Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
File: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft (raw, json)
Hash identifier: anPJXLrI6bXqO7PACWveR0Z5gPe1+6l77C8Qi0hQUtQ=
Subject key identifier: 39:8C:0E:13:02:A8:65:4E:2F:05:59:73:7F:9A:24:A5:F9:12:18:4A
Authority key identifier: 0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
Certificate issuer: /CN=0e1dd539525a39d847014e8fea3c641d973cc866
Certificate serial: 0198D660993DF22DAE2FE45492CFFE33F83A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
Manifest number: 05CD
Signing time: Sat 23 Aug 2025 10:01:51 +0000
Manifest this update: Sat 23 Aug 2025 10:01:51 +0000
Manifest next update: Sun 24 Aug 2025 10:01:51 +0000
Files and hashes: 1: 5qU9a0oGWmmroynSN69UsFF4Lyw.roa (hash: ck+/DYuUP9vUcXqAS40voGKy/13DDBxa+VF1/FTp/II=)
2: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl (hash: P3pCVun6zxa26Fx1TUsHDGT/wJ2oRq/VoB1B9DeTM+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:99:3d:f2:2d:ae:2f:e4:54:92:cf:fe:33:f8:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e1dd539525a39d847014e8fea3c641d973cc866
Validity
Not Before: Aug 23 10:01:51 2025 GMT
Not After : Aug 24 10:01:51 2025 GMT
Subject: CN=398c0e1302a8654e2f0559737f9a24a5f912184a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1a:49:16:e2:06:31:1c:c5:cb:03:66:44:a6:
2c:9e:80:38:ea:df:a6:af:a5:c3:25:0e:1d:35:71:
2c:db:08:42:86:3e:5d:34:d4:dc:ae:2b:92:76:37:
ab:51:44:5a:37:0b:7f:11:d7:ae:f4:61:f0:ef:2d:
c5:cb:13:f5:cf:2e:81:7b:e8:31:03:3c:ce:12:9c:
79:40:dc:45:b2:49:e7:9c:df:76:44:14:97:27:3e:
f8:ee:cd:c2:35:71:04:0e:75:2d:00:05:eb:3f:ab:
51:41:91:81:a5:0a:9f:27:12:db:fa:1f:ad:2b:84:
65:2c:4e:73:7a:75:d6:38:48:a3:8b:9c:50:31:36:
c8:3f:f2:8e:f0:99:7b:4a:3c:8c:5c:26:86:40:52:
b4:2a:58:6f:33:3a:c1:1f:bc:09:aa:02:6e:82:5e:
4e:e4:8e:7f:08:60:5f:c1:51:f1:dc:6d:46:cb:91:
70:4e:47:80:93:a9:9b:e4:0a:07:fe:1d:38:dc:31:
ee:6e:fb:75:70:7f:76:f7:e5:8d:41:25:f5:b2:54:
ed:dd:0c:6f:92:8c:3a:ca:ab:c5:1a:e8:87:3b:a8:
06:eb:f9:dc:fa:42:fe:00:f0:2d:f6:39:90:82:c3:
d0:bb:ae:88:c9:e3:3b:2e:3e:cc:9c:2f:94:0e:a8:
27:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:8C:0E:13:02:A8:65:4E:2F:05:59:73:7F:9A:24:A5:F9:12:18:4A
X509v3 Authority Key Identifier:
keyid:0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:0a:79:90:bb:be:f0:98:56:f1:8f:75:8a:df:7f:45:db:36:
b0:7b:4d:a6:a0:98:60:64:f8:5a:25:c6:10:5b:cd:2b:ac:dc:
