Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
File: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft (raw, json)
Hash identifier: Zst0wxKFNo3Lfq8t6KOr8XGh1zCz44+ZpkyF6VqjV8M=
Subject key identifier: 24:EA:96:41:86:24:BF:C7:6A:87:A9:49:E3:EC:07:BB:F4:85:CF:D7
Authority key identifier: 0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
Certificate issuer: /CN=0e1dd539525a39d847014e8fea3c641d973cc866
Certificate serial: 0197B88FF0759BD3A012B584D41BECBE761F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
Manifest number: 0539
Signing time: Sat 28 Jun 2025 22:02:10 +0000
Manifest this update: Sat 28 Jun 2025 22:02:10 +0000
Manifest next update: Sun 29 Jun 2025 22:02:10 +0000
Files and hashes: 1: 5qU9a0oGWmmroynSN69UsFF4Lyw.roa (hash: ck+/DYuUP9vUcXqAS40voGKy/13DDBxa+VF1/FTp/II=)
2: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl (hash: hNxwmvPnNjLRbWhPbbujMUIcLEg+/cqmHRCJZE8dKA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:f0:75:9b:d3:a0:12:b5:84:d4:1b:ec:be:76:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e1dd539525a39d847014e8fea3c641d973cc866
Validity
Not Before: Jun 28 22:02:10 2025 GMT
Not After : Jun 29 22:02:10 2025 GMT
Subject: CN=24ea96418624bfc76a87a949e3ec07bbf485cfd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:56:3f:85:11:aa:a5:bb:d9:ae:12:1e:9d:ef:
03:07:04:78:4f:2e:ee:d8:4f:e4:41:20:96:04:b4:
4c:41:e5:d5:ff:90:25:8a:79:d6:9a:42:32:86:c1:
05:e0:0c:56:a3:31:20:6c:e4:69:4c:e0:8f:38:02:
a3:7a:fd:48:7e:9a:42:b5:69:19:ad:ac:a1:c4:f0:
c3:b9:0e:78:01:21:eb:b2:15:01:99:0f:4d:93:94:
b0:95:e4:7e:9a:f0:a1:8e:c2:92:02:d7:56:8a:e1:
18:48:43:c6:17:6b:5b:e1:13:a4:68:6a:99:19:a6:
5b:15:6b:13:1b:f1:f7:0f:99:eb:c2:da:14:5a:e5:
8b:11:39:53:44:98:bb:dd:b4:c9:48:98:24:20:f5:
5f:52:92:91:df:15:89:e2:74:34:87:af:73:30:f9:
99:25:d4:c2:e4:a6:06:d9:76:e5:23:6b:cd:29:70:
45:f4:c1:56:7e:cb:68:1c:a9:78:04:08:92:8c:9b:
8b:83:d8:5d:5c:13:fa:cd:9e:e7:91:41:df:17:88:
2a:33:44:16:68:0a:df:a1:04:96:c4:42:9a:74:1d:
6a:e8:8e:a4:73:ae:13:0f:82:84:80:e4:a6:1b:a2:
be:71:76:48:30:6b:06:21:63:19:b1:92:1f:6f:40:
5d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:EA:96:41:86:24:BF:C7:6A:87:A9:49:E3:EC:07:BB:F4:85:CF:D7
X509v3 Authority Key Identifier:
keyid:0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:5f:66:24:91:f6:b3:55:36:60:e4:35:2b:f5:d6:ba:ab:4a:
da:22:92:72:48:3c:73:79:a6:6b:6c:b9:f5:83:00:55:2e:ca:
a2:d3:23:c7:1e:88:3d:ef:b6:fb:f8:6e:94:8f:8b:34:5d:e8:
77:23:52:30:5b:b5:30:ed:53:e4:cb:e5:e1:1d:70:71:ce:99:
b4:64:34:b6:60:e7:14:8b:36:0b:6e:cb:38:40:de:1f:82:84:
22:b1:4f:20:ff:e8:00:f2:aa:da:40:3d:0d:45:fc:72:fc:4c:
5c:89:24:e5:ce:ec:43:98:35:5c:b0:c8:97:93:b6:e5:c4:6b:
a8:cf:b6:6f:ed:be:9e:88:c3:04:bd:fd:98:4d:4f:5b:58:bd:
8f:44:22:15:e7:23:b5:03:65:40:f9:8a:ca:b3:44:cf:af:1a:
1f:18:11:df:62:02:a1:48:b5:d5:77:2e:c0:9c:0a:ec:c4:61:
a5:d0:10:6e:aa:69:ae:3f:10:ad:0a:39:58:24:21:8e:39:c0:
92:62:ab:c7:61:05:36:da:ec:31:59:1b:62:ac:9e:5c:99:ea:
f8:ce:e9:5e:f8:18:5f:c0:bb:43:3e:0b:0c:07:00:eb:e4:b9:
c0:3e:92:b7:db:70:e7:b9:f1:ab:b0:e1:40:9c:b0:96:7c:3f:
41:82:23:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:30:03 2025 by rpki-client