Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json)
Hash identifier: nQeAvve0HnfpP1L0ybPs1Bz7ONB+J4PhknV2t1trWPc=
Subject key identifier: 93:6C:E0:65:4D:10:0A:E3:9D:62:C6:44:E9:C1:D0:7F:F0:4A:55:67
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 019745F8F44FA40703E669BBB56246A6489A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
Manifest number: 09FC
Signing time: Fri 06 Jun 2025 16:00:32 +0000
Manifest this update: Fri 06 Jun 2025 16:00:32 +0000
Manifest next update: Sat 07 Jun 2025 16:00:32 +0000
Files and hashes: 1: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: y8IogiKIvPhKHO20zth8i3kcflgcow8tF8R5SkVuLBY=)
2: r2nr9uHWjEIdTibij9wAoHFt-FM.roa (hash: 9uPtC9m4AAQGXek/5tdGjDekJKVu5XPicOZ4ymE6WZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:f8:f4:4f:a4:07:03:e6:69:bb:b5:62:46:a6:48:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: Jun 6 16:00:32 2025 GMT
Not After : Jun 7 16:00:32 2025 GMT
Subject: CN=936ce0654d100ae39d62c644e9c1d07ff04a5567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f6:e4:0a:96:21:e5:d7:54:2d:de:e0:00:6f:
71:5d:46:a9:25:20:48:74:94:5b:c9:04:e1:86:da:
6e:8a:37:5a:53:28:38:36:5e:97:48:6f:6c:f9:83:
91:92:cb:df:b5:2b:97:e9:0a:19:23:08:65:bc:99:
46:e3:95:96:17:26:43:ae:71:40:8e:f7:a7:37:53:
f7:d5:09:5b:81:02:e1:c5:75:f3:ea:59:82:1d:b0:
8b:df:0d:7c:8b:c0:52:5b:c1:2c:ec:0e:80:92:c6:
07:2e:3f:d3:c7:e7:07:6f:25:14:54:6e:a1:7a:e9:
3f:f4:85:fa:e5:5b:67:4f:7d:6e:52:5c:9f:13:a2:
eb:85:77:5c:55:34:69:6e:fe:60:e6:a4:6d:78:f9:
c9:e7:48:a5:c2:f3:75:12:38:01:b0:29:8f:0d:89:
0b:70:3a:8f:d9:aa:6e:3e:93:e9:2a:7a:82:33:3b:
68:88:ce:d7:c0:d5:bd:60:aa:6a:30:06:94:33:11:
b1:c4:8f:93:2c:32:6e:78:15:ce:9f:b8:b1:be:fe:
c8:9f:3b:0b:46:5c:49:ce:bb:44:b5:40:67:6b:c6:
be:e0:7b:af:ca:9c:91:a6:51:ac:7b:59:5d:e1:3a:
34:d3:75:42:1d:e9:4a:fa:a9:ce:89:42:9c:df:a5:
a6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:6C:E0:65:4D:10:0A:E3:9D:62:C6:44:E9:C1:D0:7F:F0:4A:55:67
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:e0:0f:2f:2a:f6:73:98:cf:d9:49:83:53:46:14:24:d8:6b:
d9:ce:24:ae:5e:19:08:cf:ae:fd:8d:3f:34:c2:ff:0b:6a:23:
9e:bf:76:a0:c8:35:36:2d:2e:a4:82:90:11:48:5f:32:4e:0c:
9d:46:b4:17:a9:3b:e4:91:08:63:39:21:cd:ba:8c:dc:a6:b8:
db:06:0e:bf:31:9a:be:9c:d3:fb:cd:21:07:f1:62:ac:8e:4e:
96:3f:11:6a:a7:1f:d8:e6:d6:d7:f3:48:31:96:d1:09:8c:1d:
cc:27:fb:b7:03:f6:d9:c9:cc:89:d5:60:25:a1:6d:fd:39:19:
f0:15:4d:f9:b2:08:7c:9e:00:00:09:21:bd:1e:4b:b8:64:39:
cd:28:0a:d6:f8:b3:78:ba:03:46:f7:5a:a7:b3:9e:3d:47:2f:
7a:e8:7f:cf:be:a4:1c:16:75:51:a1:16:bf:a1:b3:5a:ea:b3:
82:9f:0a:be:5b:5d:90:2f:e8:26:d8:25:80:5d:94:4b:17:30:
ad:13:5e:c8:15:33:ec:27:b0:77:22:03:31:6a:7e:0f:86:2e:
06:f8:4e:44:a5:f4:31:23:4a:75:46:8c:4f:af:ae:67:22:d8:
27:33:30:83:cd:8d:7c:a7:57:03:a7:12:69:e3:20:d8:8c:16:
99:b1:24:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdF+PRPpAcD5mm7tWJGpkiaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MWJiNDkwZTA5ZGYxNDY3ZTRlZWM0M2Q4ZjIwNDg0Y2Vl
ODM5ZmUwHhcNMjUwNjA2MTYwMDMyWhcNMjUwNjA3MTYwMDMyWjAzMTEwLwYDVQQD
Eyg5MzZjZTA2NTRkMTAwYWUzOWQ2MmM2NDRlOWMxZDA3ZmYwNGE1NTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofbkCpYh5ddULd7gAG9xXUapJSBI
dJRbyQThhtpuijdaUyg4Nl6XSG9s+YORksvftSuX6QoZIwhlvJlG45WWFyZDrnFA
jvenN1P31QlbgQLhxXXz6lmCHbCL3w18i8BSW8Es7A6AksYHLj/Tx+cHbyUUVG6h
euk/9IX65VtnT31uUlyfE6LrhXdcVTRpbv5g5qRtePnJ50ilwvN1EjgBsCmPDYkL
cDqP2apuPpPpKnqCMztoiM7XwNW9YKpqMAaUMxGxxI+TLDJueBXOn7ixvv7InzsL
RlxJzrtEtUBna8a+4HuvypyRplGse1ld4To003VCHelK+qnOiUKc36WmNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJNs4GVNEArjnWLGROnB0H/wSlVnMB8GA1UdIwQY
MBaAFJUbtJDgnfFGfk7sQ9jyBITO6Dn+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTct
MWRiNGVkMTMxYmMzLzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTctMWRiNGVkMTMxYmMz
LzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOuAPLyr2
c5jP2UmDU0YUJNhr2c4krl4ZCM+u/Y0/NML/C2ojnr92oMg1Ni0upIKQEUhfMk4M
nUa0F6k75JEIYzkhzbqM3Ka42wYOvzGavpzT+80hB/FirI5Olj8Raqcf2ObW1/NI
MZbRCYwdzCf7twP22cnMidVgJaFt/TkZ8BVN+bIIfJ4AAAkhvR5LuGQ5zSgK1viz
eLoDRvdap7OePUcveuh/z76kHBZ1UaEWv6GzWuqzgp8KvltdkC/oJtglgF2USxcw
rRNeyBUz7CewdyIDMWp+D4YuBvhORKX0MSNKdUaMT6+uZyLYJzMwg82NfKdXA6cS
aeMg2IwWmbEkkg==
-----END CERTIFICATE-----
Generated at Fri Jun 6 23:24:10 2025 by rpki-client