Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cf683e-6abd-4f5d-9943-02f3ddba1942/1/lUqTUetm2NhiTiDRafdmty9YrMA.mft
File: lUqTUetm2NhiTiDRafdmty9YrMA.mft (raw, json)
Hash identifier: U7JuJQC6FP9ZoyvsKRarV+TYk9YurSixro2wyynb+Hs=
Subject key identifier: 02:A4:EE:5C:4F:0B:17:4B:0A:68:5C:10:92:F2:5F:91:86:B1:AD:B8
Authority key identifier: 95:4A:93:51:EB:66:D8:D8:62:4E:20:D1:69:F7:66:B7:2F:58:AC:C0
Certificate issuer: /CN=954a9351eb66d8d8624e20d169f766b72f58acc0
Certificate serial: 019849D35218F266D6C488E715F64DE20330
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUqTUetm2NhiTiDRafdmty9YrMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cf683e-6abd-4f5d-9943-02f3ddba1942/1/lUqTUetm2NhiTiDRafdmty9YrMA.mft
Manifest number: 01B9
Signing time: Sun 27 Jul 2025 03:00:42 +0000
Manifest this update: Sun 27 Jul 2025 03:00:42 +0000
Manifest next update: Mon 28 Jul 2025 03:00:42 +0000
Files and hashes: 1: lUqTUetm2NhiTiDRafdmty9YrMA.crl (hash: jMdsiv/FnMlSxKMcNVRY2+jnG6OVg+bux4T0PZPVt+M=)
2: t16PzAlvWekYsP-M8rbE-GQqrKw.roa (hash: 3vnPnuhk/OI+4T9XrhuO16OQVY7hpcxK0i/qFVmYQP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/cf683e-6abd-4f5d-9943-02f3ddba1942/1/lUqTUetm2NhiTiDRafdmty9YrMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/cf683e-6abd-4f5d-9943-02f3ddba1942/1/lUqTUetm2NhiTiDRafdmty9YrMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lUqTUetm2NhiTiDRafdmty9YrMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 03:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:d3:52:18:f2:66:d6:c4:88:e7:15:f6:4d:e2:03:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=954a9351eb66d8d8624e20d169f766b72f58acc0
Validity
Not Before: Jul 27 03:00:42 2025 GMT
Not After : Jul 28 03:00:42 2025 GMT
Subject: CN=02a4ee5c4f0b174b0a685c1092f25f9186b1adb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b0:85:72:09:a7:d7:ca:f9:8e:84:3d:6c:03:
56:81:51:87:73:2e:6c:3f:e2:34:0a:b4:30:b2:17:
76:e2:43:0d:d2:79:c5:8a:6d:d3:e2:02:98:78:bc:
04:22:1b:0d:62:83:0c:ee:eb:13:c8:b5:49:4d:c2:
bb:b9:87:1c:85:d1:04:a9:7c:93:2b:d5:0e:06:ad:
c2:b5:dd:2f:72:c2:f2:c9:7f:6a:58:46:87:11:18:
4f:16:23:21:59:8e:16:b1:a3:84:50:b9:0d:f8:d4:
6b:05:1e:17:5d:15:7d:bb:75:9e:97:16:ab:94:b0:
f1:7f:b9:0f:77:c2:c4:74:1d:4f:4c:d8:78:e4:dd:
97:7a:d8:78:7f:15:a0:be:7a:4e:84:20:95:d7:08:
08:d5:57:8b:cf:f9:a1:7e:e7:bb:30:4d:65:d7:c1:
b5:7f:8f:e9:c8:52:41:c5:1c:05:5c:f6:6c:86:77:
92:8a:49:8e:7b:55:1b:cc:e8:4d:69:a4:cd:7d:b7:
e6:44:cb:e2:1c:bd:53:fd:3c:f6:68:93:15:5b:a9:
1f:e5:78:86:40:21:b4:c7:f2:59:f1:59:24:73:21:
06:10:9c:8b:5b:10:bb:de:5c:47:4b:18:0a:f1:93:
46:a6:ef:e4:38:bd:91:f1:29:4f:c8:32:22:b2:f7:
21:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A4:EE:5C:4F:0B:17:4B:0A:68:5C:10:92:F2:5F:91:86:B1:AD:B8
X509v3 Authority Key Identifier:
keyid:95:4A:93:51:EB:66:D8:D8:62:4E:20:D1:69:F7:66:B7:2F:58:AC:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUqTUetm2NhiTiDRafdmty9YrMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cf683e-6abd-4f5d-9943-02f3ddba1942/1/lUqTUetm2NhiTiDRafdmty9YrMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cf683e-6abd-4f5d-9943-02f3ddba1942/1/lUqTUetm2NhiTiDRafdmty9YrMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:b3:03:d3:58:27:85:c5:72:fc:3b:09:90:c1:6a:68:f1:bb:
ce:6a:24:03:fc:a3:d5:cc:05:d5:fe:94:03:92:57:b4:ce:99:
21:8c:3e:5c:94:1b:1a:5e:cd:bb:f6:5d:45:f5:d0:92:32:16:
10:68:3a:19:6c:a2:1a:84:d6:f4:bb:ab:a8:2c:a2:cd:59:dd:
30:ca:6f:e8:98:87:1f:63:0d:d7:8f:14:7f:df:03:ce:18:9e:
7c:08:ff:b2:1f:bb:fd:1b:cc:c5:a9:3b:c3:99:15:0f:45:4e:
80:5d:f7:ca:49:e8:45:63:75:b0:bd:e2:b5:49:b2:17:25:a4:
9c:4d:c2:e3:e2:43:ff:ed:b8:6c:be:8a:5f:e1:07:6b:b3:08:
1c:7a:18:6f:6a:88:00:8f:e8:31:6a:46:96:73:8b:bb:e7:41:
81:c7:7d:1b:7c:31:99:71:4c:68:f5:b9:fe:7f:a1:8e:52:73:
8e:64:8b:a7:3a:ba:32:22:47:2f:8f:3a:12:1b:84:53:13:15:
72:ab:63:19:9c:3c:d0:d4:9d:2e:b2:e4:da:ec:73:e4:2e:4a:
f6:34:3b:34:94:2b:4e:b1:ce:70:05:a0:8f:c0:8f:95:04:91:
2f:2c:e1:cd:a1:1e:19:10:1a:21:93:c3:e2:bc:91:30:e9:f0:
c1:ae:bf:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhJ01IY8mbWxIjnFfZN4gMwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1NGE5MzUxZWI2NmQ4ZDg2MjRlMjBkMTY5Zjc2NmI3MmY1
OGFjYzAwHhcNMjUwNzI3MDMwMDQyWhcNMjUwNzI4MDMwMDQyWjAzMTEwLwYDVQQD
EygwMmE0ZWU1YzRmMGIxNzRiMGE2ODVjMTA5MmYyNWY5MTg2YjFhZGI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrCFcgmn18r5joQ9bANWgVGHcy5s
P+I0CrQwshd24kMN0nnFim3T4gKYeLwEIhsNYoMM7usTyLVJTcK7uYcchdEEqXyT
K9UOBq3Ctd0vcsLyyX9qWEaHERhPFiMhWY4WsaOEULkN+NRrBR4XXRV9u3Welxar
lLDxf7kPd8LEdB1PTNh45N2Xeth4fxWgvnpOhCCV1wgI1VeLz/mhfue7ME1l18G1
f4/pyFJBxRwFXPZshneSikmOe1UbzOhNaaTNfbfmRMviHL1T/Tz2aJMVW6kf5XiG
QCG0x/JZ8VkkcyEGEJyLWxC73lxHSxgK8ZNGpu/kOL2R8SlPyDIisvchkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAKk7lxPCxdLCmhcEJLyX5GGsa24MB8GA1UdIwQY
MBaAFJVKk1HrZtjYYk4g0Wn3ZrcvWKzAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFVxVFVldG0yTmhpVGlEUmFmZG10eTlZck1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jZjY4M2UtNmFiZC00ZjVkLTk5NDMt
MDJmM2RkYmExOTQyLzEvbFVxVFVldG0yTmhpVGlEUmFmZG10eTlZck1BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9jZjY4M2UtNmFiZC00ZjVkLTk5NDMtMDJmM2RkYmExOTQy
LzEvbFVxVFVldG0yTmhpVGlEUmFmZG10eTlZck1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO7MD01gn
hcVy/DsJkMFqaPG7zmokA/yj1cwF1f6UA5JXtM6ZIYw+XJQbGl7Nu/ZdRfXQkjIW
EGg6GWyiGoTW9LurqCyizVndMMpv6JiHH2MN148Uf98DzhiefAj/sh+7/RvMxak7
w5kVD0VOgF33yknoRWN1sL3itUmyFyWknE3C4+JD/+24bL6KX+EHa7MIHHoYb2qI
AI/oMWpGlnOLu+dBgcd9G3wxmXFMaPW5/n+hjlJzjmSLpzq6MiJHL486EhuEUxMV
cqtjGZw80NSdLrLk2uxz5C5K9jQ7NJQrTrHOcAWgj8CPlQSRLyzhzaEeGRAaIZPD
4ryRMOnwwa6/FA==
-----END CERTIFICATE-----
Generated at Sun Jul 27 10:30:00 2025 by rpki-client