Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
File: DbPDFk09jCZEzymzI2dhpXHuWLo.mft (raw, json)
Hash identifier: J0fnuF8+9f2V3NmSszp8+BMc46cXlu0eNswGFCOhXgo=
Subject key identifier: E5:8A:EA:77:B8:E3:A2:A8:A9:F2:46:89:5B:3B:9E:07:C1:45:14:9A
Authority key identifier: 0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA
Certificate issuer: /CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba
Certificate serial: 0197B8FCF296B3D071E9B1577697F8CDF201
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
Manifest number: 0BBD
Signing time: Sun 29 Jun 2025 00:01:14 +0000
Manifest this update: Sun 29 Jun 2025 00:01:14 +0000
Manifest next update: Mon 30 Jun 2025 00:01:14 +0000
Files and hashes: 1: DbPDFk09jCZEzymzI2dhpXHuWLo.crl (hash: yHvx0aE9HtAXO4S0h/3gK14qyuRr+fIoUbqDQlhaK0k=)
2: VCOPnV4kZuweFLb_llPPHRAXNUA.roa (hash: cRLhBmbu/yT6hrLfR7qsKhKnC8knJg7oOO9Ome0I9Gw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fc:f2:96:b3:d0:71:e9:b1:57:76:97:f8:cd:f2:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba
Validity
Not Before: Jun 29 00:01:14 2025 GMT
Not After : Jun 30 00:01:14 2025 GMT
Subject: CN=e58aea77b8e3a2a8a9f246895b3b9e07c145149a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:32:b0:1b:cc:7d:97:13:27:7b:f5:3f:a9:9a:
17:91:44:45:16:75:74:33:35:34:b3:e6:e3:e3:44:
64:03:04:15:f7:bc:b8:fc:68:85:ea:a1:81:70:06:
4e:c4:bd:f4:38:2d:cf:5b:4f:10:d5:f8:e4:f9:c0:
99:1a:d7:b3:a8:88:02:23:5f:8d:42:5a:47:7e:86:
6f:fb:98:e2:51:3e:63:e5:ca:ac:e5:be:94:80:43:
e5:9c:05:6d:b3:10:3d:1b:7a:fe:b5:e6:77:05:09:
26:cd:3f:fa:41:d6:1f:92:ea:3c:38:5e:ea:81:8f:
49:ba:90:7e:60:ee:2d:71:42:1d:c9:6c:8c:64:84:
a9:1f:6b:b8:cb:d8:77:e5:a2:e9:92:56:66:6e:40:
2f:19:45:92:3c:70:cf:e5:fe:c0:58:b3:05:2c:62:
d9:58:78:a6:d0:97:f1:4e:8e:c6:10:f5:dc:be:04:
30:dc:63:42:c2:1e:1a:4a:f6:8a:d0:80:1f:05:d6:
6a:d2:09:5d:87:ea:f4:89:57:e4:72:69:de:bc:32:
9d:1c:cf:b1:2a:fe:2c:58:60:11:c3:3d:89:f7:4e:
90:88:83:48:dc:2b:37:c8:c5:c9:dc:74:1e:02:30:
60:bc:c0:ed:2a:92:10:e3:65:92:af:39:7c:f8:a7:
65:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8A:EA:77:B8:E3:A2:A8:A9:F2:46:89:5B:3B:9E:07:C1:45:14:9A
X509v3 Authority Key Identifier:
keyid:0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:3d:f1:60:87:ba:58:ff:03:2e:55:aa:8b:17:9e:ba:23:2d:
39:8a:9a:21:de:6b:b5:ef:ec:ba:4a:c1:5c:3f:53:21:29:36:
bd:c6:39:01:94:62:37:25:dd:f3:67:f0:b5:f2:84:0d:0f:0e:
a9:b4:aa:56:9b:60:46:06:96:89:63:8c:7f:a2:e5:b6:31:07:
5b:37:3e:bb:11:86:e5:bd:63:84:8b:fa:52:6e:bf:37:43:e0:
ba:97:59:62:ac:a2:d7:90:7e:d3:e5:e8:cc:31:c9:f7:13:1a:
64:3e:80:94:72:84:76:ba:e7:c0:28:de:27:b3:4a:6a:f5:13:
22:c4:22:c0:30:8a:8f:f7:f9:df:6e:0b:85:51:88:00:45:fe:
fb:0f:0b:e4:ea:3a:04:26:48:5f:ed:53:c2:40:79:93:ea:93:
5f:a0:b9:86:f6:9e:82:48:b1:58:9f:30:a1:2b:72:5a:de:ec:
5b:ef:4c:ad:b0:9f:9f:be:91:8c:e9:24:59:d2:9e:8d:d3:23:
9c:52:c0:77:0a:cd:20:f3:06:2d:8a:3d:6b:66:7a:ab:9e:18:
5f:85:03:5a:a4:ee:d9:81:d6:a8:cd:c9:93:43:42:cc:d8:b7:
53:a9:8d:2d:56:14:71:d9:f9:11:db:cd:b2:f9:6a:3b:b3:64:
b6:c8:24:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4/PKWs9Bx6bFXdpf4zfIBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkYjNjMzE2NGQzZDhjMjY0NGNmMjliMzIzNjc2MWE1NzFl
ZTU4YmEwHhcNMjUwNjI5MDAwMTE0WhcNMjUwNjMwMDAwMTE0WjAzMTEwLwYDVQQD
EyhlNThhZWE3N2I4ZTNhMmE4YTlmMjQ2ODk1YjNiOWUwN2MxNDUxNDlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTKwG8x9lxMne/U/qZoXkURFFnV0
MzU0s+bj40RkAwQV97y4/GiF6qGBcAZOxL30OC3PW08Q1fjk+cCZGtezqIgCI1+N
QlpHfoZv+5jiUT5j5cqs5b6UgEPlnAVtsxA9G3r+teZ3BQkmzT/6QdYfkuo8OF7q
gY9JupB+YO4tcUIdyWyMZISpH2u4y9h35aLpklZmbkAvGUWSPHDP5f7AWLMFLGLZ
WHim0JfxTo7GEPXcvgQw3GNCwh4aSvaK0IAfBdZq0gldh+r0iVfkcmnevDKdHM+x
Kv4sWGARwz2J906QiINI3Cs3yMXJ3HQeAjBgvMDtKpIQ42WSrzl8+KdlAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOWK6ne446KoqfJGiVs7ngfBRRSaMB8GA1UdIwQY
MBaAFA2zwxZNPYwmRM8psyNnYaVx7li6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGJQREZrMDlqQ1pFenltekkyZGhwWEh1V0xvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi82Y2QzNjYtMzU1Ny00MmIyLTg4NWIt
M2Q0NjQzOWFhNDFjLzEvRGJQREZrMDlqQ1pFenltekkyZGhwWEh1V0xvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi82Y2QzNjYtMzU1Ny00MmIyLTg4NWItM2Q0NjQzOWFhNDFj
LzEvRGJQREZrMDlqQ1pFenltekkyZGhwWEh1V0xvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjz3xYIe6
WP8DLlWqixeeuiMtOYqaId5rte/sukrBXD9TISk2vcY5AZRiNyXd82fwtfKEDQ8O
qbSqVptgRgaWiWOMf6LltjEHWzc+uxGG5b1jhIv6Um6/N0PgupdZYqyi15B+0+Xo
zDHJ9xMaZD6AlHKEdrrnwCjeJ7NKavUTIsQiwDCKj/f5324LhVGIAEX++w8L5Oo6
BCZIX+1TwkB5k+qTX6C5hvaegkixWJ8woStyWt7sW+9MrbCfn76RjOkkWdKejdMj
nFLAdwrNIPMGLYo9a2Z6q54YX4UDWqTu2YHWqM3Jk0NCzNi3U6mNLVYUcdn5EdvN
svlqO7NktsgkIg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 02:00:28 2025 by rpki-client