Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
File: lywzrtjvsmnTdEgT0oxTYJLnzzg.mft (raw, json)
Hash identifier: aGzzIXueXi1WX/9wAkoBUURCJbzMUBObPwAjhgdOaNM=
Subject key identifier: B2:DD:97:45:44:9F:4E:12:B1:94:C2:97:14:F8:EA:99:1F:88:9D:9B
Authority key identifier: 97:2C:33:AE:D8:EF:B2:69:D3:74:48:13:D2:8C:53:60:92:E7:CF:38
Certificate issuer: /CN=972c33aed8efb269d3744813d28c536092e7cf38
Certificate serial: 019873E37D64035B473B2706BC7F982B4CB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lywzrtjvsmnTdEgT0oxTYJLnzzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
Manifest number: 0BE8
Signing time: Mon 04 Aug 2025 07:02:25 +0000
Manifest this update: Mon 04 Aug 2025 07:02:25 +0000
Manifest next update: Tue 05 Aug 2025 07:02:25 +0000
Files and hashes: 1: ABgvtVRWI6brZz3FziMb4rv0_78.roa (hash: xcpeYC06fvzRoHxarxnxi+ZpU9v7tXYglNgTbxJJFa4=)
2: lywzrtjvsmnTdEgT0oxTYJLnzzg.crl (hash: Iyuo47KmjXaJBS5ySumFhjpadYMljam8OB2z0FOVZiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lywzrtjvsmnTdEgT0oxTYJLnzzg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:7d:64:03:5b:47:3b:27:06:bc:7f:98:2b:4c:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=972c33aed8efb269d3744813d28c536092e7cf38
Validity
Not Before: Aug 4 07:02:25 2025 GMT
Not After : Aug 5 07:02:25 2025 GMT
Subject: CN=b2dd9745449f4e12b194c29714f8ea991f889d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c9:69:10:84:9b:9a:eb:aa:41:22:17:34:6f:
42:e4:ef:41:c8:f2:0c:42:ba:28:1b:4f:76:11:fc:
e2:46:c5:8a:85:49:3d:b8:82:96:4a:2b:d3:88:23:
ff:06:b8:a1:1d:9e:1b:10:48:24:dc:49:cc:2b:74:
46:3b:c9:c4:b9:4f:61:1b:5b:d3:a7:c1:2f:c8:1f:
dd:aa:37:df:45:d8:96:ce:3c:17:5a:4e:eb:83:9c:
f5:99:2c:8e:ee:19:4d:f3:c2:49:87:1c:b7:a0:bb:
27:9a:21:ba:ca:a1:4b:c9:2e:3f:5d:4c:90:d9:23:
3d:33:57:7c:f8:bb:2c:44:4a:bf:88:e6:f9:54:29:
38:10:db:4c:56:dd:4c:65:84:90:41:5f:c0:fc:37:
8f:a3:25:6a:0f:7a:92:b8:06:43:4a:7a:39:0b:9e:
da:14:11:20:79:2b:5a:d8:92:99:ef:54:2d:94:24:
c9:c3:6d:01:c8:ab:fe:7c:c0:d3:82:5a:c7:1b:1f:
e1:70:d3:70:50:e2:1c:9f:42:93:83:8d:ec:78:4b:
c3:ff:74:41:2f:33:c2:34:c3:98:c9:0e:29:1b:cc:
56:6b:86:38:19:7f:32:95:ae:af:72:35:3c:da:4e:
9c:08:7f:ce:10:c0:a0:f5:01:82:29:52:da:ed:65:
ae:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DD:97:45:44:9F:4E:12:B1:94:C2:97:14:F8:EA:99:1F:88:9D:9B
X509v3 Authority Key Identifier:
keyid:97:2C:33:AE:D8:EF:B2:69:D3:74:48:13:D2:8C:53:60:92:E7:CF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lywzrtjvsmnTdEgT0oxTYJLnzzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:f3:d0:7d:38:5c:14:c1:53:d1:c7:8a:c1:e8:fc:ab:02:85:
