Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
File: lDyQO00Og7yLLUVDE26c1fOYZPU.mft (raw, json)
Hash identifier: wuglkrrLL5/ZtMOPQtYLLNZscAA/Gc4aforB4ZtVrI0=
Subject key identifier: ED:3A:F7:F4:A1:FC:AF:7F:61:68:3A:0C:40:A3:69:02:C1:94:2A:07
Authority key identifier: 94:3C:90:3B:4D:0E:83:BC:8B:2D:45:43:13:6E:9C:D5:F3:98:64:F5
Certificate issuer: /CN=943c903b4d0e83bc8b2d4543136e9cd5f39864f5
Certificate serial: 019879AEDB1D4031229181BBD6E15D0E3D76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
Manifest number: 0749
Signing time: Tue 05 Aug 2025 10:02:39 +0000
Manifest this update: Tue 05 Aug 2025 10:02:39 +0000
Manifest next update: Wed 06 Aug 2025 10:02:39 +0000
Files and hashes: 1: cj4zWw5xq9EoEtqlLeBFl4S5Tw8.roa (hash: juaSzbzMDJ0sK0T5VgO//FmV7+h5xttoXCzQBonEpPE=)
2: lDyQO00Og7yLLUVDE26c1fOYZPU.crl (hash: XhDRVUlpxdRRyC0z7FykngKIk5kWkdeiy0aYrt7wX9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 10:02:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:ae:db:1d:40:31:22:91:81:bb:d6:e1:5d:0e:3d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943c903b4d0e83bc8b2d4543136e9cd5f39864f5
Validity
Not Before: Aug 5 10:02:39 2025 GMT
Not After : Aug 6 10:02:39 2025 GMT
Subject: CN=ed3af7f4a1fcaf7f61683a0c40a36902c1942a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:23:18:11:ab:e0:59:79:3b:ef:c2:5c:19:4e:
d8:fe:2f:42:90:41:b7:2e:85:1f:fa:6b:03:aa:9e:
a0:46:68:b6:c3:42:ac:4c:b9:3d:a0:b0:4f:2b:73:
fa:c6:ea:32:d8:dc:d4:6f:c2:29:e0:70:25:99:90:
98:eb:5a:a9:c0:07:61:a3:b0:b9:0c:dc:04:cd:60:
e6:71:5b:a3:30:9d:43:51:16:5d:21:fa:ea:d0:bb:
00:be:41:34:b3:40:90:56:8a:f0:c0:e8:6d:01:59:
2e:88:d2:22:6a:85:6e:67:80:b3:aa:a2:a6:89:18:
b0:74:4f:79:7e:be:dd:e4:5a:a8:23:62:7a:ab:3f:
b4:57:bb:ef:6f:16:2a:69:ed:ca:6a:57:18:9d:5a:
c3:bd:fe:69:f6:34:1e:a5:d6:73:97:86:d2:5d:26:
89:04:a8:b8:bb:a3:68:29:c0:2a:c7:51:80:65:92:
eb:c8:7b:7d:08:3a:ed:ef:cb:f2:22:90:bd:a7:e5:
08:06:c0:eb:97:61:92:7c:ba:ad:81:74:ec:f5:dd:
4b:90:ea:25:e0:35:05:a6:dc:8d:28:85:34:4c:53:
fb:ad:b1:a0:49:87:b2:72:c1:10:75:e8:6d:bd:b8:
d3:ce:09:63:7d:f6:70:3d:d2:77:c6:49:0a:f7:86:
79:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3A:F7:F4:A1:FC:AF:7F:61:68:3A:0C:40:A3:69:02:C1:94:2A:07
X509v3 Authority Key Identifier:
keyid:94:3C:90:3B:4D:0E:83:BC:8B:2D:45:43:13:6E:9C:D5:F3:98:64:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:cd:22:09:78:dd:f8:6c:e5:00:a8:49:e3:d0:18:14:45:ba:
5a:64:c2:7e:ef:34:1d:2e:30:84:8a:61:1e:93:ae:bc:bf:b3:
6b:d2:3b:61:80:c3:62:5d:48:ed:3d:36:4a:84:5a:1f:3e:86:
31:e6:fa:7c:b8:80:86:c4:fc:f2:51:79:a2:b6:dd:50:31:13:
99:de:54:a7:8d:04:23:8a:1a:d1:bb:db:54:59:eb:94:df:11:
42:1e:bf:f8:15:59:07:37:2d:a3:a6:56:63:3e:d6:0e:7c:6c:
1f:18:65:ec:84:7f:9c:5f:e0:f9:3d:05:c8:a0:0e:ea:50:f1:
a7:e8:c8:dd:bb:07:f6:aa:c3:1a:64:e2:e8:c0:e4:20:9e:da:
9a:a0:27:60:31:41:74:11:91:a3:d1:bb:41:3d:a1:13:b2:53:
ef:12:23:6a:b5:a4:23:5c:1c:5f:33:6c:34:03:eb:e9:e1:ba:
d0:47:31:33:0f:49:7a:6a:c5:8e:99:9f:37:f7:e2:7e:6b:55:
dd:73:7d:4b:05:f5:18:bc:3b:dc:df:e0:6d:09:9d:d3:b8:3a:
99:68:87:28:65:02:2a:86:45:93:75:6f:74:85:b1:a9:7e:e6:
4a:69:c6:ef:39:46:91:55:1e:e7:a8:cd:8f:c2:98:ae:31:3f:
a8:50:e1:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh5rtsdQDEikYG71uFdDj12MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0M2M5MDNiNGQwZTgzYmM4YjJkNDU0MzEzNmU5Y2Q1ZjM5
ODY0ZjUwHhcNMjUwODA1MTAwMjM5WhcNMjUwODA2MTAwMjM5WjAzMTEwLwYDVQQD
EyhlZDNhZjdmNGExZmNhZjdmNjE2ODNhMGM0MGEzNjkwMmMxOTQyYTA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0iMYEavgWXk778JcGU7Y/i9CkEG3
LoUf+msDqp6gRmi2w0KsTLk9oLBPK3P6xuoy2NzUb8Ip4HAlmZCY61qpwAdho7C5
DNwEzWDmcVujMJ1DURZdIfrq0LsAvkE0s0CQVorwwOhtAVkuiNIiaoVuZ4CzqqKm
iRiwdE95fr7d5FqoI2J6qz+0V7vvbxYqae3KalcYnVrDvf5p9jQepdZzl4bSXSaJ
BKi4u6NoKcAqx1GAZZLryHt9CDrt78vyIpC9p+UIBsDrl2GSfLqtgXTs9d1LkOol
4DUFptyNKIU0TFP7rbGgSYeycsEQdehtvbjTzgljffZwPdJ3xkkK94Z5lwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO069/Sh/K9/YWg6DECjaQLBlCoHMB8GA1UdIwQY
MBaAFJQ8kDtNDoO8iy1FQxNunNXzmGT1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbER5UU8wME9nN3lMTFVWREUyNmMxZk9ZWlBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS81MDhhMjYtZTE5OS00MWI5LTllMTkt
Zjk4Yzc1ZGVhMjkyLzEvbER5UU8wME9nN3lMTFVWREUyNmMxZk9ZWlBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS81MDhhMjYtZTE5OS00MWI5LTllMTktZjk4Yzc1ZGVhMjky
LzEvbER5UU8wME9nN3lMTFVWREUyNmMxZk9ZWlBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcM0iCXjd
+GzlAKhJ49AYFEW6WmTCfu80HS4whIphHpOuvL+za9I7YYDDYl1I7T02SoRaHz6G
Meb6fLiAhsT88lF5orbdUDETmd5Up40EI4oa0bvbVFnrlN8RQh6/+BVZBzcto6ZW
Yz7WDnxsHxhl7IR/nF/g+T0FyKAO6lDxp+jI3bsH9qrDGmTi6MDkIJ7amqAnYDFB
dBGRo9G7QT2hE7JT7xIjarWkI1wcXzNsNAPr6eG60EcxMw9JemrFjpmfN/fifmtV
3XN9SwX1GLw73N/gbQmd07g6mWiHKGUCKoZFk3VvdIWxqX7mSmnG7zlGkVUe56jN
j8KYrjE/qFDhSQ==
-----END CERTIFICATE-----
Generated at Tue Aug 5 20:08:57 2025 by rpki-client