Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
File: d9LZKEIxBOXDSA4htKPtFJiyon4.mft (raw, json)
Hash identifier: fiXBBJafv7Vu7Unl0TYGUTrow3q2Z4+gsWFAB40qHtg=
Subject key identifier: AA:B8:10:79:90:EA:85:59:CE:E6:3D:37:D8:E9:36:C2:BF:9A:CF:6B
Authority key identifier: 77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
Certificate issuer: /CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Certificate serial: 01976F2BC758346FC9779E0AFC2D43937BEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
Manifest number: 0B08
Signing time: Sat 14 Jun 2025 16:00:29 +0000
Manifest this update: Sat 14 Jun 2025 16:00:29 +0000
Manifest next update: Sun 15 Jun 2025 16:00:29 +0000
Files and hashes: 1: HX3f5FZnDXBVPEnE5bxp-46XcDI.roa (hash: Cn4L/fOgVlSahDb0v8tdmodjivbISS4FJEJArlg0b+Y=)
2: d9LZKEIxBOXDSA4htKPtFJiyon4.crl (hash: l2rH71i1fT/OPsFaIw6UyuEHcB3bm9uaWdDHpTymi2M=)
3: jKFJgU1IkNXTMlJ4fb3SLPhpIEs.roa (hash: gVNSWZlrE4CqYnhrjWkiPYyY6GBkTGDHd/hL4ezDiUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 16:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2b:c7:58:34:6f:c9:77:9e:0a:fc:2d:43:93:7b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Validity
Not Before: Jun 14 16:00:29 2025 GMT
Not After : Jun 15 16:00:29 2025 GMT
Subject: CN=aab8107990ea8559cee63d37d8e936c2bf9acf6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d8:71:7f:76:1a:7b:c7:0f:7a:29:0a:4b:5e:
19:71:ec:bf:62:b7:61:31:52:8a:e8:05:c1:46:73:
27:76:0d:cb:b8:79:7c:e5:d9:2c:77:cd:2f:38:96:
eb:32:66:38:c9:64:f3:82:9e:f2:f4:c3:8e:95:9c:
2d:4c:af:c9:db:29:07:f4:67:c1:cd:5d:57:22:09:
95:0d:93:93:a6:74:5a:69:bf:55:62:a0:05:d1:0f:
31:73:d1:9f:ab:80:16:68:87:04:9c:74:96:52:25:
ae:ee:c1:ec:d8:66:1d:0e:f6:5f:9e:12:14:27:8c:
54:8d:74:49:3c:15:15:01:74:bb:f3:39:1f:00:36:
66:4c:2a:e3:16:37:23:71:06:e8:24:ac:13:e7:6f:
59:62:4f:26:6a:72:6b:71:9e:be:e3:9a:de:f4:c9:
b5:48:ef:ea:50:f0:93:dd:5f:95:51:26:19:e8:f3:
1f:ee:82:18:8e:98:ab:48:a2:3b:c5:fc:c4:5c:77:
a4:6c:4f:54:0f:af:8a:40:c5:04:58:c9:f5:b1:6d:
a6:0b:c9:11:11:23:70:66:34:5b:c2:cb:07:a3:e2:
85:ef:fe:37:b7:42:b0:35:eb:8e:9b:0a:1e:af:54:
7d:d8:4e:91:8f:d6:95:d6:d9:76:a6:f8:4f:7d:99:
2c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B8:10:79:90:EA:85:59:CE:E6:3D:37:D8:E9:36:C2:BF:9A:CF:6B
X509v3 Authority Key Identifier:
keyid:77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:d6:9e:f2:4c:93:93:de:1e:03:cb:70:12:8a:59:e0:56:e7:
ba:0c:3f:8f:a4:2c:7e:4e:80:c2:be:7c:6f:49:32:4e:94:cf:
5c:53:de:55:9a:54:7d:25:a4:f4:20:d5:06:eb:d7:1c:15:88:
58:60:fd:93:0e:49:ff:21:e4:be:5b:b3:4c:a1:a1:31:47:d8:
42:46:90:32:de:01:d3:50:5b:85:f4:fd:db:70:a3:31:3f:ac:
9b:19:6d:bd:97:a3:14:72:0e:72:c7:fe:da:e6:0a:93:e6:80:
7a:c0:bd:95:7b:fd:2f:a4:ae:c0:85:83:54:0a:01:b7:25:c0:
67:0f:ce:87:f7:be:d4:67:10:0a:8b:28:c8:b2:06:e6:a2:22:
55:d0:d9:af:fb:e0:b7:3e:7b:6a:65:69:61:86:7c:d7:fd:0c:
fb:dd:6f:9c:2c:27:9d:68:ce:51:8f:b2:67:cf:9a:18:61:e7:
df:e2:81:56:c2:1d:a9:db:0e:a1:78:e0:f7:25:24:f4:7c:d0:
5a:f7:db:cb:eb:31:37:1b:b6:b8:d9:04:63:21:30:67:83:15:
35:f2:94:26:7c:d4:38:aa:4d:31:fc:3e:d2:2e:79:f3:e2:c5:
3a:ba:86:18:5e:06:f3:f6:9b:5c:81:fc:0f:36:31:ea:9e:01:
1f:22:42:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvK8dYNG/Jd54K/C1Dk3vsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZDJkOTI4NDIzMTA0ZTVjMzQ4MGUyMWI0YTNlZDE0OThi
MmEyN2UwHhcNMjUwNjE0MTYwMDI5WhcNMjUwNjE1MTYwMDI5WjAzMTEwLwYDVQQD
EyhhYWI4MTA3OTkwZWE4NTU5Y2VlNjNkMzdkOGU5MzZjMmJmOWFjZjZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3thxf3Yae8cPeikKS14Zcey/Yrdh
MVKK6AXBRnMndg3LuHl85dksd80vOJbrMmY4yWTzgp7y9MOOlZwtTK/J2ykH9GfB
zV1XIgmVDZOTpnRaab9VYqAF0Q8xc9Gfq4AWaIcEnHSWUiWu7sHs2GYdDvZfnhIU
J4xUjXRJPBUVAXS78zkfADZmTCrjFjcjcQboJKwT529ZYk8manJrcZ6+45re9Mm1
SO/qUPCT3V+VUSYZ6PMf7oIYjpirSKI7xfzEXHekbE9UD6+KQMUEWMn1sW2mC8kR
ESNwZjRbwssHo+KF7/43t0KwNeuOmwoer1R92E6Rj9aV1tl2pvhPfZksEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKq4EHmQ6oVZzuY9N9jpNsK/ms9rMB8GA1UdIwQY
MBaAFHfS2ShCMQTlw0gOIbSj7RSYsqJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgt
NDg4NzkyMzg4ZTViLzEvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgtNDg4NzkyMzg4ZTVi
LzEvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe9ae8kyT
k94eA8twEopZ4Fbnugw/j6Qsfk6Awr58b0kyTpTPXFPeVZpUfSWk9CDVBuvXHBWI
WGD9kw5J/yHkvluzTKGhMUfYQkaQMt4B01BbhfT923CjMT+smxltvZejFHIOcsf+
2uYKk+aAesC9lXv9L6SuwIWDVAoBtyXAZw/Oh/e+1GcQCosoyLIG5qIiVdDZr/vg
tz57amVpYYZ81/0M+91vnCwnnWjOUY+yZ8+aGGHn3+KBVsIdqdsOoXjg9yUk9HzQ
Wvfby+sxNxu2uNkEYyEwZ4MVNfKUJnzUOKpNMfw+0i558+LFOrqGGF4G8/abXIH8
DzYx6p4BHyJCLw==
-----END CERTIFICATE-----
Generated at Sun Jun 15 01:12:03 2025 by rpki-client