Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
File: d8LYpgGX_HveZPw_rRDrLaT-h3k.mft (raw, json)
Hash identifier: SKwENL2DigucWt+QdLG67Uwa2DH4tAiXy3nvp6N6apc=
Subject key identifier: 9A:0A:59:09:14:DD:1A:5D:06:54:42:C1:78:7E:3E:68:8E:FC:BB:55
Authority key identifier: 77:C2:D8:A6:01:97:FC:7B:DE:64:FC:3F:AD:10:EB:2D:A4:FE:87:79
Certificate issuer: /CN=77c2d8a60197fc7bde64fc3fad10eb2da4fe8779
Certificate serial: 01988E0F8CA9AC8595092668E8FD6136E56A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
Manifest number: 067A
Signing time: Sat 09 Aug 2025 09:00:40 +0000
Manifest this update: Sat 09 Aug 2025 09:00:40 +0000
Manifest next update: Sun 10 Aug 2025 09:00:40 +0000
Files and hashes: 1: Fio9S4kkM_6MY_PyvY4nnlbZSX0.roa (hash: MLkm/zb7dfsD7k0W1D+pAVDUongRrbvCkAFDtBq/FSI=)
2: d8LYpgGX_HveZPw_rRDrLaT-h3k.crl (hash: m1s7aaWN1Vkh63Ce/Pb8CJ5zNizwp3BndRsCZdiAa/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:0f:8c:a9:ac:85:95:09:26:68:e8:fd:61:36:e5:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c2d8a60197fc7bde64fc3fad10eb2da4fe8779
Validity
Not Before: Aug 9 09:00:40 2025 GMT
Not After : Aug 10 09:00:40 2025 GMT
Subject: CN=9a0a590914dd1a5d065442c1787e3e688efcbb55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:10:db:6d:60:da:97:d1:af:cc:7e:c6:ad:3b:
7f:dc:34:5a:74:24:73:0e:75:be:0b:e5:58:ed:2b:
31:df:72:f8:f1:a7:75:86:0f:6e:26:f0:92:ae:d3:
1e:dd:91:a3:de:01:90:9e:11:d7:e0:85:70:1a:41:
d1:05:16:07:83:5b:0b:43:51:ad:b8:4a:81:de:f2:
8e:c9:82:36:8c:02:ff:09:5a:12:ec:36:5b:87:21:
86:d6:20:31:91:d8:98:d0:d0:80:85:ff:99:0e:17:
d3:52:b9:fe:75:4b:47:93:15:d4:15:a5:aa:ab:1e:
b5:9c:7d:81:b6:97:ee:e7:44:86:ba:ae:7c:81:da:
7d:d4:be:3c:c6:cb:59:e3:3f:91:6c:51:ff:04:24:
87:a2:d7:df:7d:cf:60:8d:1c:a5:24:57:21:12:0d:
df:42:76:73:16:c6:32:95:15:2b:eb:07:ca:c7:c6:
a7:25:54:0d:89:76:a5:c2:a0:cb:93:b7:b7:c8:ab:
3a:8d:a2:d4:f7:fb:8a:5f:b6:6a:94:95:6e:4c:6c:
68:a6:a0:ab:84:ad:fe:73:a8:4a:03:ab:05:ba:8a:
ec:17:bf:9a:da:3a:2f:ed:af:cb:f0:32:e9:e8:e5:
33:16:b5:ca:6f:43:aa:03:71:b3:42:ef:0b:42:fc:
10:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:0A:59:09:14:DD:1A:5D:06:54:42:C1:78:7E:3E:68:8E:FC:BB:55
X509v3 Authority Key Identifier:
keyid:77:C2:D8:A6:01:97:FC:7B:DE:64:FC:3F:AD:10:EB:2D:A4:FE:87:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:8d:cd:43:7e:86:48:60:91:98:ee:2b:0a:e8:ed:77:e3:bf:
c1:39:2b:f0:fc:57:84:8b:1d:28:3c:b2:02:3a:19:e2:a5:4e:
3d:ef:30:01:e3:2e:b4:bf:df:c2:76:de:23:f4:ad:f3:45:6b:
51:6a:a2:12:a5:64:9b:20:2b:6c:4a:b6:68:b4:53:42:05:ff:
fe:65:55:df:90:88:32:59:e1:66:97:45:56:c0:f8:9f:58:c8:
fd:45:13:e1:75:eb:49:c4:c7:96:21:d4:2f:fb:35:79:ef:48:
ac:8d:da:a5:18:e1:14:77:b0:20:71:36:a5:a6:1d:6b:ca:7c:
5c:b1:6b:9f:56:73:78:dc:b6:97:61:52:59:76:68:d6:98:1e:
b7:a6:f9:2a:13:0b:cd:1c:b0:3f:75:d1:80:3a:74:55:d3:2a:
6e:9a:2c:4e:99:5d:d0:86:8b:82:ab:3d:20:e4:5b:b1:63:13:
60:3e:63:d6:bf:d3:bf:92:18:c8:1a:e6:42:bc:ec:68:1b:bb:
63:9f:82:88:95:89:31:ff:52:1e:2b:b6:55:36:24:cd:0f:9c:
16:56:db:65:b2:77:94:d0:5b:bd:75:50:3b:15:3a:08:8f:6c:
4e:28:05:dd:bc:bc:b7:73:54:7f:4f:48:d5:90:83:ef:93:a0:
07:69:64:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiOD4yprIWVCSZo6P1hNuVqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YzJkOGE2MDE5N2ZjN2JkZTY0ZmMzZmFkMTBlYjJkYTRm
ZTg3NzkwHhcNMjUwODA5MDkwMDQwWhcNMjUwODEwMDkwMDQwWjAzMTEwLwYDVQQD
Eyg5YTBhNTkwOTE0ZGQxYTVkMDY1NDQyYzE3ODdlM2U2ODhlZmNiYjU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxDbbWDal9GvzH7GrTt/3DRadCRz
DnW+C+VY7Ssx33L48ad1hg9uJvCSrtMe3ZGj3gGQnhHX4IVwGkHRBRYHg1sLQ1Gt
uEqB3vKOyYI2jAL/CVoS7DZbhyGG1iAxkdiY0NCAhf+ZDhfTUrn+dUtHkxXUFaWq
qx61nH2Btpfu50SGuq58gdp91L48xstZ4z+RbFH/BCSHotfffc9gjRylJFchEg3f
QnZzFsYylRUr6wfKx8anJVQNiXalwqDLk7e3yKs6jaLU9/uKX7ZqlJVuTGxopqCr
hK3+c6hKA6sFuorsF7+a2jov7a/L8DLp6OUzFrXKb0OqA3GzQu8LQvwQlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJoKWQkU3RpdBlRCwXh+PmiO/LtVMB8GA1UdIwQY
MBaAFHfC2KYBl/x73mT8P60Q6y2k/od5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDhMWXBnR1hfSHZlWlB3X3JSRHJMYVQtaDNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni83ZmIyNTQtNDE3YS00MTgwLWE0ZjAt
OGYyYWY5YjUxYzViLzEvZDhMWXBnR1hfSHZlWlB3X3JSRHJMYVQtaDNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni83ZmIyNTQtNDE3YS00MTgwLWE0ZjAtOGYyYWY5YjUxYzVi
LzEvZDhMWXBnR1hfSHZlWlB3X3JSRHJMYVQtaDNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJI3NQ36G
SGCRmO4rCujtd+O/wTkr8PxXhIsdKDyyAjoZ4qVOPe8wAeMutL/fwnbeI/St80Vr
UWqiEqVkmyArbEq2aLRTQgX//mVV35CIMlnhZpdFVsD4n1jI/UUT4XXrScTHliHU
L/s1ee9IrI3apRjhFHewIHE2paYda8p8XLFrn1ZzeNy2l2FSWXZo1pget6b5KhML
zRywP3XRgDp0VdMqbposTpld0IaLgqs9IORbsWMTYD5j1r/Tv5IYyBrmQrzsaBu7
Y5+CiJWJMf9SHiu2VTYkzQ+cFlbbZbJ3lNBbvXVQOxU6CI9sTigF3by8t3NUf09I
1ZCD75OgB2lkgQ==
-----END CERTIFICATE-----
Generated at Sat Aug 9 14:34:13 2025 by rpki-client