Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
File: l8AN4AfUqkpAMdR2ELObd0kIv0k.mft (raw, json)
Hash identifier: 40Jh62oX0jAYgjhpDllFEQ7HpOROzJ5+dkg92QvQwAw=
Subject key identifier: 6C:70:EE:7B:A0:F4:CB:14:13:51:ED:F6:5B:6D:35:FE:D8:F2:9F:9B
Authority key identifier: 97:C0:0D:E0:07:D4:AA:4A:40:31:D4:76:10:B3:9B:77:49:08:BF:49
Certificate issuer: /CN=97c00de007d4aa4a4031d47610b39b774908bf49
Certificate serial: 019879AE0060B79B4501E2312E4C7B8430B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
Manifest number: 01FF
Signing time: Tue 05 Aug 2025 10:01:43 +0000
Manifest this update: Tue 05 Aug 2025 10:01:43 +0000
Manifest next update: Wed 06 Aug 2025 10:01:43 +0000
Files and hashes: 1: 6v3xaZ7YrvMvQdKxxjWwKZ-HZN4.roa (hash: hWUPq5N6t+RwJdEvOikw63sUGiZaD6rAh+UZM/+TLZM=)
2: l8AN4AfUqkpAMdR2ELObd0kIv0k.crl (hash: NCYKSsjh73OOE1khe2TUGeVI0UB45pRw4+82P9kzVI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 10:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:ae:00:60:b7:9b:45:01:e2:31:2e:4c:7b:84:30:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97c00de007d4aa4a4031d47610b39b774908bf49
Validity
Not Before: Aug 5 10:01:43 2025 GMT
Not After : Aug 6 10:01:43 2025 GMT
Subject: CN=6c70ee7ba0f4cb141351edf65b6d35fed8f29f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d1:e0:ec:bc:ac:45:94:40:67:2c:38:9c:da:
d6:ab:de:2c:5d:00:06:00:5a:75:d5:6b:69:24:8c:
2a:3f:f0:10:d9:b9:5b:35:1c:45:c4:7a:32:78:cd:
2f:53:d2:70:3b:8e:36:80:8a:64:5d:d4:0e:02:9c:
0b:0b:63:98:6b:2e:1c:2f:c5:85:a6:41:16:35:0f:
9a:c4:5e:ec:a3:3c:b9:17:1a:e4:a7:5d:db:06:28:
00:4c:6e:02:02:3d:24:a0:4b:13:a3:a0:81:67:7d:
49:2a:7b:35:9e:c9:72:ac:96:96:ed:61:d9:ad:e9:
6f:3f:ce:d1:23:66:2e:a0:52:61:fc:76:78:a1:dc:
a2:93:7b:b6:03:05:9a:32:a3:f4:ac:98:e7:74:9c:
f6:0b:b4:9d:90:68:2d:0a:1a:00:20:6f:b2:ac:32:
78:48:d3:8f:c0:9e:91:c8:8b:98:24:59:cf:71:e7:
a1:e1:19:fd:23:93:ac:db:09:03:05:d2:86:0e:5e:
17:df:60:29:aa:0b:33:0d:76:ae:a3:47:1e:4f:af:
c1:00:a4:87:ad:35:77:9f:3a:59:cb:b9:aa:d5:d8:
8a:96:f2:70:e4:bf:09:ff:a3:53:4c:bb:c3:7d:96:
87:09:c6:d4:a3:64:2a:05:db:f6:b9:d2:08:91:0c:
05:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:70:EE:7B:A0:F4:CB:14:13:51:ED:F6:5B:6D:35:FE:D8:F2:9F:9B
X509v3 Authority Key Identifier:
keyid:97:C0:0D:E0:07:D4:AA:4A:40:31:D4:76:10:B3:9B:77:49:08:BF:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:f2:74:c6:82:60:c1:6c:24:34:18:00:b0:b5:7e:8a:e5:dd:
73:13:28:7b:df:20:e7:da:fb:35:0e:8d:6a:80:92:f7:e4:86:
1f:02:2f:20:fe:81:6b:8a:0f:b1:43:ef:57:3c:92:02:b0:0c:
08:e3:0d:92:92:7a:3b:5c:86:59:22:49:28:b4:65:de:e2:e3:
d7:0d:ea:27:94:ff:e2:c3:9b:68:ca:c1:31:a0:4b:4e:43:4f:
df:e2:fd:38:cd:07:d6:75:cf:49:c1:9a:65:84:ac:15:12:41:
0e:3d:bd:6b:47:4e:69:d9:cf:b7:3a:ca:70:6b:23:59:f9:0b:
f3:4b:1c:a0:20:7c:d6:28:b4:df:6d:9c:7a:9c:41:c3:1d:5c:
e3:78:f3:a1:f7:d5:25:02:25:3b:34:6a:93:57:a6:37:bc:73:
ca:a4:8f:87:02:ec:b3:1d:24:fc:a3:09:51:b9:80:57:d0:01:
d4:90:fb:23:bc:0d:72:45:de:ed:2a:eb:60:5d:d2:e1:d0:dc:
0d:8d:50:23:0b:7f:3e:53:4e:16:50:ac:69:7f:f1:ae:f4:7f:
f7:83:5f:83:4f:61:34:49:d5:de:9a:e3:2a:8f:b4:4c:71:2d:
93:a7:c6:99:b3:99:9c:1f:37:9c:f4:9f:48:29:58:12:14:b3:
97:69:c4:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:09:31 2025 by rpki-client