Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
File: lf0DtfNbMXtNMv8aSywXuzdsIeE.mft (raw, json)
Hash identifier: SxsSq91lG08CasHhZ36jALU7Iy1aNjtdYF1mJvJ2kZg=
Subject key identifier: A8:6B:F4:24:F5:19:8C:B9:9E:62:71:55:FC:E8:AE:4F:0F:42:26:02
Authority key identifier: 95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
Certificate issuer: /CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Certificate serial: 01974666A75720A359C4827EAA52D5E417E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
Manifest number: 1188
Signing time: Fri 06 Jun 2025 18:00:21 +0000
Manifest this update: Fri 06 Jun 2025 18:00:21 +0000
Manifest next update: Sat 07 Jun 2025 18:00:21 +0000
Files and hashes: 1: LZt4gb-xWjsUFFEJJlr5snAnfj4.roa (hash: iVanuwhOVMx/ABZHooPm82UQY207412XKo2wvn51IRE=)
2: lf0DtfNbMXtNMv8aSywXuzdsIeE.crl (hash: 9FN0H3FrojcsnkBBFKb00SbPLtS1sIwIfwMBAthRy8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 18:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:66:a7:57:20:a3:59:c4:82:7e:aa:52:d5:e4:17:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Validity
Not Before: Jun 6 18:00:21 2025 GMT
Not After : Jun 7 18:00:21 2025 GMT
Subject: CN=a86bf424f5198cb99e627155fce8ae4f0f422602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:af:e9:f0:8e:25:a3:03:30:e9:c2:fa:2d:6a:
b3:2d:93:35:00:a6:ed:e2:7c:be:7a:c1:27:eb:9b:
7f:ac:74:94:72:bb:1e:88:e6:97:15:14:e1:a6:5f:
6a:cf:4c:e1:f1:50:db:fc:31:9e:c8:b0:fa:7c:9f:
3d:a1:76:57:2f:f6:77:55:07:48:81:5e:cc:11:0b:
6f:15:75:3e:93:2f:6b:4f:f9:b7:5d:46:0c:d4:bd:
59:ac:82:e0:00:d8:61:3e:82:7f:cc:ed:38:93:1d:
0e:9a:a5:07:e1:68:65:76:60:40:f2:ed:d4:71:aa:
91:2e:c1:93:fe:ab:8a:41:8a:c3:ac:32:58:fd:d5:
0b:88:54:23:80:f6:dc:f8:3c:3b:ae:58:32:8c:0d:
55:bf:e0:0f:56:6b:c9:62:8f:d7:2a:b8:31:74:71:
a9:0a:b2:ab:2a:02:25:16:df:9f:62:13:e6:fe:1b:
4b:0e:11:e7:a0:b0:88:ba:20:69:f0:30:12:c8:70:
fa:ba:66:c7:c7:05:9f:b5:df:0c:6d:24:bc:1b:8a:
59:08:03:ac:99:98:ec:55:99:c0:26:dc:53:fb:8b:
19:96:d5:77:9a:77:aa:0f:0b:97:7d:cc:09:8f:48:
e3:96:6c:1e:b3:42:6c:76:11:19:ad:e4:b5:2a:40:
fc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6B:F4:24:F5:19:8C:B9:9E:62:71:55:FC:E8:AE:4F:0F:42:26:02
X509v3 Authority Key Identifier:
keyid:95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:cd:97:66:fa:92:7f:16:97:a2:5c:cf:9a:ba:0d:a0:74:f6:
ce:fe:c6:5d:c7:09:8e:38:29:e6:e0:db:5a:a1:a0:6b:ee:7e:
f5:52:93:6e:ed:6c:94:25:8f:b4:3c:6c:1e:bd:41:41:60:84:
74:58:26:08:42:3f:42:49:e7:ef:78:39:5d:a8:50:8b:3c:46:
17:2e:4f:17:e3:82:83:3c:64:10:0b:07:32:d3:92:64:ef:b8:
8a:1a:6e:79:c4:fa:74:28:b7:bd:05:28:a8:7f:92:eb:7b:3d:
4b:f2:e5:02:07:ef:11:f5:56:16:7a:27:d4:cb:4b:55:32:32:
3f:92:44:21:f2:b0:f3:8d:9f:d8:3f:77:54:2d:f6:6f:39:37:
4a:f4:26:f1:39:df:c4:6c:14:e4:11:f4:2f:a0:3d:ad:20:41:
b7:06:f4:8a:c4:51:fe:e8:b1:f8:6a:15:f5:cc:b0:1b:2f:cc:
06:62:e6:79:80:04:7d:07:b1:d4:8d:fc:2f:1f:82:c0:26:9e:
30:a2:b9:bf:71:bf:d5:0e:55:d8:b2:63:5c:e8:3b:38:09:50:
71:2a:37:a7:e8:b8:ad:6a:e8:45:95:52:73:ce:d6:be:a8:d1:
25:bf:98:58:6c:5e:73:02:45:43:12:07:1a:25:be:f3:e4:dc:
da:46:f7:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGZqdXIKNZxIJ+qlLV5BfnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ZmQwM2I1ZjM1YjMxN2I0ZDMyZmYxYTRiMmMxN2JiMzc2
YzIxZTEwHhcNMjUwNjA2MTgwMDIxWhcNMjUwNjA3MTgwMDIxWjAzMTEwLwYDVQQD
EyhhODZiZjQyNGY1MTk4Y2I5OWU2MjcxNTVmY2U4YWU0ZjBmNDIyNjAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtK/p8I4lowMw6cL6LWqzLZM1AKbt
4ny+esEn65t/rHSUcrseiOaXFRThpl9qz0zh8VDb/DGeyLD6fJ89oXZXL/Z3VQdI
gV7MEQtvFXU+ky9rT/m3XUYM1L1ZrILgANhhPoJ/zO04kx0OmqUH4WhldmBA8u3U
caqRLsGT/quKQYrDrDJY/dULiFQjgPbc+Dw7rlgyjA1Vv+APVmvJYo/XKrgxdHGp
CrKrKgIlFt+fYhPm/htLDhHnoLCIuiBp8DASyHD6umbHxwWftd8MbSS8G4pZCAOs
mZjsVZnAJtxT+4sZltV3mneqDwuXfcwJj0jjlmwes0JsdhEZreS1KkD8EwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKhr9CT1GYy5nmJxVfzork8PQiYCMB8GA1UdIwQY
MBaAFJX9A7XzWzF7TTL/GkssF7s3bCHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGYwRHRmTmJNWHROTXY4YVN5d1h1emRzSWVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9mOWQwZTktYmRhNC00MmIyLThlN2Et
ZDYwZjQ0YTkzNGIxLzEvbGYwRHRmTmJNWHROTXY4YVN5d1h1emRzSWVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9mOWQwZTktYmRhNC00MmIyLThlN2EtZDYwZjQ0YTkzNGIx
LzEvbGYwRHRmTmJNWHROTXY4YVN5d1h1emRzSWVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAac2XZvqS
fxaXolzPmroNoHT2zv7GXccJjjgp5uDbWqGga+5+9VKTbu1slCWPtDxsHr1BQWCE
dFgmCEI/Qknn73g5XahQizxGFy5PF+OCgzxkEAsHMtOSZO+4ihpuecT6dCi3vQUo
qH+S63s9S/LlAgfvEfVWFnon1MtLVTIyP5JEIfKw842f2D93VC32bzk3SvQm8Tnf
xGwU5BH0L6A9rSBBtwb0isRR/uix+GoV9cywGy/MBmLmeYAEfQex1I38Lx+CwCae
MKK5v3G/1Q5V2LJjXOg7OAlQcSo3p+i4rWroRZVSc87WvqjRJb+YWGxecwJFQxIH
GiW+8+Tc2kb3sg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 02:36:37 2025 by rpki-client