Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
File: dCnR70knCBDhAgzqhhmGQjORMaA.mft (raw, json)
Hash identifier: Vx2Hk6VViKHDX6mCbyGZr+QmRka2PLISta/aUiBm8MU=
Subject key identifier: 7C:2A:72:13:55:89:57:38:DA:5F:A4:2C:40:F6:24:03:E3:95:8D:C2
Authority key identifier: 74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
Certificate issuer: /CN=7429d1ef49270810e1020cea86198642339131a0
Certificate serial: 0198D473D35FB7EE06A837397AB2DF8AAEE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
Manifest number: 0B15
Signing time: Sat 23 Aug 2025 01:03:37 +0000
Manifest this update: Sat 23 Aug 2025 01:03:37 +0000
Manifest next update: Sun 24 Aug 2025 01:03:37 +0000
Files and hashes: 1: dCnR70knCBDhAgzqhhmGQjORMaA.crl (hash: 13kvYzwiYRPiUvqXiAXWY73Ir8Q9X/dX65oMpFW/crE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:d3:5f:b7:ee:06:a8:37:39:7a:b2:df:8a:ae:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7429d1ef49270810e1020cea86198642339131a0
Validity
Not Before: Aug 23 01:03:37 2025 GMT
Not After : Aug 24 01:03:37 2025 GMT
Subject: CN=7c2a721355895738da5fa42c40f62403e3958dc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6a:ed:c4:99:d4:06:31:a8:c0:33:2f:50:d9:
23:2a:ed:06:76:fc:e7:2f:62:86:69:b4:2c:f3:8d:
26:27:b0:1f:95:44:0b:83:03:22:db:a4:84:bc:e7:
84:1d:bf:4f:27:60:f0:ae:72:7c:c9:02:16:4b:1e:
1c:7e:ef:73:9b:71:a1:fb:58:af:ec:89:f3:3d:2d:
07:6b:46:63:d5:92:06:ce:dc:0b:25:18:65:74:d4:
b9:d9:e6:ab:d7:9b:ba:21:53:92:9d:0d:96:e5:e5:
02:80:45:a7:b2:cb:dc:1a:35:0c:0c:d0:79:12:79:
10:17:22:5a:61:94:4a:82:4a:5d:e7:f1:f3:9c:30:
4b:70:5d:4f:25:ea:ff:07:36:e6:5e:a5:80:28:0b:
e6:50:bd:9e:36:fa:45:ea:50:36:f7:64:b0:d6:b2:
9f:71:7a:30:eb:59:24:38:79:4e:eb:01:24:d1:00:
56:62:7d:a7:e0:7b:15:3c:3f:e7:c0:75:38:be:76:
50:31:a9:1f:fb:10:a4:81:ef:c8:06:bd:ea:c6:57:
9e:cf:e3:44:97:81:ef:9a:ac:7c:fe:a1:00:28:09:
5f:54:73:b4:ac:f1:b7:f6:08:4b:62:61:2d:02:78:
26:fd:f2:18:51:59:f2:96:67:5e:bc:24:6d:12:5e:
59:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:2A:72:13:55:89:57:38:DA:5F:A4:2C:40:F6:24:03:E3:95:8D:C2
X509v3 Authority Key Identifier:
keyid:74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:2e:51:95:18:9d:70:04:4d:33:41:c0:19:0b:19:87:bd:bb:
e9:85:58:8e:62:08:d2:6f:6a:ef:90:dc:cf:36:38:91:f1:82:
60:e0:e4:20:b8:8d:ca:f5:bb:34:f3:aa:7b:e7:b6:a7:b9:9d:
