Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/bb5912-17c7-4607-9472-e2152edf9f9c/1/L8tesBINBwkLEmJWxFo1KC1awKw.mft
File: L8tesBINBwkLEmJWxFo1KC1awKw.mft (raw, json)
Hash identifier: wS3KgyU4enVvUtd6X6zPcHDOKa+wArl3ZILljYVFz30=
Subject key identifier: CC:40:97:0C:6B:82:2F:34:BA:5D:7C:1B:D1:94:07:1A:44:E1:5C:CC
Authority key identifier: 2F:CB:5E:B0:12:0D:07:09:0B:12:62:56:C4:5A:35:28:2D:5A:C0:AC
Certificate issuer: /CN=2fcb5eb0120d07090b126256c45a35282d5ac0ac
Certificate serial: 01976D064BC4E16EF61438E3EC061E6173E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8tesBINBwkLEmJWxFo1KC1awKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/bb5912-17c7-4607-9472-e2152edf9f9c/1/L8tesBINBwkLEmJWxFo1KC1awKw.mft
Manifest number: 43
Signing time: Sat 14 Jun 2025 06:00:18 +0000
Manifest this update: Sat 14 Jun 2025 06:00:18 +0000
Manifest next update: Sun 15 Jun 2025 06:00:18 +0000
Files and hashes: 1: L8tesBINBwkLEmJWxFo1KC1awKw.crl (hash: dCIJtpL0eVBdhEqpLNvGM6rjRuDlNB1WnAm+/86EEGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/bb5912-17c7-4607-9472-e2152edf9f9c/1/L8tesBINBwkLEmJWxFo1KC1awKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/bb5912-17c7-4607-9472-e2152edf9f9c/1/L8tesBINBwkLEmJWxFo1KC1awKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/L8tesBINBwkLEmJWxFo1KC1awKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:4b:c4:e1:6e:f6:14:38:e3:ec:06:1e:61:73:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcb5eb0120d07090b126256c45a35282d5ac0ac
Validity
Not Before: Jun 14 06:00:18 2025 GMT
Not After : Jun 15 06:00:18 2025 GMT
Subject: CN=cc40970c6b822f34ba5d7c1bd194071a44e15ccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b1:0a:fd:da:02:9c:d5:7f:81:dd:4a:71:eb:
52:91:e4:4d:9a:7a:63:fe:34:57:0b:73:df:d5:a8:
36:df:40:e2:e7:91:09:3c:96:fd:b9:12:ac:0c:0b:
fb:73:0b:37:d1:f2:8b:c7:e2:73:03:0f:ee:3a:14:
19:7b:d5:e4:cd:fa:18:b3:f9:98:f2:99:5c:0e:90:
9f:fc:cf:eb:0a:f5:13:13:99:ff:04:c9:14:83:72:
a7:40:df:c2:07:dd:ae:a2:5f:aa:e4:8f:19:eb:35:
fa:05:74:52:f1:2c:48:a6:70:be:b4:61:72:fc:8c:
d4:96:3e:f2:12:62:90:16:d3:fe:d1:68:1e:39:6f:
88:1d:73:46:55:34:82:04:5d:28:0d:e7:3e:35:3d:
42:e3:69:ec:39:08:46:e5:8a:20:64:ff:98:f3:c8:
8d:7e:6b:08:85:68:2e:ac:66:4b:87:0c:05:fb:5f:
4e:d0:30:6a:c7:bf:ec:fe:5c:4a:67:ff:85:c7:57:
70:a8:76:cc:59:9a:8e:6d:e7:eb:d1:e9:85:9d:e9:
19:a6:b2:d1:3d:0e:3f:fa:79:7a:6c:9e:04:20:a4:
15:82:0e:82:5b:ea:b1:75:ea:8f:04:27:b2:7e:fc:
ac:fd:e5:bd:72:c7:0b:c8:d8:2d:fd:99:dd:40:39:
3a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:40:97:0C:6B:82:2F:34:BA:5D:7C:1B:D1:94:07:1A:44:E1:5C:CC
X509v3 Authority Key Identifier:
