Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
File: l72bhlMeVEr6AwnYvip7ppFj-a0.mft (raw, json)
Hash identifier: 8xLv/aJZ+YnGHjiohUrvLM0xtVm90YOp2im9MnGvWvg=
Subject key identifier: 0E:27:1E:D2:52:0F:EA:77:9C:B3:E6:9D:BF:CA:E3:77:9F:86:E8:49
Authority key identifier: 97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD
Certificate issuer: /CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad
Certificate serial: 01983871848C4C31A67D8F73F6CAF911AE27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
Manifest number: 13AD
Signing time: Wed 23 Jul 2025 18:00:20 +0000
Manifest this update: Wed 23 Jul 2025 18:00:20 +0000
Manifest next update: Thu 24 Jul 2025 18:00:20 +0000
Files and hashes: 1: 6rStul-KJYhq6MLDsqFqp0QCJ-w.roa (hash: UgkfY0GpWezlJwqyNlWzjCQU4cnRnYzqK30vIO1treQ=)
2: GAmyQv8-gT8CZ7d-txbZl5EhOio.roa (hash: iUcK9uyMQ6focHOP9BZWCHQasgvLPeszd6U4NOgrxL8=)
3: ZfBa2kOopYZN1zSmKbC-lmjGWMU.roa (hash: XOVEAESgfg7MRdYVfSlFUrFkfMe08NvtY8t3C+PTjsk=)
4: l72bhlMeVEr6AwnYvip7ppFj-a0.crl (hash: gtw+jSzBz+zcs47r3hyfB2efoZShLM6j1h/7PANiG7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 18:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:38:71:84:8c:4c:31:a6:7d:8f:73:f6:ca:f9:11:ae:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad
Validity
Not Before: Jul 23 18:00:20 2025 GMT
Not After : Jul 24 18:00:20 2025 GMT
Subject: CN=0e271ed2520fea779cb3e69dbfcae3779f86e849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:83:60:89:26:1b:1e:5d:8f:c6:97:58:ca:9a:
d2:e6:bd:7c:92:0e:d3:ac:4a:c4:05:e9:dd:5e:d4:
75:84:d2:2b:82:7f:b1:72:d0:2e:00:10:1b:76:7a:
c7:03:b7:6b:fa:28:b0:c2:d8:18:d8:8b:ba:e0:13:
0c:6c:98:7b:e7:f9:b2:a0:a3:f1:24:43:02:0d:29:
a9:d6:59:d1:58:d3:e2:38:e7:c6:5f:e4:b4:9b:41:
22:f8:15:fb:ed:cc:0b:a0:7d:60:13:d2:0f:a9:ca:
c0:86:52:e5:40:49:49:79:53:32:7f:e3:89:09:a5:
36:ea:07:a0:2b:fa:13:fc:d8:7b:f4:ca:9b:f7:48:
8b:73:25:b0:95:24:90:a2:5c:17:57:2f:33:6f:07:
b8:25:6a:6d:d4:aa:91:73:ae:eb:0f:2a:3f:79:c3:
48:5a:83:90:d6:80:64:ff:a8:6c:56:54:ed:9b:c0:
ec:a3:d3:0c:cc:25:26:70:20:3c:4d:a9:fc:24:bb:
26:71:10:ac:02:00:ac:a2:fb:74:c7:41:70:7b:5e:
63:7e:88:1a:2f:c8:0e:5a:d2:c6:01:41:b5:9a:11:
d9:25:47:5b:53:7b:77:6d:9d:47:c7:9d:68:e5:38:
3f:7a:7d:e9:d2:fa:a6:33:7c:1c:86:87:ee:68:d0:
8b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:27:1E:D2:52:0F:EA:77:9C:B3:E6:9D:BF:CA:E3:77:9F:86:E8:49
X509v3 Authority Key Identifier:
keyid:97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:bd:23:7a:f5:8a:30:d8:be:2d:68:1d:fb:04:7d:e4:8f:65:
8c:4c:c4:f5:b8:b2:82:f3:a8:49:28:b9:b1:03:5b:5c:76:94:
f4:d4:a8:06:3c:f9:d2:25:2d:51:86:93:bc:51:a0:10:4e:3c:
a6:a3:3c:d4:8b:0d:e9:c7:f6:6f:91:68:86:c6:10:28:b6:f0:
8e:6e:8f:73:88:6f:cb:07:c2:53:2e:61:84:81:4d:6a:10:cd:
11:ce:bf:73:88:8d:68:40:38:c5:8b:29:4a:33:b2:81:d5:7e:
a0:24:42:43:29:8d:93:a1:cd:c9:26:ec:48:d3:66:21:2c:82:
1c:30:cb:5a:be:94:3c:0d:2b:02:51:2a:02:1c:a6:31:b3:1c:
ee:de:2b:bd:3f:a9:9f:8b:3b:47:08:7c:91:ca:8c:c3:d3:a7:
a1:69:6f:be:25:91:d0:ad:55:e5:f6:5d:10:27:90:a3:e9:51:
c3:d8:ee:c9:0c:ce:41:62:b4:1b:68:a8:a0:bf:44:a6:96:e3:
58:0f:bd:f6:41:7b:36:40:82:32:d1:c6:d2:67:a2:3b:00:41:
a2:e0:62:d1:63:52:51:7f:6b:b4:33:c3:32:b3:d7:9a:f4:f9:
1d:e0:bd:13:fa:83:f3:ad:a2:22:74:a2:53:01:d9:e7:05:c1:
42:e8:aa:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZg4cYSMTDGmfY9z9sr5Ea4nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3YmQ5Yjg2NTMxZTU0NGFmYTAzMDlkOGJlMmE3YmE2OTE2
M2Y5YWQwHhcNMjUwNzIzMTgwMDIwWhcNMjUwNzI0MTgwMDIwWjAzMTEwLwYDVQQD
EygwZTI3MWVkMjUyMGZlYTc3OWNiM2U2OWRiZmNhZTM3NzlmODZlODQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA64NgiSYbHl2PxpdYyprS5r18kg7T
rErEBendXtR1hNIrgn+xctAuABAbdnrHA7dr+iiwwtgY2Iu64BMMbJh75/myoKPx
JEMCDSmp1lnRWNPiOOfGX+S0m0Ei+BX77cwLoH1gE9IPqcrAhlLlQElJeVMyf+OJ
CaU26gegK/oT/Nh79Mqb90iLcyWwlSSQolwXVy8zbwe4JWpt1KqRc67rDyo/ecNI
WoOQ1oBk/6hsVlTtm8Dso9MMzCUmcCA8Tan8JLsmcRCsAgCsovt0x0Fwe15jfoga
L8gOWtLGAUG1mhHZJUdbU3t3bZ1Hx51o5Tg/en3p0vqmM3wchofuaNCLIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA4nHtJSD+p3nLPmnb/K43efhuhJMB8GA1UdIwQY
MBaAFJe9m4ZTHlRK+gMJ2L4qe6aRY/mtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDcyYmhsTWVWRXI2QXduWXZpcDdwcEZqLWEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9kNGJkOGItNTVmNC00NzY1LWFkMjIt
MzQ2MGNjMjY0ODBiLzEvbDcyYmhsTWVWRXI2QXduWXZpcDdwcEZqLWEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi9kNGJkOGItNTVmNC00NzY1LWFkMjItMzQ2MGNjMjY0ODBi
LzEvbDcyYmhsTWVWRXI2QXduWXZpcDdwcEZqLWEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVL0jevWK
MNi+LWgd+wR95I9ljEzE9biygvOoSSi5sQNbXHaU9NSoBjz50iUtUYaTvFGgEE48
pqM81IsN6cf2b5FohsYQKLbwjm6Pc4hvywfCUy5hhIFNahDNEc6/c4iNaEA4xYsp
SjOygdV+oCRCQymNk6HNySbsSNNmISyCHDDLWr6UPA0rAlEqAhymMbMc7t4rvT+p
n4s7Rwh8kcqMw9OnoWlvviWR0K1V5fZdECeQo+lRw9juyQzOQWK0G2iooL9Eppbj
WA+99kF7NkCCMtHG0meiOwBBouBi0WNSUX9rtDPDMrPXmvT5HeC9E/qD862iInSi
UwHZ5wXBQuiqUw==
-----END CERTIFICATE-----
Generated at Thu Jul 24 01:23:11 2025 by rpki-client