Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
File: Lw47dY4ki4AfwfMNNF1giwevG_Y.mft (raw, json)
Hash identifier: 0GxXQQsuxLcHjRzF8cZetdZRAG8G2/p5e6+V+J+HHP4=
Subject key identifier: D7:95:FB:9B:4B:EF:6B:1A:BE:58:1F:AB:17:B3:54:27:81:EE:7A:63
Authority key identifier: 2F:0E:3B:75:8E:24:8B:80:1F:C1:F3:0D:34:5D:60:8B:07:AF:1B:F6
Certificate issuer: /CN=2f0e3b758e248b801fc1f30d345d608b07af1bf6
Certificate serial: 01984BC1B7211E5FB41DFFDADB4E16D89E22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
Manifest number: 0628
Signing time: Sun 27 Jul 2025 12:00:43 +0000
Manifest this update: Sun 27 Jul 2025 12:00:43 +0000
Manifest next update: Mon 28 Jul 2025 12:00:43 +0000
Files and hashes: 1: Lw47dY4ki4AfwfMNNF1giwevG_Y.crl (hash: WmsinCWm1d94zJYWlx6QhKLc8AO97gucMNFbNW+FXbc=)
2: MBtZdpS4ymxgginyDhvfCoGQ29s.roa (hash: Taga/JoIPOZ2TxBr6cVw0HmmUo2VGq5/DtsPjFffmvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 09:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:c1:b7:21:1e:5f:b4:1d:ff:da:db:4e:16:d8:9e:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f0e3b758e248b801fc1f30d345d608b07af1bf6
Validity
Not Before: Jul 27 12:00:43 2025 GMT
Not After : Jul 28 12:00:43 2025 GMT
Subject: CN=d795fb9b4bef6b1abe581fab17b3542781ee7a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8e:1d:0d:26:fd:5a:d1:d3:1c:c6:eb:f0:51:
34:5d:41:36:97:dd:2e:bc:09:07:cb:7d:0b:8f:92:
4d:26:b0:0d:0a:30:f5:5e:b7:6e:ae:67:19:21:57:
fc:81:d2:0a:28:bc:51:5f:a8:fc:20:6d:bf:1f:c4:
c4:71:b0:1b:ee:b3:eb:88:1f:49:28:09:d1:e4:94:
d5:7a:ea:f5:82:ad:01:65:49:bb:58:8d:8e:ab:48:
70:7e:34:b1:fa:07:48:57:a4:92:cd:c8:e0:26:89:
6e:e4:50:86:c8:01:ab:dc:26:38:4c:9c:de:bc:e6:
0e:87:d7:b1:38:26:ba:4e:16:86:6a:7f:ad:c4:9f:
f1:85:94:3f:bd:73:0c:85:10:a3:1c:60:f2:d1:12:
83:83:3c:08:e3:9a:8a:43:91:9c:de:18:04:66:14:
86:4f:f5:ae:45:c8:d1:e2:a9:7c:26:56:e4:71:43:
83:16:3b:4f:72:77:7c:2f:aa:d0:d7:76:45:fa:2a:
3c:29:1e:20:91:f6:fe:4c:ab:b5:c9:43:60:9e:71:
89:e9:67:87:ce:be:61:87:8d:76:8d:fd:57:cb:db:
04:9b:f0:0a:3c:53:80:c8:b4:03:d2:05:41:4a:67:
b3:f6:f1:78:62:c6:26:89:d2:3f:59:d0:6b:f2:27:
13:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:95:FB:9B:4B:EF:6B:1A:BE:58:1F:AB:17:B3:54:27:81:EE:7A:63
X509v3 Authority Key Identifier:
keyid:2F:0E:3B:75:8E:24:8B:80:1F:C1:F3:0D:34:5D:60:8B:07:AF:1B:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:ba:3c:df:86:63:3c:27:8c:fa:09:b8:ce:81:de:55:f9:ee:
4f:d1:51:29:dc:04:60:e0:e3:a5:43:18:dc:87:e2:f0:09:c6:
a8:ce:ae:3b:d6:fd:00:dc:05:47:23:bf:04:be:e9:c0:7c:18:
26:7a:ee:d2:22:c7:21:a0:0d:b9:48:5d:c7:a0:e3:2c:2b:63:
19:13:28:f4:96:e7:ad:56:a3:5c:f3:a7:f6:36:b7:79:a3:c6:
ff:06:d9:a1:3d:eb:12:b8:ab:f3:d7:d9:6e:8d:5f:82:f5:d9:
03:2c:0d:60:10:d0:d6:9d:02:a9:78:9d:45:b6:39:12:85:0e:
19:c5:74:57:05:a6:b8:60:40:f0:24:87:b0:c6:24:a5:87:21:
56:89:fc:12:fa:33:da:8c:80:f5:7b:84:90:4e:fa:6b:8f:69:
64:4b:a2:d5:b7:f7:0a:20:e5:1c:be:7b:e4:42:37:08:04:5e:
43:0e:48:f9:89:a8:e2:85:35:1e:c3:0b:9b:91:1a:b4:51:28:
82:ba:b7:45:d8:0c:09:37:ac:a0:66:67:a3:66:61:1d:46:66:
60:2f:5c:39:52:db:a1:14:e8:0f:e8:bd:bb:36:47:6d:ba:00:
d4:97:06:83:cd:da:b5:0e:1a:3a:04:34:f4:43:ac:c0:13:09:
a2:e7:9a:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhLwbchHl+0Hf/a204W2J4iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmMGUzYjc1OGUyNDhiODAxZmMxZjMwZDM0NWQ2MDhiMDdh
ZjFiZjYwHhcNMjUwNzI3MTIwMDQzWhcNMjUwNzI4MTIwMDQzWjAzMTEwLwYDVQQD
EyhkNzk1ZmI5YjRiZWY2YjFhYmU1ODFmYWIxN2IzNTQyNzgxZWU3YTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx44dDSb9WtHTHMbr8FE0XUE2l90u
vAkHy30Lj5JNJrANCjD1XrdurmcZIVf8gdIKKLxRX6j8IG2/H8TEcbAb7rPriB9J
KAnR5JTVeur1gq0BZUm7WI2Oq0hwfjSx+gdIV6SSzcjgJolu5FCGyAGr3CY4TJze
vOYOh9exOCa6ThaGan+txJ/xhZQ/vXMMhRCjHGDy0RKDgzwI45qKQ5Gc3hgEZhSG
T/WuRcjR4ql8JlbkcUODFjtPcnd8L6rQ13ZF+io8KR4gkfb+TKu1yUNgnnGJ6WeH
zr5hh412jf1Xy9sEm/AKPFOAyLQD0gVBSmez9vF4YsYmidI/WdBr8icT3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNeV+5tL72savlgfqxezVCeB7npjMB8GA1UdIwQY
MBaAFC8OO3WOJIuAH8HzDTRdYIsHrxv2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTHc0N2RZNGtpNEFmd2ZNTk5GMWdpd2V2R19ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS83ZGVkMWYtYzQwZC00N2YyLWExMTAt
ODQ1NmRjZTU5Y2UwLzEvTHc0N2RZNGtpNEFmd2ZNTk5GMWdpd2V2R19ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS83ZGVkMWYtYzQwZC00N2YyLWExMTAtODQ1NmRjZTU5Y2Uw
LzEvTHc0N2RZNGtpNEFmd2ZNTk5GMWdpd2V2R19ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOLo834Zj
PCeM+gm4zoHeVfnuT9FRKdwEYODjpUMY3Ifi8AnGqM6uO9b9ANwFRyO/BL7pwHwY
Jnru0iLHIaANuUhdx6DjLCtjGRMo9JbnrVajXPOn9ja3eaPG/wbZoT3rErir89fZ
bo1fgvXZAywNYBDQ1p0CqXidRbY5EoUOGcV0VwWmuGBA8CSHsMYkpYchVon8Evoz
2oyA9XuEkE76a49pZEui1bf3CiDlHL575EI3CAReQw5I+Ymo4oU1HsMLm5EatFEo
grq3RdgMCTesoGZno2ZhHUZmYC9cOVLboRToD+i9uzZHbboA1JcGg83atQ4aOgQ0
9EOswBMJouearw==
-----END CERTIFICATE-----
Generated at Sun Jul 27 17:37:25 2025 by rpki-client