39:29:64:d9:e0:1e:4f:50:a4:3a:50:ac:76:89:d8:82:b0:43:
2c:f8:ee:6d:e2:a0:ff:38:1d:d9:68:33:2c:45:80:2e:cc:46:
b5:47:99:5e:43:b4:d0:6e:b6:8b:ca:96:07:6a:0a:66:db:6b:
20:18:d8:b7:99:68:ec:26:60:8c:34:38:3b:53:a4:f8:ab:3e:
7b:04:16:bd:c0:15:32:3c:56:c3:13:4b:8b:79:f3:d5:23:3d:
b8:9d:09:f4:f1:78:36:5b:b6:3d:f2:16:f6:0b:7a:93:ab:dc:
6b:10:1e:28:bc:a9:ee:a5:ee:3b:ef:9f:db:00:bc:6b:75:91:
cd:9b:36:9d:5e:3d:1f:fc:1e:64:c3:22:65:6b:3a:3e:01:55:
8e:77:f7:be:26:8b:a9:69:16:f5:ef:cc:ee:e4:49:4c:10:25:
eb:d9:ca:d5:82:69:5d:85:82:14:f1:1b:22:b9:d9:da:5e:19:
a0:c1:bc:c6:6c:07:b6:67:c6:af:c4:48:95:a1:3a:78:65:47:
4d:9c:81:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc9Nft+4GqDc5erLfiq7pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0MjlkMWVmNDkyNzA4MTBlMTAyMGNlYTg2MTk4NjQyMzM5
MTMxYTAwHhcNMjUwODIzMDEwMzM3WhcNMjUwODI0MDEwMzM3WjAzMTEwLwYDVQQD
Eyg3YzJhNzIxMzU1ODk1NzM4ZGE1ZmE0MmM0MGY2MjQwM2UzOTU4ZGMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGrtxJnUBjGowDMvUNkjKu0Gdvzn
L2KGabQs840mJ7AflUQLgwMi26SEvOeEHb9PJ2DwrnJ8yQIWSx4cfu9zm3Gh+1iv
7InzPS0Ha0Zj1ZIGztwLJRhldNS52ear15u6IVOSnQ2W5eUCgEWnssvcGjUMDNB5
EnkQFyJaYZRKgkpd5/HznDBLcF1PJer/BzbmXqWAKAvmUL2eNvpF6lA292Sw1rKf
cXow61kkOHlO6wEk0QBWYn2n4HsVPD/nwHU4vnZQMakf+xCkge/IBr3qxleez+NE
l4Hvmqx8/qEAKAlfVHO0rPG39ghLYmEtAngm/fIYUVnylmdevCRtEl5ZRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHwqchNViVc42l+kLED2JAPjlY3CMB8GA1UdIwQY
MBaAFHQp0e9JJwgQ4QIM6oYZhkIzkTGgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZENuUjcwa25DQkRoQWd6cWhobUdRak9STWFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9mYzBkMjEtN2YxNC00NGFiLTk5NWMt
ZTBiYWU4YmFlNjc0LzEvZENuUjcwa25DQkRoQWd6cWhobUdRak9STWFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9mYzBkMjEtN2YxNC00NGFiLTk5NWMtZTBiYWU4YmFlNjc0
LzEvZENuUjcwa25DQkRoQWd6cWhobUdRak9STWFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhC5RlRid
cARNM0HAGQsZh7276YVYjmII0m9q75DczzY4kfGCYODkILiNyvW7NPOqe+e2p7md
OSlk2eAeT1CkOlCsdonYgrBDLPjubeKg/zgd2WgzLEWALsxGtUeZXkO00G62i8qW
B2oKZttrIBjYt5lo7CZgjDQ4O1Ok+Ks+ewQWvcAVMjxWwxNLi3nz1SM9uJ0J9PF4
Nlu2PfIW9gt6k6vcaxAeKLyp7qXuO++f2wC8a3WRzZs2nV49H/weZMMiZWs6PgFV
jnf3viaLqWkW9e/M7uRJTBAl69nK1YJpXYWCFPEbIrnZ2l4ZoMG8xmwHtmfGr8RI
laE6eGVHTZyBcQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:32 2025 by rpki-client