50:7f:da:08:45:4d:b9:71:1e:4c:44:33:2a:16:96:4b:be:8c:
1c:a6:91:47:c4:0a:4f:32:f5:69:8c:42:8a:05:06:0f:f7:92:
12:6d:9f:7e:f2:ed:6d:d8:90:1c:6f:d3:78:48:03:65:b6:96:
91:f9:8a:a1:49:5d:70:6e:75:55:3a:3e:3d:97:89:d5:64:f6:
06:c0:28:c4:cd:8a:08:3b:a0:be:7f:72:0b:0a:6d:3f:58:dd:
70:8f:03:d1:ec:2f:af:ce:e0:00:41:c5:94:51:f8:8d:4b:3c:
65:52:80:80:07:be:69:62:6c:c1:53:e0:8e:18:d5:c2:02:53:
a5:a1:03:9d:8b:47:d9:97:86:c1:dc:3c:b6:d1:86:c1:d9:f7:
70:e6:59:5a:79:ae:3b:00:aa:07:e5:7f:ce:ae:d6:ea:e4:6d:
88:9d:14:21:d6:40:cb:62:5a:0d:cb:25:c3:8f:8a:d4:ca:e2:
e4:e3:57:1f:8d:93:37:ee:01:ce:37:75:c1:76:8b:5d:c2:40:
4d:88:ec:17:a4:64:57:5f:a0:f6:6e:89:c6:aa:a1:8f:68:c9:
ea:87:d4:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYJk98i2uL+RUks/+M/g6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlMWRkNTM5NTI1YTM5ZDg0NzAxNGU4ZmVhM2M2NDFkOTcz
Y2M4NjYwHhcNMjUwODIzMTAwMTUxWhcNMjUwODI0MTAwMTUxWjAzMTEwLwYDVQQD
EygzOThjMGUxMzAyYTg2NTRlMmYwNTU5NzM3ZjlhMjRhNWY5MTIxODRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhpJFuIGMRzFywNmRKYsnoA46t+m
r6XDJQ4dNXEs2whChj5dNNTcriuSdjerUURaNwt/Edeu9GHw7y3FyxP1zy6Be+gx
AzzOEpx5QNxFsknnnN92RBSXJz747s3CNXEEDnUtAAXrP6tRQZGBpQqfJxLb+h+t
K4RlLE5zenXWOEiji5xQMTbIP/KO8Jl7SjyMXCaGQFK0KlhvMzrBH7wJqgJugl5O
5I5/CGBfwVHx3G1Gy5FwTkeAk6mb5AoH/h043DHubvt1cH929+WNQSX1slTt3Qxv
kow6yqvFGuiHO6gG6/nc+kL+APAt9jmQgsPQu66IyeM7Lj7MnC+UDqgnZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDmMDhMCqGVOLwVZc3+aJKX5EhhKMB8GA1UdIwQY
MBaAFA4d1TlSWjnYRwFOj+o8ZB2XPMhmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGgzVk9WSmFPZGhIQVU2UDZqeGtIWmM4eUdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS80NTBiMjktNDBkNi00ZGEzLTkwYjAt
OTI5ODkzMDgxODY2LzEvRGgzVk9WSmFPZGhIQVU2UDZqeGtIWmM4eUdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS80NTBiMjktNDBkNi00ZGEzLTkwYjAtOTI5ODkzMDgxODY2
LzEvRGgzVk9WSmFPZGhIQVU2UDZqeGtIWmM4eUdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMgp5kLu+
8JhW8Y91it9/Rds2sHtNpqCYYGT4WiXGEFvNK6zcUH/aCEVNuXEeTEQzKhaWS76M
HKaRR8QKTzL1aYxCigUGD/eSEm2ffvLtbdiQHG/TeEgDZbaWkfmKoUldcG51VTo+
PZeJ1WT2BsAoxM2KCDugvn9yCwptP1jdcI8D0ewvr87gAEHFlFH4jUs8ZVKAgAe+
aWJswVPgjhjVwgJTpaEDnYtH2ZeGwdw8ttGGwdn3cOZZWnmuOwCqB+V/zq7W6uRt
iJ0UIdZAy2JaDcslw4+K1Mri5ONXH42TN+4Bzjd1wXaLXcJATYjsF6RkV1+g9m6J
xqqhj2jJ6ofUwg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:38:44 2025 by rpki-client