Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
File: DLvQEU2XGWdQ1IxeElbtBVpeniw.mft (raw, json)
Hash identifier: St6Ndz2tA372vsMB72fwHVAWnkg2TNZol5SICxnyWpE=
Subject key identifier: 92:F7:A1:84:93:C7:09:59:84:3B:C7:79:F2:44:70:24:CB:54:6D:B0
Authority key identifier: 0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C
Certificate issuer: /CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c
Certificate serial: 0197B6D7258FBFA7316CA6A754B500482CCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
Manifest number: 0A0D
Signing time: Sat 28 Jun 2025 14:00:42 +0000
Manifest this update: Sat 28 Jun 2025 14:00:42 +0000
Manifest next update: Sun 29 Jun 2025 14:00:42 +0000
Files and hashes: 1: C1pdtFvgr0xoHUm63plkKuj-C_Y.roa (hash: b/y/wC9aBMLG4uCve6DdHlmgdXRsPrspZQT4HGYlIp0=)
2: DLvQEU2XGWdQ1IxeElbtBVpeniw.crl (hash: iI+D0mWilac1luNFbPEvRHDDoAsrdDfBHcM6bH3bVIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:25:8f:bf:a7:31:6c:a6:a7:54:b5:00:48:2c:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c
Validity
Not Before: Jun 28 14:00:42 2025 GMT
Not After : Jun 29 14:00:42 2025 GMT
Subject: CN=92f7a18493c70959843bc779f2447024cb546db0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:27:38:4d:e1:d3:ce:d9:80:0e:d8:72:4b:4f:
79:13:28:33:7e:d7:d0:23:d3:3a:b1:f9:45:c1:24:
39:45:fc:5a:b5:79:ba:bf:20:4e:1a:3c:ea:ca:37:
8f:03:da:da:43:86:a6:0f:90:81:f9:cf:f3:62:ee:
d8:a6:4f:85:fb:21:be:70:de:50:e4:8b:64:57:ff:
99:da:cb:b0:27:56:87:37:d1:8e:8b:ca:41:26:9f:
1f:90:98:97:a3:71:ee:cb:e9:57:03:ac:40:f8:75:
51:89:59:4a:55:ae:2f:94:52:d2:eb:98:4b:97:45:
c1:7d:19:36:c7:bb:af:c8:9e:52:9f:3a:c7:39:f6:
8e:38:e0:be:90:92:75:00:d0:82:4e:15:80:c3:b5:
46:4e:15:d9:45:e3:30:ef:b0:80:73:8f:9c:f4:43:
a1:9a:1e:6b:ee:e8:97:7d:33:03:85:03:b2:c3:f4:
ce:e0:f3:65:75:5a:db:cb:18:71:94:90:83:7b:1d:
2c:79:21:a7:c4:54:b6:59:d8:8a:eb:5c:ce:61:61:
42:44:4e:bc:54:56:8b:98:4a:67:85:ab:6f:0f:a0:
f8:c9:5f:19:3f:9c:18:30:1b:20:c7:e0:e3:5c:b0:
f5:06:50:f5:e8:4d:5c:fb:94:51:02:7a:10:ed:35:
d3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F7:A1:84:93:C7:09:59:84:3B:C7:79:F2:44:70:24:CB:54:6D:B0
X509v3 Authority Key Identifier:
keyid:0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:95:34:61:dc:04:75:3d:47:1e:ca:d9:ff:91:33:5a:0a:c5:
2e:80:df:c3:db:81:8e:54:29:96:ca:d1:49:e9:2e:9d:ca:19:
19:a6:8a:8c:30:44:8a:bb:a4:18:18:68:b7:b5:89:dd:68:ba:
cf:d9:64:12:52:6e:e7:e4:9c:ce:40:6c:6e:92:1f:5b:89:f9:
76:36:9b:2e:a2:c6:b3:c4:3f:d1:f3:c7:26:55:3d:70:78:26:
e9:97:af:ef:7a:36:d3:8e:cf:79:7d:bd:c1:4b:8b:19:a5:4b:
ad:62:35:4e:b6:1e:e4:84:f4:1d:a7:4d:1e:cb:0f:aa:57:45:
a5:59:8f:61:11:cb:1d:93:a1:02:7e:0c:67:ff:c8:5a:28:d2:
ab:da:6e:63:30:6d:0e:46:13:3f:4f:68:ff:77:00:11:6b:97:
61:e9:fe:8c:d2:33:cc:dc:23:30:69:ba:04:d4:ea:b3:b7:07:
bc:b7:13:51:ff:b0:cc:62:fb:2d:a2:20:21:21:0f:ec:f3:d0:
92:77:69:02:61:28:86:fe:b4:5e:a9:a8:df:36:da:87:55:e0:
9b:26:4f:3d:a6:03:7c:05:78:f6:ac:b6:82:7a:fa:4d:50:7c:
39:23:9e:bb:31:3e:16:e2:96:87:73:bd:0e:2d:e1:31:75:22:
d5:ee:c4:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe21yWPv6cxbKanVLUASCzMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjYmJkMDExNGQ5NzE5Njc1MGQ0OGM1ZTEyNTZlZDA1NWE1
ZTllMmMwHhcNMjUwNjI4MTQwMDQyWhcNMjUwNjI5MTQwMDQyWjAzMTEwLwYDVQQD
Eyg5MmY3YTE4NDkzYzcwOTU5ODQzYmM3NzlmMjQ0NzAyNGNiNTQ2ZGIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Cc4TeHTztmADthyS095EygzftfQ
I9M6sflFwSQ5RfxatXm6vyBOGjzqyjePA9raQ4amD5CB+c/zYu7Ypk+F+yG+cN5Q
5ItkV/+Z2suwJ1aHN9GOi8pBJp8fkJiXo3Huy+lXA6xA+HVRiVlKVa4vlFLS65hL
l0XBfRk2x7uvyJ5SnzrHOfaOOOC+kJJ1ANCCThWAw7VGThXZReMw77CAc4+c9EOh
mh5r7uiXfTMDhQOyw/TO4PNldVrbyxhxlJCDex0seSGnxFS2WdiK61zOYWFCRE68
VFaLmEpnhatvD6D4yV8ZP5wYMBsgx+DjXLD1BlD16E1c+5RRAnoQ7TXTFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJL3oYSTxwlZhDvHefJEcCTLVG2wMB8GA1UdIwQY
MBaAFAy70BFNlxlnUNSMXhJW7QVaXp4sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8yYTFiNGUtZDc1NC00NDNjLWEzNjAt
YWZiNTY2Y2RmYWM2LzEvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC8yYTFiNGUtZDc1NC00NDNjLWEzNjAtYWZiNTY2Y2RmYWM2
LzEvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKJU0YdwE
dT1HHsrZ/5EzWgrFLoDfw9uBjlQplsrRSekuncoZGaaKjDBEirukGBhot7WJ3Wi6
z9lkElJu5+SczkBsbpIfW4n5djabLqLGs8Q/0fPHJlU9cHgm6Zev73o2047PeX29
wUuLGaVLrWI1TrYe5IT0HadNHssPqldFpVmPYRHLHZOhAn4MZ//IWijSq9puYzBt
DkYTP09o/3cAEWuXYen+jNIzzNwjMGm6BNTqs7cHvLcTUf+wzGL7LaIgISEP7PPQ
kndpAmEohv60Xqmo3zbah1XgmyZPPaYDfAV49qy2gnr6TVB8OSOeuzE+FuKWh3O9
Di3hMXUi1e7ELw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:02:05 2025 by rpki-client