keyid:2F:CB:5E:B0:12:0D:07:09:0B:12:62:56:C4:5A:35:28:2D:5A:C0:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8tesBINBwkLEmJWxFo1KC1awKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/bb5912-17c7-4607-9472-e2152edf9f9c/1/L8tesBINBwkLEmJWxFo1KC1awKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/bb5912-17c7-4607-9472-e2152edf9f9c/1/L8tesBINBwkLEmJWxFo1KC1awKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:e9:54:71:18:12:21:c9:fe:13:7a:94:4b:76:11:8f:94:32:
a8:14:df:c5:32:e2:3f:bd:cc:d7:60:f6:ae:7a:f1:76:4f:29:
41:9a:b2:8f:4c:2b:77:af:56:94:03:59:4a:72:44:4b:1d:da:
7f:11:f4:98:09:ef:de:24:3c:33:83:d2:ab:66:ed:d2:14:65:
31:f1:b0:e3:59:79:fa:7d:76:8b:9f:35:fb:eb:4b:39:63:bd:
9f:89:2d:11:c2:fc:ba:99:0b:dd:ee:55:c1:b4:56:04:26:c2:
b3:0d:8c:1d:20:82:03:4d:32:7f:8c:c0:da:1a:49:3f:8d:93:
c5:d5:c9:b6:b5:68:f1:48:da:0b:d8:ef:1d:a6:04:1b:bb:dc:
63:99:8e:2c:97:8a:83:cf:64:3a:92:a9:ee:a8:48:93:e0:3d:
d1:ff:f2:2a:1b:7e:44:8c:00:d1:09:5f:87:51:15:5d:4b:4e:
e3:4d:ba:2e:37:d8:60:e9:9d:bd:1c:45:7a:97:5e:91:8f:fc:
d2:5f:89:16:19:da:16:06:e9:dd:29:3c:e1:15:9f:1a:4f:b5:
5c:b5:01:b8:41:01:11:ea:2e:fc:16:ce:e9:9c:ba:68:99:1f:
84:91:d8:39:62:f7:70:b1:23:1e:fe:b7:9b:b6:f6:99:44:be:
bc:b9:f0:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtBkvE4W72FDjj7AYeYXPgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmY2I1ZWIwMTIwZDA3MDkwYjEyNjI1NmM0NWEzNTI4MmQ1
YWMwYWMwHhcNMjUwNjE0MDYwMDE4WhcNMjUwNjE1MDYwMDE4WjAzMTEwLwYDVQQD
EyhjYzQwOTcwYzZiODIyZjM0YmE1ZDdjMWJkMTk0MDcxYTQ0ZTE1Y2NjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrEK/doCnNV/gd1KcetSkeRNmnpj
/jRXC3Pf1ag230Di55EJPJb9uRKsDAv7cws30fKLx+JzAw/uOhQZe9XkzfoYs/mY
8plcDpCf/M/rCvUTE5n/BMkUg3KnQN/CB92uol+q5I8Z6zX6BXRS8SxIpnC+tGFy
/IzUlj7yEmKQFtP+0WgeOW+IHXNGVTSCBF0oDec+NT1C42nsOQhG5YogZP+Y88iN
fmsIhWgurGZLhwwF+19O0DBqx7/s/lxKZ/+Fx1dwqHbMWZqObefr0emFnekZprLR
PQ4/+nl6bJ4EIKQVgg6CW+qxdeqPBCeyfvys/eW9cscLyNgt/ZndQDk6LQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMxAlwxrgi80ul18G9GUBxpE4VzMMB8GA1UdIwQY
MBaAFC/LXrASDQcJCxJiVsRaNSgtWsCsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDh0ZXNCSU5Cd2tMRW1KV3hGbzFLQzFhd0t3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9iYjU5MTItMTdjNy00NjA3LTk0NzIt
ZTIxNTJlZGY5ZjljLzEvTDh0ZXNCSU5Cd2tMRW1KV3hGbzFLQzFhd0t3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9iYjU5MTItMTdjNy00NjA3LTk0NzItZTIxNTJlZGY5Zjlj
LzEvTDh0ZXNCSU5Cd2tMRW1KV3hGbzFLQzFhd0t3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR+lUcRgS
Icn+E3qUS3YRj5QyqBTfxTLiP73M12D2rnrxdk8pQZqyj0wrd69WlANZSnJESx3a
fxH0mAnv3iQ8M4PSq2bt0hRlMfGw41l5+n12i581++tLOWO9n4ktEcL8upkL3e5V
wbRWBCbCsw2MHSCCA00yf4zA2hpJP42TxdXJtrVo8UjaC9jvHaYEG7vcY5mOLJeK
g89kOpKp7qhIk+A90f/yKht+RIwA0Qlfh1EVXUtO4026LjfYYOmdvRxFepdekY/8
0l+JFhnaFgbp3Sk84RWfGk+1XLUBuEEBEeou/BbO6Zy6aJkfhJHYOWL3cLEjHv63
m7b2mUS+vLnwzA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:45:23 2025 by rpki-client