Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
File: OneLgrqpeIoayvLsNothmB71HfI.mft (raw, json)
Hash identifier: 3LaWuIzAb4H47M6bqQQUZzR+prUssSYPgrHFKvgVhf8=
Subject key identifier: C6:25:93:92:CB:00:99:FF:DB:50:23:6B:ED:0B:83:D1:C0:61:5A:98
Authority key identifier: 3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
Certificate issuer: /CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Certificate serial: 01987298D7F31A9FB8A02D6F3293218F5E54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
Manifest number: 161C
Signing time: Mon 04 Aug 2025 01:01:16 +0000
Manifest this update: Mon 04 Aug 2025 01:01:16 +0000
Manifest next update: Tue 05 Aug 2025 01:01:16 +0000
Files and hashes: 1: OneLgrqpeIoayvLsNothmB71HfI.crl (hash: G2+agPzvJXd2Jpe23JYkXz8qA+gQEQBdeGK2qWXcT7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:d7:f3:1a:9f:b8:a0:2d:6f:32:93:21:8f:5e:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Validity
Not Before: Aug 4 01:01:16 2025 GMT
Not After : Aug 5 01:01:16 2025 GMT
Subject: CN=c6259392cb0099ffdb50236bed0b83d1c0615a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e0:62:dc:b1:dc:b2:01:ba:a3:f5:36:2d:41:
65:23:71:ec:f9:ff:78:d2:64:6f:79:df:b3:c0:07:
46:77:1f:25:29:3c:d0:42:3c:67:97:19:37:30:5d:
cb:28:cc:91:72:df:01:3d:68:2c:40:35:1c:eb:0b:
4c:61:96:7a:34:1b:79:c7:a5:7d:f3:90:e5:09:d2:
e8:bd:97:c3:75:af:50:16:01:32:d3:d5:68:e4:94:
54:43:e7:9d:f6:ef:62:5f:96:71:19:43:09:6f:c4:
94:f6:38:71:7e:7d:9e:3e:22:16:d0:9f:c9:f5:7b:
77:98:8a:ca:31:ac:d9:6a:70:57:4c:e2:43:cb:1b:
7a:f3:6f:07:67:6f:2f:a1:d4:4a:18:0c:bf:a8:28:
b6:01:f9:c4:08:fe:79:b1:48:1e:48:a1:55:f2:5a:
5c:b6:12:1a:f5:35:fd:bf:8d:46:3c:20:8f:a5:2c:
27:2b:ce:c6:9a:bd:7b:e8:76:49:2f:73:9c:71:36:
5d:6e:e9:c3:1c:92:15:9d:ff:ad:3e:6d:c5:cb:77:
a7:d8:87:ca:51:f0:ff:54:4c:4d:ce:6d:b0:34:0a:
75:28:96:b1:0f:f1:99:e8:18:5b:c5:00:59:ca:15:
87:a8:92:b0:8e:46:2b:2d:db:ea:ea:06:5c:95:d2:
74:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:25:93:92:CB:00:99:FF:DB:50:23:6B:ED:0B:83:D1:C0:61:5A:98
X509v3 Authority Key Identifier:
keyid:3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:64:f4:d7:6f:26:4a:da:f2:e5:0a:a7:8c:45:a5:c8:8f:ae:
6a:3a:74:2f:db:ac:23:bc:5c:3c:72:d6:c3:f9:70:64:2b:88:
f9:fe:3a:5e:4d:f7:c0:3a:06:a3:fe:5f:90:29:1e:18:99:10:
6b:82:16:b2:83:fa:71:79:42:c1:e3:20:e1:bf:3c:1a:10:29:
2f:74:b3:cb:91:d9:73:2e:28:1e:e7:05:27:e2:b7:86:da:ee:
a3:55:b8:05:12:64:03:14:78:59:6c:dc:6c:41:d7:c6:eb:bb:
e3:b0:82:b6:f7:78:b6:5a:0e:03:f1:6a:80:76:6f:b5:97:c0:
8e:70:0b:d5:17:85:6d:63:5b:2c:6b:86:34:24:21:ef:82:f4:
0c:35:88:9e:e1:17:47:44:c2:9b:11:b3:ba:0e:7a:c6:37:09:
cb:a1:37:e4:3c:87:00:e7:16:47:75:ef:79:d7:25:d1:03:c4:
53:be:aa:20:e6:a5:a1:5d:75:29:88:62:74:fa:12:ce:04:cc:
f7:e1:ad:f2:05:b7:6d:ff:d1:97:5d:d5:50:db:ae:eb:56:88:
d5:7f:f2:26:9c:b6:21:41:48:63:8d:48:1c:92:0b:1e:28:e3:
f4:08:ae:40:21:7c:ae:43:54:f1:43:7e:91:b6:15:68:05:c7:
57:d2:96:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhymNfzGp+4oC1vMpMhj15UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNzc4YjgyYmFhOTc4OGExYWNhZjJlYzM2OGI2MTk4MWVm
NTFkZjIwHhcNMjUwODA0MDEwMTE2WhcNMjUwODA1MDEwMTE2WjAzMTEwLwYDVQQD
EyhjNjI1OTM5MmNiMDA5OWZmZGI1MDIzNmJlZDBiODNkMWMwNjE1YTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi+Bi3LHcsgG6o/U2LUFlI3Hs+f94
0mRved+zwAdGdx8lKTzQQjxnlxk3MF3LKMyRct8BPWgsQDUc6wtMYZZ6NBt5x6V9
85DlCdLovZfDda9QFgEy09Vo5JRUQ+ed9u9iX5ZxGUMJb8SU9jhxfn2ePiIW0J/J
9Xt3mIrKMazZanBXTOJDyxt6828HZ28vodRKGAy/qCi2AfnECP55sUgeSKFV8lpc
thIa9TX9v41GPCCPpSwnK87Gmr176HZJL3OccTZdbunDHJIVnf+tPm3Fy3en2IfK
UfD/VExNzm2wNAp1KJaxD/GZ6BhbxQBZyhWHqJKwjkYrLdvq6gZcldJ00QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMYlk5LLAJn/21Aja+0Lg9HAYVqYMB8GA1UdIwQY
MBaAFDp3i4K6qXiKGsry7DaLYZge9R3yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT25lTGdycXBlSW9heXZMc05vdGhtQjcxSGZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC80MDRjMDQtYTdmNS00Y2RmLThlOTct
MThkMzNiZWI3YzMxLzEvT25lTGdycXBlSW9heXZMc05vdGhtQjcxSGZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC80MDRjMDQtYTdmNS00Y2RmLThlOTctMThkMzNiZWI3YzMx
LzEvT25lTGdycXBlSW9heXZMc05vdGhtQjcxSGZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGWT0128m
Stry5QqnjEWlyI+uajp0L9usI7xcPHLWw/lwZCuI+f46Xk33wDoGo/5fkCkeGJkQ
a4IWsoP6cXlCweMg4b88GhApL3Szy5HZcy4oHucFJ+K3htruo1W4BRJkAxR4WWzc
bEHXxuu747CCtvd4tloOA/FqgHZvtZfAjnAL1ReFbWNbLGuGNCQh74L0DDWInuEX
R0TCmxGzug56xjcJy6E35DyHAOcWR3Xvedcl0QPEU76qIOaloV11KYhidPoSzgTM
9+Gt8gW3bf/Rl13VUNuu61aI1X/yJpy2IUFIY41IHJILHijj9AiuQCF8rkNU8UN+
kbYVaAXHV9KWTw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:54 2025 by rpki-client