Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
File: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft (raw, json)
Hash identifier: appZ+tOWwxJ+6bnNGf2benyy9H7H5K9j3x7vilufei8=
Subject key identifier: E9:93:4D:1D:20:33:79:D6:0C:D6:B9:F8:06:CB:B6:1D:B3:AD:04:45
Authority key identifier: 97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
Certificate issuer: /CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Certificate serial: 019922C305CC5619801BAA8E8EEC5BA1B3C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
Manifest number: 106C
Signing time: Sun 07 Sep 2025 06:00:30 +0000
Manifest this update: Sun 07 Sep 2025 06:00:30 +0000
Manifest next update: Mon 08 Sep 2025 06:00:30 +0000
Files and hashes: 1: 8lcVMAvDHKFVWpkIvW003vZxmno.roa (hash: b9AoL9a4Iwp34m1O6gUmOqwjFvFHDHYDPCqNWBeuTCY=)
2: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl (hash: 9uybk8omGU2PLMNAg97k95jidSng/TEmbUwOiASCxkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:05:cc:56:19:80:1b:aa:8e:8e:ec:5b:a1:b3:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Validity
Not Before: Sep 7 06:00:30 2025 GMT
Not After : Sep 8 06:00:30 2025 GMT
Subject: CN=e9934d1d203379d60cd6b9f806cbb61db3ad0445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1d:a0:8b:b6:83:2d:db:ea:83:b6:95:7c:85:
05:04:ac:ff:2f:0e:58:d8:7e:af:08:e1:8e:ac:5e:
66:91:b1:bd:7f:5a:ec:66:8d:13:cc:2d:f8:a2:6b:
32:bd:e1:33:8d:50:1e:29:f2:04:68:55:f6:b2:2d:
47:22:18:87:f5:47:b9:82:96:82:30:fb:fb:e3:3a:
ff:54:ce:cc:25:20:05:d1:e3:bb:a4:f3:77:af:c2:
ad:a3:c4:27:21:85:9c:4f:1a:33:64:42:c4:de:98:
39:58:bb:22:0e:f3:9c:71:3f:f7:b4:e0:d0:05:12:
0f:b2:fa:45:f9:ed:61:a5:b4:57:69:d4:53:80:94:
dc:97:3f:ed:4c:85:9c:25:7d:b5:4b:94:c0:74:57:
c4:f0:79:99:09:fa:48:ea:ae:b8:4d:4c:6f:ac:75:
73:f8:d8:e4:0b:3a:46:c4:f5:70:19:82:af:eb:99:
30:f5:d1:47:08:7e:d2:59:76:26:2a:b6:20:8d:a1:
12:a4:de:41:a6:e9:ca:8c:fa:53:7d:73:0c:d4:8c:
5d:11:e7:50:2e:49:5c:e4:ee:2b:f5:79:0e:2f:a0:
5a:d4:fa:ee:77:bd:44:96:c1:98:04:28:55:28:e6:
11:3f:9b:3e:69:e5:98:c2:84:6a:db:b1:43:38:d8:
d1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:93:4D:1D:20:33:79:D6:0C:D6:B9:F8:06:CB:B6:1D:B3:AD:04:45
X509v3 Authority Key Identifier:
keyid:97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:b5:d6:8d:de:bd:8a:d9:18:a2:d5:9f:cd:76:28:a7:9d:7f:
a5:40:1d:36:7e:ae:0a:9e:c1:d1:10:55:d2:93:82:c9:31:60:
98:2b:2f:8b:73:1a:ab:01:c5:2a:bb:db:66:cb:d6:2d:8a:fe:
5f:3c:28:c8:5a:54:58:5f:19:4c:11:e8:29:ff:5c:e0:47:a2:
40:61:6d:56:4e:67:5a:1d:c1:de:98:af:b1:3e:04:1e:95:fe:
a5:48:f9:4e:08:ff:82:d1:61:86:ae:4a:bc:90:d3:96:4b:01:
50:a9:dd:70:57:60:da:e8:37:cb:cd:18:77:30:7a:81:04:66:
37:8c:ce:0c:0f:43:36:a6:4e:a7:4e:46:f8:d7:4f:bd:c8:ec:
b8:8c:5b:b7:31:04:3d:b5:07:40:86:04:09:1e:ab:cd:1a:9e:
c0:ef:b4:53:1a:48:35:5c:e4:4e:66:eb:d0:02:d5:83:68:26:
8e:7a:d7:c3:da:47:d7:fc:1a:08:6e:34:c5:85:87:ba:a1:75:
ec:6f:27:b2:90:01:42:72:c8:7d:de:bf:38:a6:0d:6e:cd:ea:
ad:5d:73:00:ed:ef:37:09:26:dc:23:93:94:03:c4:94:a0:17:
4b:b2:0d:a7:4f:62:d3:45:1f:f0:a3:cc:7b:59:4d:31:76:a6:
9c:37:5f:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiwwXMVhmAG6qOjuxbobPGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3N2I4YWEwNjNmYzRmMmJiODRhOWY1NmEzYmZhMzhiMmFi
ZWRmOWIwHhcNMjUwOTA3MDYwMDMwWhcNMjUwOTA4MDYwMDMwWjAzMTEwLwYDVQQD
EyhlOTkzNGQxZDIwMzM3OWQ2MGNkNmI5ZjgwNmNiYjYxZGIzYWQwNDQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAph2gi7aDLdvqg7aVfIUFBKz/Lw5Y
2H6vCOGOrF5mkbG9f1rsZo0TzC34omsyveEzjVAeKfIEaFX2si1HIhiH9Ue5gpaC
MPv74zr/VM7MJSAF0eO7pPN3r8Kto8QnIYWcTxozZELE3pg5WLsiDvOccT/3tODQ
BRIPsvpF+e1hpbRXadRTgJTclz/tTIWcJX21S5TAdFfE8HmZCfpI6q64TUxvrHVz
+NjkCzpGxPVwGYKv65kw9dFHCH7SWXYmKrYgjaESpN5BpunKjPpTfXMM1IxdEedQ
Lklc5O4r9XkOL6Ba1Prud71ElsGYBChVKOYRP5s+aeWYwoRq27FDONjR9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOmTTR0gM3nWDNa5+AbLth2zrQRFMB8GA1UdIwQY
MBaAFJd7iqBj/E8ruEqfVqO/o4sqvt+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9iZDU5ZDktNjkwYS00ZmUyLWIyOTUt
N2VjNTEyM2JlMTYyLzEvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9iZDU5ZDktNjkwYS00ZmUyLWIyOTUtN2VjNTEyM2JlMTYy
LzEvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcrXWjd69
itkYotWfzXYop51/pUAdNn6uCp7B0RBV0pOCyTFgmCsvi3MaqwHFKrvbZsvWLYr+
XzwoyFpUWF8ZTBHoKf9c4EeiQGFtVk5nWh3B3pivsT4EHpX+pUj5Tgj/gtFhhq5K
vJDTlksBUKndcFdg2ug3y80YdzB6gQRmN4zODA9DNqZOp05G+NdPvcjsuIxbtzEE
PbUHQIYECR6rzRqewO+0UxpINVzkTmbr0ALVg2gmjnrXw9pH1/waCG40xYWHuqF1
7G8nspABQnLIfd6/OKYNbs3qrV1zAO3vNwkm3COTlAPElKAXS7INp09i00Uf8KPM
e1lNMXamnDdfwQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:22:51 2025 by rpki-client