Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
File: DkTxM_OHWTqvor6rOIhJBPrJvRk.mft (raw, json)
Hash identifier: XNWc5Dsqr1zcFEI8SgcaeCFQCAkddV45arnE3XfwoRQ=
Subject key identifier: 2A:2F:33:55:82:7E:47:17:71:E3:59:42:FD:1D:46:71:18:90:9D:D1
Authority key identifier: 0E:44:F1:33:F3:87:59:3A:AF:A2:BE:AB:38:88:49:04:FA:C9:BD:19
Certificate issuer: /CN=0e44f133f387593aafa2beab38884904fac9bd19
Certificate serial: 0197B77C736B8B58E87137E12EB54F4E2A27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
Manifest number: 0241
Signing time: Sat 28 Jun 2025 17:01:15 +0000
Manifest this update: Sat 28 Jun 2025 17:01:15 +0000
Manifest next update: Sun 29 Jun 2025 17:01:15 +0000
Files and hashes: 1: DkTxM_OHWTqvor6rOIhJBPrJvRk.crl (hash: LAT+KINYTKlPgWGC5h3vqMHFZP4JwiPCJ9m9iHFhRoI=)
2: Wiv0DHdRF2zh8D5DY6J3_PLSV6Q.roa (hash: /xs5AGgsSlLOCnLD+1aaT+DfL+K36ivL9muQHygs7c4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:73:6b:8b:58:e8:71:37:e1:2e:b5:4f:4e:2a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e44f133f387593aafa2beab38884904fac9bd19
Validity
Not Before: Jun 28 17:01:15 2025 GMT
Not After : Jun 29 17:01:15 2025 GMT
Subject: CN=2a2f3355827e471771e35942fd1d467118909dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:df:75:3f:5f:b1:61:f3:58:10:03:5f:8d:f3:
fb:cf:ef:ef:5b:a0:75:2c:07:3f:a5:cb:57:90:9a:
e5:7d:cc:8c:78:39:8a:ee:c0:3f:f2:7f:e4:bd:b1:
2a:d6:30:7b:ad:dd:25:a9:8e:35:c1:6e:3c:62:70:
d6:fb:2a:93:eb:6f:6a:17:99:34:43:b2:1a:4a:6f:
00:aa:81:95:64:34:16:a1:0d:fe:fc:71:0f:2c:ed:
57:f9:2f:9c:fd:e8:d6:50:f4:91:ea:4e:4f:d8:85:
ae:00:ec:a5:71:ff:dc:92:e7:32:10:65:e2:24:97:
eb:00:ae:d2:cb:c6:25:0d:43:39:9e:5a:dd:0a:77:
8b:e6:a5:57:67:ac:35:c9:51:8b:de:9e:97:cc:af:
93:46:a2:70:77:15:21:64:74:18:35:ba:54:c5:b5:
b4:1c:e3:38:d0:f3:99:b9:09:76:0e:09:ff:1e:56:
d3:a4:ed:23:57:67:7a:3d:33:f3:af:8a:85:56:01:
b1:c2:b2:b3:9b:e6:05:f0:6e:4b:b2:09:50:16:c2:
7d:14:e6:c3:3f:e6:88:ce:65:eb:f5:35:8e:e7:ea:
9a:ce:8b:42:8e:d3:30:9d:e7:3b:da:7c:07:d6:27:
d7:81:4f:e6:c8:1c:e8:b4:82:a3:56:a6:a2:40:33:
b0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:2F:33:55:82:7E:47:17:71:E3:59:42:FD:1D:46:71:18:90:9D:D1
X509v3 Authority Key Identifier:
keyid:0E:44:F1:33:F3:87:59:3A:AF:A2:BE:AB:38:88:49:04:FA:C9:BD:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:e0:cf:ff:ed:1b:fc:d9:91:c8:6d:77:c2:e8:d6:59:a1:fb:
