Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
File: 0LkE317sIhazQwFsXLJLuQpD06Q.mft (raw, json)
Hash identifier: 5enWFTQYuZrHH360iDhcsSS32sARH6XOC8iQkwxvYrg=
Subject key identifier: 4C:BD:DF:E6:B6:4C:CE:6B:B8:E9:6D:CB:BF:20:73:7D:64:9D:E7:08
Authority key identifier: D0:B9:04:DF:5E:EC:22:16:B3:43:01:6C:5C:B2:4B:B9:0A:43:D3:A4
Certificate issuer: /CN=d0b904df5eec2216b343016c5cb24bb90a43d3a4
Certificate serial: 019749310FB4DC91E34474F5459D18AC7F94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LkE317sIhazQwFsXLJLuQpD06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
Manifest number: 1579
Signing time: Sat 07 Jun 2025 07:00:41 +0000
Manifest this update: Sat 07 Jun 2025 07:00:41 +0000
Manifest next update: Sun 08 Jun 2025 07:00:41 +0000
Files and hashes: 1: 0LkE317sIhazQwFsXLJLuQpD06Q.crl (hash: QUhtteXandz6tz6blPPr23r6Cm3aKVh/3gzrycRnsSw=)
2: NrSqEKUOU2XauV-i5XcFK6G4SDE.roa (hash: QbfLyNgfhw89ncOBcXtsqNeuurH1zO/6qaF1UEA+u6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/0LkE317sIhazQwFsXLJLuQpD06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:0f:b4:dc:91:e3:44:74:f5:45:9d:18:ac:7f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b904df5eec2216b343016c5cb24bb90a43d3a4
Validity
Not Before: Jun 7 07:00:41 2025 GMT
Not After : Jun 8 07:00:41 2025 GMT
Subject: CN=4cbddfe6b64cce6bb8e96dcbbf20737d649de708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:43:e3:cf:3f:6c:e1:ef:e0:34:29:6c:47:93:
3f:cf:2c:f4:1e:2b:34:34:28:88:75:ef:b3:fd:1a:
ab:10:7a:df:e6:0a:3a:91:bd:a7:6e:27:96:0f:c3:
46:ab:29:01:f6:6e:36:8a:5c:cc:1f:18:23:88:79:
4a:d4:5a:27:30:5e:58:0a:06:13:20:15:5a:8c:a2:
83:90:d4:15:54:04:0d:e2:c6:7e:fc:62:84:5f:3c:
73:31:95:86:14:72:51:45:aa:db:52:15:e3:c8:73:
34:04:77:05:80:c5:41:d2:27:69:80:59:ad:75:e0:
8c:1b:b8:2f:ef:d7:a4:b0:e5:af:b5:4f:2e:98:81:
3a:97:ac:94:17:5e:34:06:81:c9:db:e8:f3:3d:17:
7d:f0:19:a4:0a:08:27:ef:49:3b:d9:44:d3:ac:20:
71:2b:d8:16:5f:11:b3:ee:7b:cf:97:1f:22:08:f6:
a1:fb:26:9b:82:87:81:c3:92:94:e6:d8:42:89:c0:
69:67:47:a0:56:7e:8f:25:f0:e6:6c:49:a2:c2:55:
06:95:dd:91:24:20:3a:d0:b8:19:f0:3b:45:05:06:
ba:9a:af:ea:b1:89:fd:50:4f:b1:39:e0:50:ed:42:
82:ef:74:dd:87:5b:45:6e:ce:32:9a:48:d5:01:05:
90:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:BD:DF:E6:B6:4C:CE:6B:B8:E9:6D:CB:BF:20:73:7D:64:9D:E7:08
X509v3 Authority Key Identifier:
keyid:D0:B9:04:DF:5E:EC:22:16:B3:43:01:6C:5C:B2:4B:B9:0A:43:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LkE317sIhazQwFsXLJLuQpD06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:1c:9c:b3:eb:74:bc:f7:bd:40:c6:2e:a8:90:24:f2:3a:d7:
ca:be:0c:ad:a0:f1:97:20:e5:67:96:c6:cd:86:5d:77:f4:69:
12:c8:ac:c6:53:8b:94:b1:8d:fb:18:f9:26:3a:8c:7a:d7:7f:
94:d9:93:1c:b9:95:22:23:bc:9c:c4:fd:ea:18:25:46:d8:cf:
1d:6e:33:fc:c9:d0:57:6d:22:e7:04:76:ce:64:4e:47:c3:c7:
a9:e2:e0:e7:3a:0e:c2:69:58:e1:5d:ed:2d:93:f2:d8:ed:e5:
5f:1b:ad:d2:5b:92:aa:c5:8b:53:ed:af:d5:26:21:eb:bb:e8:
49:1a:4c:d9:fc:4e:0e:cb:cd:74:45:f6:e8:0e:fc:22:99:15:
ff:69:b0:80:e5:66:df:75:da:6a:46:f2:50:71:6c:e6:ef:2e:
3e:12:2f:1e:0d:57:c7:67:fc:cf:99:a8:88:a1:92:86:8a:f3:
36:24:d6:f6:96:c0:a6:f3:32:fe:e4:fe:67:46:63:0a:41:08:
2c:90:ac:fc:a3:77:27:97:58:11:3a:19:e0:60:bc:3d:a1:de:
24:c5:79:65:88:d9:75:96:e6:30:e9:fe:7c:81:3d:48:a1:4b:
a8:a1:f1:2a:1b:a1:80:86:fd:16:a0:d2:66:9a:38:09:44:9d:
b2:6f:c7:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJMQ+03JHjRHT1RZ0YrH+UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwYjkwNGRmNWVlYzIyMTZiMzQzMDE2YzVjYjI0YmI5MGE0
M2QzYTQwHhcNMjUwNjA3MDcwMDQxWhcNMjUwNjA4MDcwMDQxWjAzMTEwLwYDVQQD
Eyg0Y2JkZGZlNmI2NGNjZTZiYjhlOTZkY2JiZjIwNzM3ZDY0OWRlNzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUPjzz9s4e/gNClsR5M/zyz0His0
NCiIde+z/RqrEHrf5go6kb2nbieWD8NGqykB9m42ilzMHxgjiHlK1FonMF5YCgYT
IBVajKKDkNQVVAQN4sZ+/GKEXzxzMZWGFHJRRarbUhXjyHM0BHcFgMVB0idpgFmt
deCMG7gv79eksOWvtU8umIE6l6yUF140BoHJ2+jzPRd98BmkCggn70k72UTTrCBx
K9gWXxGz7nvPlx8iCPah+yabgoeBw5KU5thCicBpZ0egVn6PJfDmbEmiwlUGld2R
JCA60LgZ8DtFBQa6mq/qsYn9UE+xOeBQ7UKC73Tdh1tFbs4ymkjVAQWQcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEy93+a2TM5ruOlty78gc31knecIMB8GA1UdIwQY
MBaAFNC5BN9e7CIWs0MBbFyyS7kKQ9OkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMExrRTMxN3NJaGF6UXdGc1hMSkx1UXBEMDZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi82YTdjOTMtODdiNC00YTRjLWEyMWUt
NDFhODRmNDE5YWM1LzEvMExrRTMxN3NJaGF6UXdGc1hMSkx1UXBEMDZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi82YTdjOTMtODdiNC00YTRjLWEyMWUtNDFhODRmNDE5YWM1
LzEvMExrRTMxN3NJaGF6UXdGc1hMSkx1UXBEMDZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYBycs+t0
vPe9QMYuqJAk8jrXyr4MraDxlyDlZ5bGzYZdd/RpEsisxlOLlLGN+xj5JjqMetd/
lNmTHLmVIiO8nMT96hglRtjPHW4z/MnQV20i5wR2zmROR8PHqeLg5zoOwmlY4V3t
LZPy2O3lXxut0luSqsWLU+2v1SYh67voSRpM2fxODsvNdEX26A78IpkV/2mwgOVm
33XaakbyUHFs5u8uPhIvHg1Xx2f8z5moiKGShorzNiTW9pbApvMy/uT+Z0ZjCkEI
LJCs/KN3J5dYEToZ4GC8PaHeJMV5ZYjZdZbmMOn+fIE9SKFLqKHxKhuhgIb9FqDS
Zpo4CUSdsm/HWg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:52:54 2025 by rpki-client