Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
File: lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft (raw, json)
Hash identifier: /g3x4bmVP8/zlczCNzdgEcyNUM0NoDX597oZbThiw3o=
Subject key identifier: A4:51:99:88:CC:BD:AA:12:3F:3E:45:2B:D0:09:D5:0E:6A:AE:EA:6A
Authority key identifier: 94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
Certificate issuer: /CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Certificate serial: 019922FA1381841E9B087EAFBCE5372AFA7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
Manifest number: 1098
Signing time: Sun 07 Sep 2025 07:00:38 +0000
Manifest this update: Sun 07 Sep 2025 07:00:38 +0000
Manifest next update: Mon 08 Sep 2025 07:00:38 +0000
Files and hashes: 1: H33ZXIhbVy7xU6xnvVekDxlllNY.roa (hash: gLytCIr8moIJFxRmjTSWLIbls8kZi2qpSK/USMqXNdU=)
2: lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl (hash: JZks7TnxRzZT1yW5Z/5SDmPoQBZtYxVmYrvuRi0yx/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:13:81:84:1e:9b:08:7e:af:bc:e5:37:2a:fa:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Validity
Not Before: Sep 7 07:00:38 2025 GMT
Not After : Sep 8 07:00:38 2025 GMT
Subject: CN=a4519988ccbdaa123f3e452bd009d50e6aaeea6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ed:5c:06:3b:70:22:04:3d:99:b1:fb:65:6a:
ae:c3:33:c0:cf:bf:45:ed:33:80:d9:4c:98:f3:f0:
18:df:c9:9b:e2:e5:72:b0:a8:94:70:b4:5f:d8:83:
b5:0b:67:39:69:1b:1e:a7:a6:08:86:c8:d6:bd:42:
fa:0a:ce:ec:4d:53:6e:af:06:24:1d:d9:b6:f6:82:
79:f0:ff:55:b8:51:e1:21:eb:ab:04:61:4a:be:4c:
22:87:84:be:ef:31:b9:ef:5d:d1:6c:ea:68:f6:1d:
69:80:0d:69:09:87:a6:12:03:a4:13:6b:a3:c2:2e:
55:39:94:8a:52:aa:ec:46:04:f1:ba:f8:3d:09:57:
75:ad:d8:5c:07:1f:f8:e5:db:f1:b4:17:a8:0d:61:
7a:10:f6:45:a4:17:aa:f3:95:e1:4b:18:bf:21:88:
e0:8d:75:ff:fb:8f:6a:7d:67:5d:f5:2c:08:d1:a1:
c3:53:94:88:a1:0f:db:5a:74:d3:a1:ee:f7:a1:6a:
87:c4:2f:36:ef:88:ed:fd:32:50:54:26:73:60:5b:
01:56:62:8d:59:b7:2a:8e:4d:9b:84:92:fb:84:01:
c7:f9:cc:5b:9c:f5:69:ea:e9:ae:0d:07:70:11:7e:
82:c4:5f:45:97:c1:1d:ee:a3:9d:8c:ba:8c:55:d8:
b9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:51:99:88:CC:BD:AA:12:3F:3E:45:2B:D0:09:D5:0E:6A:AE:EA:6A
X509v3 Authority Key Identifier:
keyid:94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:bc:0d:6e:15:39:ea:d6:95:a6:cb:ab:07:ab:5e:d6:49:ff:
1b:41:a1:f2:de:ee:ac:2a:3e:bb:a4:d1:e0:f6:b6:23:83:fe:
18:62:f4:ff:85:f9:df:f1:5d:d6:fa:60:46:46:6c:9f:09:58:
d7:a4:22:6d:61:ab:fd:8a:5f:73:4a:0c:83:73:35:64:65:8e:
95:ee:af:10:ca:06:ca:8d:38:45:78:3a:14:3d:7f:cd:1e:71:
9b:eb:41:d5:fa:f7:34:fd:7d:70:5c:94:b1:66:5e:00:67:25:
6b:22:4b:3e:ff:16:70:12:67:c8:9b:98:d1:0f:a3:55:d2:7c:
7e:d5:4b:e2:ba:5b:34:23:f7:a1:d2:5b:44:fc:6e:87:fe:c9:
c8:66:23:bf:d1:18:02:b9:f8:51:02:d7:ab:02:c4:e7:2e:70:
bb:a2:b7:94:76:89:ed:8c:4e:05:06:4d:54:3f:31:5c:20:85:
ca:46:a9:25:ee:c5:e9:ce:49:7d:24:e0:58:64:d5:43:44:15:
19:b3:21:5f:a4:78:84:d7:a7:28:09:fc:30:00:ae:bf:3a:f4:
1b:8b:d5:a6:e1:d3:78:0a:ca:40:b1:9f:16:0f:3f:bb:67:0c:
cf:3d:7e:fd:cb:49:26:f5:d6:97:ec:04:90:52:fc:2a:56:ec:
9f:ae:02:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+hOBhB6bCH6vvOU3Kvp7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0M2JjNTc2NzMyMzc0ZThkODlkNzAxM2FiMzYzMGI2ZTBh
OWYxOWEwHhcNMjUwOTA3MDcwMDM4WhcNMjUwOTA4MDcwMDM4WjAzMTEwLwYDVQQD
EyhhNDUxOTk4OGNjYmRhYTEyM2YzZTQ1MmJkMDA5ZDUwZTZhYWVlYTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgu1cBjtwIgQ9mbH7ZWquwzPAz79F
7TOA2UyY8/AY38mb4uVysKiUcLRf2IO1C2c5aRsep6YIhsjWvUL6Cs7sTVNurwYk
Hdm29oJ58P9VuFHhIeurBGFKvkwih4S+7zG5713RbOpo9h1pgA1pCYemEgOkE2uj
wi5VOZSKUqrsRgTxuvg9CVd1rdhcBx/45dvxtBeoDWF6EPZFpBeq85XhSxi/IYjg
jXX/+49qfWdd9SwI0aHDU5SIoQ/bWnTToe73oWqHxC8274jt/TJQVCZzYFsBVmKN
Wbcqjk2bhJL7hAHH+cxbnPVp6umuDQdwEX6CxF9Fl8Ed7qOdjLqMVdi5VQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKRRmYjMvaoSPz5FK9AJ1Q5qrupqMB8GA1UdIwQY
MBaAFJQ7xXZzI3To2J1wE6s2MLbgqfGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbER2RmRuTWpkT2pZblhBVHF6WXd0dUNwOFpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9iOGQwNjUtZWQ4MS00MDllLWIxZjEt
NzZhYjNmY2ExZjMyLzEvbER2RmRuTWpkT2pZblhBVHF6WXd0dUNwOFpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS9iOGQwNjUtZWQ4MS00MDllLWIxZjEtNzZhYjNmY2ExZjMy
LzEvbER2RmRuTWpkT2pZblhBVHF6WXd0dUNwOFpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM7wNbhU5
6taVpsurB6te1kn/G0Gh8t7urCo+u6TR4Pa2I4P+GGL0/4X53/Fd1vpgRkZsnwlY
16QibWGr/Ypfc0oMg3M1ZGWOle6vEMoGyo04RXg6FD1/zR5xm+tB1fr3NP19cFyU
sWZeAGclayJLPv8WcBJnyJuY0Q+jVdJ8ftVL4rpbNCP3odJbRPxuh/7JyGYjv9EY
Arn4UQLXqwLE5y5wu6K3lHaJ7YxOBQZNVD8xXCCFykapJe7F6c5JfSTgWGTVQ0QV
GbMhX6R4hNenKAn8MACuvzr0G4vVpuHTeArKQLGfFg8/u2cMzz1+/ctJJvXWl+wE
kFL8Klbsn64C+A==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:50:14 2025 by rpki-client