a5:a1:38:09:0e:f1:66:
bd:d7:64:e6:01:f5:65:c9:04:80:b6:18:04:64:43:
28:e0:1a:7f:28:21:5d:af:5a:e4:27:01:33:d2:ed:
62:1a:db:b7:b8:d9:8c:00:a7:61:da:e5:07:f9:46:
b9:70:88:d1:80:8f:c8:5b:2f:51:45:4f:ce:98:23:
0d:0d:75:42:ea:a4:b3:7b:38:9a:df:6c:f1:bf:c6:
9d:1a:47:ea:b5:e7:65:8a:e9:a6:d7:10:44:61:3a:
6d:f8:40:31:12:4d:43:d7:d5:c0:a8:39:a8:cf:cd:
65:c3:21:d3:0c:4a:77:6b:de:1d:81:71:c0:8b:a3:
f2:e6:96:0e:70:8f:33:51:1d:ab:af:59:02:12:3a:
68:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:42:3B:53:1B:70:26:2D:88:7B:23:70:4C:99:69:94:EE:C4:CE:2C
X509v3 Authority Key Identifier:
keyid:75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:d7:f2:42:59:44:00:a3:70:b4:71:03:62:f8:e7:6b:fc:31:
9a:c5:e5:94:dc:78:a0:65:b2:ad:41:0d:e9:55:0d:c7:91:31:
a1:f1:02:7a:b3:3a:cc:75:59:25:ac:12:76:9c:49:e4:6e:96:
40:21:cb:4b:c3:fa:8b:dc:93:7a:69:67:ce:11:9e:42:21:b4:
5a:20:59:38:b4:33:1c:75:73:08:7d:6f:83:e1:7b:ea:2d:2d:
8a:8d:89:36:82:2d:8f:22:34:36:82:b7:7c:60:3e:8a:a2:56:
9a:5a:cf:09:f3:d6:76:d8:74:dc:7f:21:96:fd:e7:a7:93:54:
43:4e:80:99:ed:6a:f1:af:07:98:71:60:08:9e:5c:fa:2e:5b:
1a:04:87:83:51:c5:b9:4b:74:34:e7:ad:3f:6a:b6:b3:7f:65:
b1:e7:04:0c:81:8f:64:41:32:10:f5:45:96:50:e2:20:46:5a:
cc:f5:29:46:f9:06:a2:10:bf:91:29:e6:ae:0f:65:9d:39:25:
04:6f:49:e6:98:c1:ea:b9:a4:63:66:d2:15:1e:c1:4f:39:7c:
b6:42:d3:91:89:fd:e5:d0:56:c2:79:4d:6d:e0:44:a8:2b:16:
b6:e9:4e:68:20:55:bd:d2:55:a3:ac:15:59:99:46:68:5f:8e:
e2:d7:65:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DnmcwsDUTuQT8ONVquFUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1ZDk3N2FhMmE0YzEwYzdiNDdhZjJhZGQ5NjgwNDQ4N2Uy
Mjc0YTkwHhcNMjUwNjI4MTUwMTA4WhcNMjUwNjI5MTUwMTA4WjAzMTEwLwYDVQQD
EyhmMDQyM2I1MzFiNzAyNjJkODg3YjIzNzA0Yzk5Njk5NGVlYzRjZTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAIGfEXAQyxGQhq8zFpJgKYTYhPW
n88duH72QtGDpdAxWGIoQZuBk1XPllAYO612TPc2PIiyLkNu/4xcAA0UPK2E9dJb
S5zgZlKfxSpQiu52Ho+O3+IkDSFcQJR/uuyZ6GbqGJT7k1RVlkCvSWEQHKWhOAkO
8Wa912TmAfVlyQSAthgEZEMo4Bp/KCFdr1rkJwEz0u1iGtu3uNmMAKdh2uUH+Ua5
cIjRgI/IWy9RRU/OmCMNDXVC6qSzezia32zxv8adGkfqtedliumm1xBEYTpt+EAx
Ek1D19XAqDmoz81lwyHTDEp3a94dgXHAi6Py5pYOcI8zUR2rr1kCEjpoHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPBCO1MbcCYtiHsjcEyZaZTuxM4sMB8GA1UdIwQY
MBaAFHXZd6oqTBDHtHryrdloBEh+InSpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC84MDM4ZmUtYTlkZS00YTJjLWFkYzct
MTI2ZGY1NDQ2ZGU5LzEvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC84MDM4ZmUtYTlkZS00YTJjLWFkYzctMTI2ZGY1NDQ2ZGU5
LzEvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgtfyQllE
AKNwtHEDYvjna/wxmsXllNx4oGWyrUEN6VUNx5ExofECerM6zHVZJawSdpxJ5G6W
QCHLS8P6i9yTemlnzhGeQiG0WiBZOLQzHHVzCH1vg+F76i0tio2JNoItjyI0NoK3
fGA+iqJWmlrPCfPWdth03H8hlv3np5NUQ06Ame1q8a8HmHFgCJ5c+i5bGgSHg1HF
uUt0NOetP2q2s39lsecEDIGPZEEyEPVFllDiIEZazPUpRvkGohC/kSnmrg9lnTkl
BG9J5pjB6rmkY2bSFR7BTzl8tkLTkYn95dBWwnlNbeBEqCsWtulOaCBVvdJVo6wV
WZlGaF+O4tdlHA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:22:55 2025 by rpki-client