Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
File: 0luQuJgbWR11p-k14TBKdAdWAv0.mft (raw, json)
Hash identifier: Pnwk2B1ZQDv/APAf4byJh+DVrWM3Cr5uW4ACty8gfBM=
Subject key identifier: C4:A3:19:C3:4E:F3:E6:D4:41:77:88:BB:C6:05:1D:1A:9A:36:00:70
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 019872CFF3C8A6013D9BAE151D086A9BD948
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
Manifest number: 14F0
Signing time: Mon 04 Aug 2025 02:01:27 +0000
Manifest this update: Mon 04 Aug 2025 02:01:27 +0000
Manifest next update: Tue 05 Aug 2025 02:01:27 +0000
Files and hashes: 1: 0luQuJgbWR11p-k14TBKdAdWAv0.crl (hash: lpGiN1zYRk5y2PnWD4UfZnFgPT1tT6T+2P5yBCL3La0=)
2: n6mO0jwfMCGtBTJz4z0BBFhaaaw.roa (hash: depvn6FAlXY00NO5eAYz1KXbUInLhBp+Jz+PGCqafeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:f3:c8:a6:01:3d:9b:ae:15:1d:08:6a:9b:d9:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Aug 4 02:01:27 2025 GMT
Not After : Aug 5 02:01:27 2025 GMT
Subject: CN=c4a319c34ef3e6d4417788bbc6051d1a9a360070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:52:0d:b9:2c:a6:b1:33:56:ad:97:4c:b5:88:
a7:e8:4b:0a:f7:fd:35:38:45:26:41:3c:c2:bf:a4:
dd:04:e0:84:2e:22:1e:d1:a4:74:bc:88:a3:ae:43:
c8:15:ba:ff:d0:6d:07:e4:5f:45:db:55:76:df:fe:
79:28:81:55:1c:f6:ef:7d:ee:1a:e8:d3:e3:9a:57:
cb:a4:77:36:3d:7f:6c:6c:e3:e0:b2:74:30:15:39:
82:b9:43:78:1a:ab:35:89:70:91:46:e6:ea:4f:77:
9e:35:4b:83:59:01:03:b0:18:b5:26:29:06:03:30:
c4:d9:e7:ff:fe:33:66:70:95:e3:8f:0d:28:6a:da:
2a:c9:dc:12:9a:f1:8b:e5:c0:0a:52:55:97:b1:78:
6b:71:9d:92:01:fb:1b:73:78:54:9e:a5:f4:bd:cd:
8b:50:f2:b1:18:8f:69:f3:8d:4a:ab:24:c9:00:e3:
61:c9:f4:e0:60:ea:cd:39:43:0d:3f:11:81:87:36:
45:31:d5:5c:19:3b:e8:49:73:38:9b:d8:28:f7:b8:
d6:96:7a:74:8d:8d:41:e9:9a:cd:c2:fe:3b:30:47:
d7:89:b6:16:de:87:bb:13:00:7e:67:03:f6:43:ed:
d8:f3:88:ca:9b:75:44:42:2b:94:7d:62:50:ba:ad:
96:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:A3:19:C3:4E:F3:E6:D4:41:77:88:BB:C6:05:1D:1A:9A:36:00:70
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:47:fb:f8:84:5d:22:d3:e8:f9:e4:67:96:2c:5a:f1:fe:4a:
0b:93:e4:1a:82:82:48:84:ab:ba:9c:6a:aa:b7:b6:87:fc:1c:
b3:25:99:5f:25:ce:4c:87:61:1f:e6:e7:85:94:2f:9b:35:b2:
27:87:47:42:2e:90:35:eb:7e:2c:3a:96:b0:e9:65:27:c8:56:
8b:8b:4e:01:e0:c7:2b:64:86:33:0e:7a:33:d6:d1:4b:bd:90:
32:a3:3f:45:f8:39:55:df:ee:ef:4d:a2:21:e6:aa:b4:cc:b3:
c9:81:70:ec:7f:86:04:ad:19:7f:ca:3c:c5:80:8a:ad:b6:79:
d6:83:69:34:ff:fc:c9:93:e2:97:63:c7:13:6f:18:43:7f:de:
ab:06:66:fa:49:12:ad:1e:d5:9a:5d:8e:c4:f5:5c:60:c4:8c:
72:e4:2a:10:ac:c7:1c:35:6b:6e:76:e5:19:d4:00:e2:1a:f2:
4e:ca:fe:74:f1:ea:8b:03:47:ed:d9:b9:f2:ca:c5:ff:26:6e:
ce:fa:42:5b:a1:15:20:b8:f7:38:1c:1b:4e:03:69:39:94:64:
04:af:f9:9d:b2:5e:cb:ba:ae:46:c5:8e:da:51:4e:5b:57:5c:
59:b7:9f:cd:06:a0:ad:9a:02:bd:98:75:8b:8f:ff:3c:2a:5c:
9b:03:b0:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhyz/PIpgE9m64VHQhqm9lIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNWI5MGI4OTgxYjU5MWQ3NWE3ZTkzNWUxMzA0YTc0MDc1
NjAyZmQwHhcNMjUwODA0MDIwMTI3WhcNMjUwODA1MDIwMTI3WjAzMTEwLwYDVQQD
EyhjNGEzMTljMzRlZjNlNmQ0NDE3Nzg4YmJjNjA1MWQxYTlhMzYwMDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVINuSymsTNWrZdMtYin6EsK9/01
OEUmQTzCv6TdBOCELiIe0aR0vIijrkPIFbr/0G0H5F9F21V23/55KIFVHPbvfe4a
6NPjmlfLpHc2PX9sbOPgsnQwFTmCuUN4Gqs1iXCRRubqT3eeNUuDWQEDsBi1JikG
AzDE2ef//jNmcJXjjw0oatoqydwSmvGL5cAKUlWXsXhrcZ2SAfsbc3hUnqX0vc2L
UPKxGI9p841KqyTJAONhyfTgYOrNOUMNPxGBhzZFMdVcGTvoSXM4m9go97jWlnp0
jY1B6ZrNwv47MEfXibYW3oe7EwB+ZwP2Q+3Y84jKm3VEQiuUfWJQuq2W4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMSjGcNO8+bUQXeIu8YFHRqaNgBwMB8GA1UdIwQY
MBaAFNJbkLiYG1kddafpNeEwSnQHVgL9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODct
YTJhYmRhZGY1ZjkwLzEvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODctYTJhYmRhZGY1Zjkw
LzEvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO0f7+IRd
ItPo+eRnlixa8f5KC5PkGoKCSISrupxqqre2h/wcsyWZXyXOTIdhH+bnhZQvmzWy
J4dHQi6QNet+LDqWsOllJ8hWi4tOAeDHK2SGMw56M9bRS72QMqM/Rfg5Vd/u702i
IeaqtMyzyYFw7H+GBK0Zf8o8xYCKrbZ51oNpNP/8yZPil2PHE28YQ3/eqwZm+kkS
rR7Vml2OxPVcYMSMcuQqEKzHHDVrbnblGdQA4hryTsr+dPHqiwNH7dm58srF/yZu
zvpCW6EVILj3OBwbTgNpOZRkBK/5nbJey7quRsWO2lFOW1dcWbefzQagrZoCvZh1
i4//PCpcmwOwpw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:09:05 2025 by rpki-client