f8:17:5c:ac:22:d3:ee:3d:5e:cb:5b:28:12:de:b9:28:9e:a9:
d4:dc:ba:50:f6:b2:af:5b:8a:06:a2:49:c8:10:2b:aa:27:43:
03:95:44:3e:34:e4:3e:bd:f9:9c:27:91:8b:55:96:73:48:52:
99:ce:d5:4b:03:60:2b:6b:aa:b1:1f:93:29:50:44:66:e8:15:
67:08:05:56:68:3f:6f:9d:2c:e2:e0:b9:73:5b:d4:4e:29:b8:
7f:38:29:f1:e7:cd:a5:35:a0:07:d3:cc:40:96:cc:b1:71:9c:
ec:a3:36:97:c6:bb:71:79:01:7b:d8:9d:84:67:f3:22:ea:bf:
1d:c6:e8:62:4c:9b:c7:8c:62:f5:cf:f4:49:f2:5b:c2:4c:ec:
b8:bd:35:ad:e8:c2:4e:00:6e:a5:3c:56:09:d6:2d:69:d8:b4:
55:f9:df:71:b2:6c:65:e0:dd:3d:bf:aa:8e:6f:ce:66:e9:68:
b4:f9:cd:e4:60:76:cb:83:36:4c:18:e1:ac:91:c4:67:b7:c0:
88:1a:f0:ca:15:4f:f8:fb:5d:d1:14:86:cb:0f:11:d8:37:89:
09:51:f2:ce:8e:f0:b6:50:41:44:4e:dd:3c:29:e2:af:a9:3b:
6f:3d:2a:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fHNri1jocTfhLrVPTionMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlNDRmMTMzZjM4NzU5M2FhZmEyYmVhYjM4ODg0OTA0ZmFj
OWJkMTkwHhcNMjUwNjI4MTcwMTE1WhcNMjUwNjI5MTcwMTE1WjAzMTEwLwYDVQQD
EygyYTJmMzM1NTgyN2U0NzE3NzFlMzU5NDJmZDFkNDY3MTE4OTA5ZGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAot91P1+xYfNYEANfjfP7z+/vW6B1
LAc/pctXkJrlfcyMeDmK7sA/8n/kvbEq1jB7rd0lqY41wW48YnDW+yqT629qF5k0
Q7IaSm8AqoGVZDQWoQ3+/HEPLO1X+S+c/ejWUPSR6k5P2IWuAOylcf/ckucyEGXi
JJfrAK7Sy8YlDUM5nlrdCneL5qVXZ6w1yVGL3p6XzK+TRqJwdxUhZHQYNbpUxbW0
HOM40POZuQl2Dgn/HlbTpO0jV2d6PTPzr4qFVgGxwrKzm+YF8G5LsglQFsJ9FObD
P+aIzmXr9TWO5+qazotCjtMwnec72nwH1ifXgU/myBzotIKjVqaiQDOwAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCovM1WCfkcXceNZQv0dRnEYkJ3RMB8GA1UdIwQY
MBaAFA5E8TPzh1k6r6K+qziISQT6yb0ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGtUeE1fT0hXVHF2b3I2ck9JaEpCUHJKdlJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC8wYjY4ZGMtYzVjOS00MGRkLTlkOGYt
ZGJmZjBlZTFlMDllLzEvRGtUeE1fT0hXVHF2b3I2ck9JaEpCUHJKdlJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC8wYjY4ZGMtYzVjOS00MGRkLTlkOGYtZGJmZjBlZTFlMDll
LzEvRGtUeE1fT0hXVHF2b3I2ck9JaEpCUHJKdlJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOuDP/+0b
/NmRyG13wujWWaH7+BdcrCLT7j1ey1soEt65KJ6p1Ny6UPayr1uKBqJJyBArqidD
A5VEPjTkPr35nCeRi1WWc0hSmc7VSwNgK2uqsR+TKVBEZugVZwgFVmg/b50s4uC5
c1vUTim4fzgp8efNpTWgB9PMQJbMsXGc7KM2l8a7cXkBe9idhGfzIuq/HcboYkyb
x4xi9c/0SfJbwkzsuL01rejCTgBupTxWCdYtadi0VfnfcbJsZeDdPb+qjm/OZulo
tPnN5GB2y4M2TBjhrJHEZ7fAiBrwyhVP+Ptd0RSGyw8R2DeJCVHyzo7wtlBBRE7d
PCnir6k7bz0qGQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:24:27 2025 by rpki-client