Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
File: l8AN4AfUqkpAMdR2ELObd0kIv0k.mft (raw, json)
Hash identifier: slXcUTSFTVK5szw6Dqovc5SlCdMrGocxqlBvfA4tbgU=
Subject key identifier: 1B:F1:31:55:9E:88:01:E3:DD:7D:98:3E:E3:72:22:0B:9F:C3:92:E7
Authority key identifier: 97:C0:0D:E0:07:D4:AA:4A:40:31:D4:76:10:B3:9B:77:49:08:BF:49
Certificate issuer: /CN=97c00de007d4aa4a4031d47610b39b774908bf49
Certificate serial: 01976961717F7072CA45E60E05B96B1C8BBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
Manifest number: 0172
Signing time: Fri 13 Jun 2025 13:01:23 +0000
Manifest this update: Fri 13 Jun 2025 13:01:23 +0000
Manifest next update: Sat 14 Jun 2025 13:01:23 +0000
Files and hashes: 1: 6v3xaZ7YrvMvQdKxxjWwKZ-HZN4.roa (hash: hWUPq5N6t+RwJdEvOikw63sUGiZaD6rAh+UZM/+TLZM=)
2: l8AN4AfUqkpAMdR2ELObd0kIv0k.crl (hash: W0NDV9HvDkf8gu0kBh6a/CcfIhmPp5zqVkBdkXa383o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:71:7f:70:72:ca:45:e6:0e:05:b9:6b:1c:8b:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97c00de007d4aa4a4031d47610b39b774908bf49
Validity
Not Before: Jun 13 13:01:23 2025 GMT
Not After : Jun 14 13:01:23 2025 GMT
Subject: CN=1bf131559e8801e3dd7d983ee372220b9fc392e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9b:5e:e9:63:b6:a3:39:be:14:c4:50:1c:92:
6c:6f:2c:49:5f:d7:70:24:2c:3a:c5:49:b2:b1:9d:
8a:a5:d5:b7:f6:b0:4a:25:ab:3a:10:c7:1e:ba:84:
0d:93:46:af:c3:ea:b2:85:a1:ae:5e:0d:9a:70:10:
db:7e:5c:c4:a8:91:8c:7a:57:b6:ed:f1:91:5f:43:
94:dd:14:e7:0e:04:c5:47:10:21:b4:30:33:74:04:
23:0f:1a:64:92:3d:8c:5f:ac:ee:b0:49:59:63:89:
d5:97:b9:a8:a9:c5:9f:ac:5b:e0:55:e7:12:d9:49:
69:2f:71:af:8d:68:d6:3d:c8:bf:c0:c3:3e:8b:4e:
3f:9e:c3:3a:59:83:fe:eb:31:b1:f5:07:a0:34:95:
d4:ba:4f:d6:9b:12:cf:b2:e7:8c:41:e0:c9:93:20:
1f:ae:db:56:e7:31:f3:71:55:d2:dd:8e:7e:5d:2f:
cd:21:56:bb:c6:b1:29:c0:9c:4f:91:df:71:ab:3a:
27:3c:70:53:be:c5:76:f1:be:4a:46:b9:c5:3c:b0:
87:d6:1c:38:f7:fd:c5:fd:ef:bb:21:48:44:74:40:
52:22:79:9c:a9:72:8a:fc:0d:d9:d3:52:8b:4c:49:
b3:5a:6e:44:d7:b7:fe:61:f5:fe:c0:3d:bc:3a:0d:
69:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F1:31:55:9E:88:01:E3:DD:7D:98:3E:E3:72:22:0B:9F:C3:92:E7
X509v3 Authority Key Identifier:
keyid:97:C0:0D:E0:07:D4:AA:4A:40:31:D4:76:10:B3:9B:77:49:08:BF:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:e8:a8:65:be:0f:77:3d:d1:15:8c:5b:7a:c0:6a:fc:aa:db:
8d:45:bd:fd:16:c0:4a:f7:53:d3:c2:93:31:ce:81:c8:50:b2:
4a:b8:5f:26:48:e0:51:60:ae:d9:10:30:d5:9e:9a:fd:8c:71:
ec:37:b5:51:3d:82:c2:d4:b3:02:bb:2c:da:ce:2c:70:92:30:
cb:9e:ab:50:e7:d0:99:e5:ce:78:f1:74:d1:6a:60:fd:59:9e:
0e:57:92:ca:a5:ec:5f:5c:98:0d:d2:94:42:70:02:82:1f:67:
89:66:42:72:16:23:97:12:12:32:b2:37:ca:71:00:75:8a:af:
0c:48:db:67:02:55:83:23:5f:66:d1:7e:a8:ab:48:88:26:94:
20:c1:e3:e4:a3:0a:a3:70:07:e3:f3:c1:3f:03:89:ad:6b:c0:
2b:f8:9f:82:70:09:9c:dc:ae:8d:ac:f0:c8:fe:b8:98:1b:c0:
d7:82:3b:17:ca:19:ae:0e:4a:24:d2:aa:f1:57:84:ca:7d:55:
90:4b:9a:f2:56:32:20:54:66:b2:e4:32:04:2d:7c:17:ef:e6:
70:75:e2:e9:77:59:71:4f:87:fd:f9:04:92:98:4d:e4:0e:03:
0f:75:4d:51:a9:2c:88:7e:b6:43:53:83:59:66:4c:b1:4f:26:
a1:91:20:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpYXF/cHLKReYOBblrHIu+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3YzAwZGUwMDdkNGFhNGE0MDMxZDQ3NjEwYjM5Yjc3NDkw
OGJmNDkwHhcNMjUwNjEzMTMwMTIzWhcNMjUwNjE0MTMwMTIzWjAzMTEwLwYDVQQD
EygxYmYxMzE1NTllODgwMWUzZGQ3ZDk4M2VlMzcyMjIwYjlmYzM5MmU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5te6WO2ozm+FMRQHJJsbyxJX9dw
JCw6xUmysZ2KpdW39rBKJas6EMceuoQNk0avw+qyhaGuXg2acBDbflzEqJGMele2
7fGRX0OU3RTnDgTFRxAhtDAzdAQjDxpkkj2MX6zusElZY4nVl7moqcWfrFvgVecS
2UlpL3GvjWjWPci/wMM+i04/nsM6WYP+6zGx9QegNJXUuk/WmxLPsueMQeDJkyAf
rttW5zHzcVXS3Y5+XS/NIVa7xrEpwJxPkd9xqzonPHBTvsV28b5KRrnFPLCH1hw4
9/3F/e+7IUhEdEBSInmcqXKK/A3Z01KLTEmzWm5E17f+YfX+wD28Og1pkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBvxMVWeiAHj3X2YPuNyIgufw5LnMB8GA1UdIwQY
MBaAFJfADeAH1KpKQDHUdhCzm3dJCL9JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDhBTjRBZlVxa3BBTWRSMkVMT2JkMGtJdjBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8wMDc3YzUtZjBiZS00NjNmLWFiNzUt
OGMzZGNjNDU5MDI2LzEvbDhBTjRBZlVxa3BBTWRSMkVMT2JkMGtJdjBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC8wMDc3YzUtZjBiZS00NjNmLWFiNzUtOGMzZGNjNDU5MDI2
LzEvbDhBTjRBZlVxa3BBTWRSMkVMT2JkMGtJdjBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGOioZb4P
dz3RFYxbesBq/KrbjUW9/RbASvdT08KTMc6ByFCySrhfJkjgUWCu2RAw1Z6a/Yxx
7De1UT2CwtSzArss2s4scJIwy56rUOfQmeXOePF00Wpg/VmeDleSyqXsX1yYDdKU
QnACgh9niWZCchYjlxISMrI3ynEAdYqvDEjbZwJVgyNfZtF+qKtIiCaUIMHj5KMK
o3AH4/PBPwOJrWvAK/ifgnAJnNyujazwyP64mBvA14I7F8oZrg5KJNKq8VeEyn1V
kEua8lYyIFRmsuQyBC18F+/mcHXi6XdZcU+H/fkEkphN5A4DD3VNUaksiH62Q1OD
WWZMsU8moZEgSw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:20:46 2025 by rpki-client