Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
File: L42NDO68zXW2BrpJaPXHlG6NR8A.mft (raw, json)
Hash identifier: wjnAWDzDtGigztmOB34zd9sR95tLk2dVOXSqMdyuD5Q=
Subject key identifier: 6C:73:4C:32:38:B1:F0:13:48:78:0C:88:B2:EE:5D:77:A5:66:E3:F4
Authority key identifier: 2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
Certificate issuer: /CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Certificate serial: 01974FD818D14F8EE6CC2F6229E7C06894AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
Manifest number: 0B6D
Signing time: Sun 08 Jun 2025 14:00:51 +0000
Manifest this update: Sun 08 Jun 2025 14:00:51 +0000
Manifest next update: Mon 09 Jun 2025 14:00:51 +0000
Files and hashes: 1: KvErQkIa-7bptS15YPSXyRA9CSc.roa (hash: oCFio8e2SnoXuYWAJDUSo/+OUQCG41H/KpmIERPwk3M=)
2: L42NDO68zXW2BrpJaPXHlG6NR8A.crl (hash: GmHCreDUyDkxP5z0STgBqlwV1Fi5PXund/CUmJIsh4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d8:18:d1:4f:8e:e6:cc:2f:62:29:e7:c0:68:94:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Validity
Not Before: Jun 8 14:00:51 2025 GMT
Not After : Jun 9 14:00:51 2025 GMT
Subject: CN=6c734c3238b1f01348780c88b2ee5d77a566e3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:48:bb:93:61:f9:85:33:7f:42:7d:0e:86:4a:
ac:99:f0:74:f6:e3:19:63:32:28:e5:49:98:87:56:
bc:ff:da:61:9b:15:75:bb:43:4c:a3:93:29:2f:5e:
c5:ba:9e:f7:54:41:b4:8a:dd:47:6a:f2:e7:9b:86:
7e:34:47:37:8b:f5:5c:c2:ec:b8:20:57:22:00:e4:
17:a1:52:ae:13:5e:b2:03:7e:50:cb:a2:91:77:61:
da:4f:e2:8e:bf:e3:e9:39:d7:32:84:db:8b:e0:37:
b9:c8:50:27:a0:de:52:4f:b6:26:33:45:1d:90:be:
63:3b:b0:5a:2c:52:43:c4:77:75:6f:f2:70:da:7f:
9d:1a:6a:35:eb:30:9b:b7:ac:f5:85:c9:dc:21:1e:
7a:da:ed:97:e0:1f:75:4f:ee:6d:75:88:30:b1:5c:
b2:c3:64:1c:31:5c:e9:b3:75:85:ca:5a:c8:d6:6c:
e3:59:9c:b4:af:6e:aa:41:c6:d3:85:99:eb:de:dd:
59:f1:d0:83:9c:43:a5:97:6e:f6:a3:9c:f4:53:91:
cd:de:40:fe:20:6c:a7:84:29:cf:6f:61:34:d6:56:
fe:27:43:79:13:c1:a9:fb:2b:8a:07:cd:92:33:2b:
90:dc:4d:37:dd:c6:84:d7:0c:2e:d3:d3:11:e2:7b:
fc:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:73:4C:32:38:B1:F0:13:48:78:0C:88:B2:EE:5D:77:A5:66:E3:F4
X509v3 Authority Key Identifier:
keyid:2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:d8:69:59:e4:d9:d0:f3:ac:2f:9f:4f:c5:0d:47:cc:92:da:
6a:fc:38:27:bc:d5:ab:67:ed:7e:f6:e6:36:f2:d6:d8:15:ad:
8a:f0:32:8b:6a:80:d1:6e:52:14:60:88:c9:1e:70:22:26:4a:
32:74:8b:d5:f2:cc:14:fb:ca:d8:51:06:2e:a3:f4:e3:77:85:
93:9e:7b:60:69:e1:d1:0f:a9:79:8d:64:b7:4d:4d:68:78:ba:
a1:28:62:e9:39:b9:25:78:3e:e1:ad:e0:80:f8:85:0e:7f:09:
0a:97:2e:fd:3e:bd:69:89:86:1d:08:e7:0d:66:4d:3a:05:51:
d7:5d:a4:57:48:49:cf:a6:c8:d6:60:aa:19:f8:ee:dc:b9:ef:
4b:a3:ba:b2:ce:58:66:73:d8:dc:30:aa:a1:08:9e:7c:eb:ef:
e0:43:06:c3:7d:c7:55:9b:ff:25:6e:a9:9b:ba:5d:ee:86:a2:
33:ec:80:41:0b:8c:08:53:cb:b1:80:f5:0c:92:78:10:dd:f1:
7a:8d:e2:e9:7d:98:0b:4d:55:7d:b0:79:ed:85:23:66:06:5a:
97:1b:86:5a:64:4f:cd:b0:53:9e:1e:41:a8:0e:c6:ae:c5:a6:
10:77:25:80:1b:57:00:20:8b:6c:0e:3a:f1:d3:1a:b8:6c:45:
33:62:6b:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdP2BjRT47mzC9iKefAaJSvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmOGQ4ZDBjZWViY2NkNzViNjA2YmE0OTY4ZjVjNzk0NmU4
ZDQ3YzAwHhcNMjUwNjA4MTQwMDUxWhcNMjUwNjA5MTQwMDUxWjAzMTEwLwYDVQQD
Eyg2YzczNGMzMjM4YjFmMDEzNDg3ODBjODhiMmVlNWQ3N2E1NjZlM2Y0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEi7k2H5hTN/Qn0OhkqsmfB09uMZ
YzIo5UmYh1a8/9phmxV1u0NMo5MpL17Fup73VEG0it1HavLnm4Z+NEc3i/Vcwuy4
IFciAOQXoVKuE16yA35Qy6KRd2HaT+KOv+PpOdcyhNuL4De5yFAnoN5ST7YmM0Ud
kL5jO7BaLFJDxHd1b/Jw2n+dGmo16zCbt6z1hcncIR562u2X4B91T+5tdYgwsVyy
w2QcMVzps3WFylrI1mzjWZy0r26qQcbThZnr3t1Z8dCDnEOll272o5z0U5HN3kD+
IGynhCnPb2E01lb+J0N5E8Gp+yuKB82SMyuQ3E033caE1wwu09MR4nv81wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGxzTDI4sfATSHgMiLLuXXelZuP0MB8GA1UdIwQY
MBaAFC+NjQzuvM11tga6SWj1x5RujUfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDQyTkRPNjh6WFcyQnJwSmFQWEhsRzZOUjhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni80ZjNiYmQtNGE2MS00MmM1LThiMDct
M2NiZDUyNTdiMDNlLzEvTDQyTkRPNjh6WFcyQnJwSmFQWEhsRzZOUjhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni80ZjNiYmQtNGE2MS00MmM1LThiMDctM2NiZDUyNTdiMDNl
LzEvTDQyTkRPNjh6WFcyQnJwSmFQWEhsRzZOUjhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAdhpWeTZ
0POsL59PxQ1HzJLaavw4J7zVq2ftfvbmNvLW2BWtivAyi2qA0W5SFGCIyR5wIiZK
MnSL1fLMFPvK2FEGLqP043eFk557YGnh0Q+peY1kt01NaHi6oShi6Tm5JXg+4a3g
gPiFDn8JCpcu/T69aYmGHQjnDWZNOgVR112kV0hJz6bI1mCqGfju3LnvS6O6ss5Y
ZnPY3DCqoQiefOvv4EMGw33HVZv/JW6pm7pd7oaiM+yAQQuMCFPLsYD1DJJ4EN3x
eo3i6X2YC01VfbB57YUjZgZalxuGWmRPzbBTnh5BqA7GrsWmEHclgBtXACCLbA46
8dMauGxFM2JrcA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 15:49:58 2025 by rpki-client