9b:0d:9c:ff:12:f9:ad:09:b7:63:c9:02:93:98:d9:fb:f6:c2:
8c:7a:cd:e0:d8:45:3f:28:5a:bd:e4:84:8b:ab:66:dd:bd:3d:
12:21:f8:4f:51:34:65:df:21:fb:24:2b:f8:11:6e:3f:fb:58:
ce:bd:d7:0d:81:60:51:e9:fa:95:9c:c4:ef:fd:17:e0:c2:77:
af:e9:ef:b1:8a:51:91:de:9d:69:04:00:9d:91:df:15:b0:b0:
3c:df:ed:1a:74:b3:56:1e:4a:0a:bb:5b:76:42:fa:c1:8f:87:
07:cf:51:d5:b3:d3:e4:f8:3f:32:03:e3:18:bb:e1:e1:19:93:
cc:46:8e:ec:25:e4:d2:39:b6:90:e7:f2:3f:1c:22:24:b6:55:
70:3d:a4:7d:87:5f:ab:c8:05:c7:17:00:9f:ab:00:ab:76:84:
43:5b:b4:b7:19:50:1d:ac:7c:1e:91:0c:3d:55:f2:58:16:10:
4f:14:75:1c:b7:2c:d3:4b:42:2e:6f:c8:95:74:6a:a3:43:17:
6f:09:5d:2a:2b:ed:44:36:9e:67:e4:13:f7:e3:ea:86:95:37:
3d:e1:f3:e6:21:40:8c:ee:f2:0b:3d:5a:f4:70:8f:46:5a:1e:
1f:5a:19:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz431kA1tHOycGvH+YK0y1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3MmMzM2FlZDhlZmIyNjlkMzc0NDgxM2QyOGM1MzYwOTJl
N2NmMzgwHhcNMjUwODA0MDcwMjI1WhcNMjUwODA1MDcwMjI1WjAzMTEwLwYDVQQD
EyhiMmRkOTc0NTQ0OWY0ZTEyYjE5NGMyOTcxNGY4ZWE5OTFmODg5ZDliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkMlpEISbmuuqQSIXNG9C5O9ByPIM
QrooG092EfziRsWKhUk9uIKWSivTiCP/BrihHZ4bEEgk3EnMK3RGO8nEuU9hG1vT
p8EvyB/dqjffRdiWzjwXWk7rg5z1mSyO7hlN88JJhxy3oLsnmiG6yqFLyS4/XUyQ
2SM9M1d8+LssREq/iOb5VCk4ENtMVt1MZYSQQV/A/DePoyVqD3qSuAZDSno5C57a
FBEgeSta2JKZ71QtlCTJw20ByKv+fMDTglrHGx/hcNNwUOIcn0KTg43seEvD/3RB
LzPCNMOYyQ4pG8xWa4Y4GX8yla6vcjU82k6cCH/OEMCg9QGCKVLa7WWu4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLLdl0VEn04SsZTClxT46pkfiJ2bMB8GA1UdIwQY
MBaAFJcsM67Y77Jp03RIE9KMU2CS5884MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHl3enJ0anZzbW5UZEVnVDBveFRZSkxuenpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8zMWZhOTktYzg1My00ZDAyLWI1M2Qt
ZDI1MGU0NWIxNjIwLzEvbHl3enJ0anZzbW5UZEVnVDBveFRZSkxuenpnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy8zMWZhOTktYzg1My00ZDAyLWI1M2QtZDI1MGU0NWIxNjIw
LzEvbHl3enJ0anZzbW5UZEVnVDBveFRZSkxuenpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK/PQfThc
FMFT0ceKwej8qwKFmw2c/xL5rQm3Y8kCk5jZ+/bCjHrN4NhFPyhaveSEi6tm3b09
EiH4T1E0Zd8h+yQr+BFuP/tYzr3XDYFgUen6lZzE7/0X4MJ3r+nvsYpRkd6daQQA
nZHfFbCwPN/tGnSzVh5KCrtbdkL6wY+HB89R1bPT5Pg/MgPjGLvh4RmTzEaO7CXk
0jm2kOfyPxwiJLZVcD2kfYdfq8gFxxcAn6sAq3aEQ1u0txlQHax8HpEMPVXyWBYQ
TxR1HLcs00tCLm/IlXRqo0MXbwldKivtRDaeZ+QT9+PqhpU3PeHz5iFAjO7yCz1a
9HCPRloeH1oZRA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:17:24 2025 by rpki-client