Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft
File: Lokc9xG_fhxC4ILWoviaBL7rldE.mft (raw, json)
Hash identifier: YTDJNGgTLVVy+iWktxMbqFvnoQ8bkh1fft98qMe43TE=
Subject key identifier: 65:56:36:F8:31:A0:76:3A:5F:C4:84:3C:06:4E:3B:DC:D8:B5:17:A8
Authority key identifier: 2E:89:1C:F7:11:BF:7E:1C:42:E0:82:D6:A2:F8:9A:04:BE:EB:95:D1
Certificate issuer: /CN=2e891cf711bf7e1c42e082d6a2f89a04beeb95d1
Certificate serial: 0197CC83C3FD1D788FD45AC6C65362EC910C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lokc9xG_fhxC4ILWoviaBL7rldE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft
Manifest number: 01C4
Signing time: Wed 02 Jul 2025 19:01:16 +0000
Manifest this update: Wed 02 Jul 2025 19:01:16 +0000
Manifest next update: Thu 03 Jul 2025 19:01:16 +0000
Files and hashes: 1: Lokc9xG_fhxC4ILWoviaBL7rldE.crl (hash: /tQSaS/nWBcV6Fp8ggtgTYLLDTfQ7NEblllELiUOwKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lokc9xG_fhxC4ILWoviaBL7rldE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 19:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:83:c3:fd:1d:78:8f:d4:5a:c6:c6:53:62:ec:91:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e891cf711bf7e1c42e082d6a2f89a04beeb95d1
Validity
Not Before: Jul 2 19:01:16 2025 GMT
Not After : Jul 3 19:01:16 2025 GMT
Subject: CN=655636f831a0763a5fc4843c064e3bdcd8b517a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:19:9c:53:89:96:53:e3:16:44:9f:dd:8e:42:
fe:30:6f:65:95:bc:9f:91:3c:c8:1e:7d:16:16:bd:
f3:ef:83:a6:b6:0d:c9:33:51:2d:ee:22:b7:76:cc:
62:eb:b4:64:51:af:a6:90:c9:81:48:25:e4:92:97:
cc:08:38:31:2d:6f:cf:db:d4:b3:5d:fb:f5:aa:c2:
64:23:d7:14:29:4a:13:2e:dc:27:1a:27:9c:8d:9a:
dc:e1:87:4b:67:8e:ce:f8:80:87:b7:10:ac:75:5d:
fd:f8:a0:b4:84:be:04:cd:5d:15:63:e8:8d:b8:96:
5f:dd:b9:49:03:0b:80:87:66:49:03:a9:d9:5b:1a:
8f:8d:af:1e:ed:0b:37:e5:8c:8f:bf:9d:62:87:f5:
e1:e1:f7:fc:8e:92:db:51:38:f1:74:ea:c3:d6:1d:
ce:ee:03:c3:fe:4a:fc:6b:16:09:71:c0:2e:15:1e:
07:9d:69:fb:fa:68:6b:46:c7:e7:8c:5c:7a:8c:6f:
79:e2:35:e9:d9:ce:41:d9:9f:2e:8c:13:8d:55:bd:
cc:2f:64:35:bb:94:c4:bd:0d:7b:9c:23:eb:62:fd:
46:7f:36:fe:0d:67:99:f4:70:64:f4:f4:e1:1d:00:
5b:8a:7c:e9:39:81:9f:27:1f:34:90:4e:d1:bb:83:
01:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:56:36:F8:31:A0:76:3A:5F:C4:84:3C:06:4E:3B:DC:D8:B5:17:A8
X509v3 Authority Key Identifier:
keyid:2E:89:1C:F7:11:BF:7E:1C:42:E0:82:D6:A2:F8:9A:04:BE:EB:95:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lokc9xG_fhxC4ILWoviaBL7rldE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/50b550-f85e-489b-8473-e0365381bb85/1/Lokc9xG_fhxC4ILWoviaBL7rldE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:51:72:b4:64:24:29:5e:ab:3e:b8:9c:43:1d:d3:e2:c4:16:
4e:93:f2:d3:da:60:5e:a2:a3:a8:fb:80:cc:05:05:73:cc:7d:
e0:80:c5:7a:77:97:6f:7e:09:93:2e:6b:0d:8b:f3:1d:c0:79:
12:55:af:43:78:5a:f6:f4:78:ea:cb:a1:40:f3:17:f5:46:45:
1a:c5:b3:4e:eb:be:58:e7:7f:d5:11:32:95:b7:52:3d:95:f1:
43:a4:a1:31:b8:4b:a5:65:e7:88:6a:69:27:ec:dd:41:02:62:
c9:26:7e:19:8c:70:32:59:59:f0:87:0c:e7:8f:47:53:bf:fc:
bc:16:b8:96:88:fa:54:b1:ee:2d:6e:ea:ad:d2:30:77:92:08:
64:54:30:b6:05:16:91:ac:fb:b3:63:fe:68:29:fe:85:57:7b:
5e:95:ff:61:27:ba:8a:ec:72:32:ad:28:e6:57:c6:0e:b9:e8:
e2:6a:37:70:94:8e:a1:70:1c:95:49:e3:0d:fd:3b:8c:66:f5:
55:8f:31:48:a1:66:8c:ae:d3:33:41:6f:b7:df:ac:7e:fa:d8:
df:18:78:7c:f6:fd:fa:69:14:09:25:b2:8e:81:c2:aa:2b:f4:
42:74:a9:8e:82:84:90:34:76:d1:e7:c2:a6:d8:a2:af:47:48:
31:e9:fb:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfMg8P9HXiP1FrGxlNi7JEMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlODkxY2Y3MTFiZjdlMWM0MmUwODJkNmEyZjg5YTA0YmVl
Yjk1ZDEwHhcNMjUwNzAyMTkwMTE2WhcNMjUwNzAzMTkwMTE2WjAzMTEwLwYDVQQD
Eyg2NTU2MzZmODMxYTA3NjNhNWZjNDg0M2MwNjRlM2JkY2Q4YjUxN2E4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRmcU4mWU+MWRJ/djkL+MG9llbyf
kTzIHn0WFr3z74Omtg3JM1Et7iK3dsxi67RkUa+mkMmBSCXkkpfMCDgxLW/P29Sz
Xfv1qsJkI9cUKUoTLtwnGiecjZrc4YdLZ47O+ICHtxCsdV39+KC0hL4EzV0VY+iN
uJZf3blJAwuAh2ZJA6nZWxqPja8e7Qs35YyPv51ih/Xh4ff8jpLbUTjxdOrD1h3O
7gPD/kr8axYJccAuFR4HnWn7+mhrRsfnjFx6jG954jXp2c5B2Z8ujBONVb3ML2Q1
u5TEvQ17nCPrYv1Gfzb+DWeZ9HBk9PThHQBbinzpOYGfJx80kE7Ru4MBLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGVWNvgxoHY6X8SEPAZOO9zYtReoMB8GA1UdIwQY
MBaAFC6JHPcRv34cQuCC1qL4mgS+65XRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTG9rYzl4R19maHhDNElMV292aWFCTDdybGRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS81MGI1NTAtZjg1ZS00ODliLTg0NzMt
ZTAzNjUzODFiYjg1LzEvTG9rYzl4R19maHhDNElMV292aWFCTDdybGRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS81MGI1NTAtZjg1ZS00ODliLTg0NzMtZTAzNjUzODFiYjg1
LzEvTG9rYzl4R19maHhDNElMV292aWFCTDdybGRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsFFytGQk
KV6rPricQx3T4sQWTpPy09pgXqKjqPuAzAUFc8x94IDFeneXb34Jky5rDYvzHcB5
ElWvQ3ha9vR46suhQPMX9UZFGsWzTuu+WOd/1REylbdSPZXxQ6ShMbhLpWXniGpp
J+zdQQJiySZ+GYxwMllZ8IcM549HU7/8vBa4loj6VLHuLW7qrdIwd5IIZFQwtgUW
kaz7s2P+aCn+hVd7XpX/YSe6iuxyMq0o5lfGDrno4mo3cJSOoXAclUnjDf07jGb1
VY8xSKFmjK7TM0Fvt9+sfvrY3xh4fPb9+mkUCSWyjoHCqiv0QnSpjoKEkDR20efC
ptiir0dIMen7VA==
-----END CERTIFICATE-----
Generated at Thu Jul 3 02:43:39 2025 by rpki-client