Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
File: lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft (raw, json)
Hash identifier: atYwzSeZmI7mdn6olqto1N6wUXMSkYcF3SvfuzNE2l4=
Subject key identifier: C4:10:19:93:B4:61:F5:48:F1:98:47:DA:B9:29:7E:6B:D7:8B:48:ED
Authority key identifier: 97:1C:78:B3:05:FB:49:CB:D4:00:5D:44:27:C1:F6:2C:6A:45:5A:68
Certificate issuer: /CN=971c78b305fb49cbd4005d4427c1f62c6a455a68
Certificate serial: 0197518F50CA22DADCD5CEA7F8A39B4506D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lxx4swX7ScvUAF1EJ8H2LGpFWmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
Manifest number: 1581
Signing time: Sun 08 Jun 2025 22:00:36 +0000
Manifest this update: Sun 08 Jun 2025 22:00:36 +0000
Manifest next update: Mon 09 Jun 2025 22:00:36 +0000
Files and hashes: 1: Fs8XEPRvhs2sBrhxNlZzi8XKons.roa (hash: C0hFaordL7p5SUJfrTELAa9KIVrov4I7azhDmZ9FUrw=)
2: lxx4swX7ScvUAF1EJ8H2LGpFWmg.crl (hash: 3PSsarHI77+ZJrvp97cYroOhE2VKkknjtc2mZq3XNvk=)
3: sId5K04MuNzDrV7JjoafXNRATrU.roa (hash: c9K2d3wbOg2QoEGGWWmmlRXcKof1alf7zD4SEHKIWBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lxx4swX7ScvUAF1EJ8H2LGpFWmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:8f:50:ca:22:da:dc:d5:ce:a7:f8:a3:9b:45:06:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=971c78b305fb49cbd4005d4427c1f62c6a455a68
Validity
Not Before: Jun 8 22:00:36 2025 GMT
Not After : Jun 9 22:00:36 2025 GMT
Subject: CN=c4101993b461f548f19847dab9297e6bd78b48ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c7:ce:2f:70:52:84:37:5f:4a:aa:f5:70:00:
02:f3:f3:5a:d6:00:11:3b:f3:00:ec:10:0d:54:2c:
34:36:6c:96:67:1c:c3:33:1b:69:27:ab:e8:f4:7c:
f3:92:41:24:ee:f8:2d:6f:1d:98:dd:97:18:a3:4d:
2a:df:14:f4:82:e8:e9:c6:fa:3c:b6:e0:d4:a3:03:
35:b6:26:78:f6:eb:6a:04:b9:e5:ba:21:45:c7:33:
43:20:9c:ad:2d:8e:65:17:b1:ed:f1:4c:ef:75:1f:
50:9d:84:2a:85:6b:9e:5d:9c:4c:bb:c4:01:da:56:
69:01:51:ed:94:a0:1a:f8:25:2b:15:e8:76:7a:43:
50:18:16:e8:1d:d5:ba:75:53:e6:90:09:46:b3:7e:
15:38:57:25:0e:2f:10:f0:5d:e4:7d:e8:d6:72:af:
4c:22:17:4a:93:bb:96:44:4f:0e:8a:66:7a:99:cc:
07:74:60:bc:b8:e8:35:9f:93:cf:67:48:b0:70:1a:
85:f1:4d:40:8d:9e:cb:b2:f3:97:db:2c:d8:ee:c4:
06:30:3d:34:d8:13:91:83:35:06:85:2d:a5:27:be:
76:9b:78:a6:7c:d7:6c:45:98:b2:e6:5c:59:07:b4:
d9:37:c3:54:cb:9c:7a:54:c8:70:01:fb:af:c6:a1:
d1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:10:19:93:B4:61:F5:48:F1:98:47:DA:B9:29:7E:6B:D7:8B:48:ED
X509v3 Authority Key Identifier:
keyid:97:1C:78:B3:05:FB:49:CB:D4:00:5D:44:27:C1:F6:2C:6A:45:5A:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lxx4swX7ScvUAF1EJ8H2LGpFWmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:5c:81:c4:4b:f2:57:38:d3:70:4f:18:61:33:58:4b:48:e7:
23:bf:2e:2a:e0:24:33:1a:82:0d:19:43:da:45:2e:de:1e:bf:
4e:ba:2e:3c:8f:f2:4b:b6:30:84:37:fb:69:c2:63:3a:ad:3f:
4e:fe:01:82:07:23:4b:84:95:40:9c:b7:94:93:f1:74:05:98:
d7:86:de:a3:01:77:cd:5f:45:6e:61:35:d1:6d:2d:bb:06:0c:
f1:75:fb:80:80:ad:f9:64:d0:50:bf:ee:bf:ac:3c:fb:15:b4:
15:1b:bf:b7:05:b2:e2:00:21:95:bf:20:cc:8b:3c:d5:87:ab:
0d:c4:c9:1f:f0:86:b0:b1:e2:bb:a9:df:ef:36:ab:b0:24:fe:
3a:da:49:b4:27:6c:0d:bf:24:ad:90:4c:14:76:b2:2d:0d:fb:
e9:46:57:56:e7:66:49:4a:f4:e5:d3:aa:cf:6d:7d:34:2e:3e:
3f:f6:e5:3a:a7:99:ad:8b:7c:e3:9f:ff:e1:02:e8:38:75:2c:
e0:63:22:e5:5c:22:3b:58:6f:cd:e3:60:df:a0:fb:f9:3a:64:
3f:7b:96:5a:fa:4e:83:bf:ba:1d:6b:e9:b6:59:a7:3d:cd:82:
50:df:65:92:48:5e:8c:a5:56:03:66:13:42:61:6f:87:f4:46:
c1:2f:b2:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdRj1DKItrc1c6n+KObRQbWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3MWM3OGIzMDVmYjQ5Y2JkNDAwNWQ0NDI3YzFmNjJjNmE0
NTVhNjgwHhcNMjUwNjA4MjIwMDM2WhcNMjUwNjA5MjIwMDM2WjAzMTEwLwYDVQQD
EyhjNDEwMTk5M2I0NjFmNTQ4ZjE5ODQ3ZGFiOTI5N2U2YmQ3OGI0OGVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp8fOL3BShDdfSqr1cAAC8/Na1gAR
O/MA7BANVCw0NmyWZxzDMxtpJ6vo9HzzkkEk7vgtbx2Y3ZcYo00q3xT0gujpxvo8
tuDUowM1tiZ49utqBLnluiFFxzNDIJytLY5lF7Ht8UzvdR9QnYQqhWueXZxMu8QB
2lZpAVHtlKAa+CUrFeh2ekNQGBboHdW6dVPmkAlGs34VOFclDi8Q8F3kfejWcq9M
IhdKk7uWRE8OimZ6mcwHdGC8uOg1n5PPZ0iwcBqF8U1AjZ7LsvOX2yzY7sQGMD00
2BORgzUGhS2lJ752m3imfNdsRZiy5lxZB7TZN8NUy5x6VMhwAfuvxqHRjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMQQGZO0YfVI8ZhH2rkpfmvXi0jtMB8GA1UdIwQY
MBaAFJcceLMF+0nL1ABdRCfB9ixqRVpoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHh4NHN3WDdTY3ZVQUYxRUo4SDJMR3BGV21nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9kZjNhMTUtMmU0OS00ZDhlLTg1NWEt
MWMyNzU4NjUxZWZhLzEvbHh4NHN3WDdTY3ZVQUYxRUo4SDJMR3BGV21nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9kZjNhMTUtMmU0OS00ZDhlLTg1NWEtMWMyNzU4NjUxZWZh
LzEvbHh4NHN3WDdTY3ZVQUYxRUo4SDJMR3BGV21nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe1yBxEvy
VzjTcE8YYTNYS0jnI78uKuAkMxqCDRlD2kUu3h6/TrouPI/yS7YwhDf7acJjOq0/
Tv4BggcjS4SVQJy3lJPxdAWY14beowF3zV9FbmE10W0tuwYM8XX7gICt+WTQUL/u
v6w8+xW0FRu/twWy4gAhlb8gzIs81YerDcTJH/CGsLHiu6nf7zarsCT+OtpJtCds
Db8krZBMFHayLQ376UZXVudmSUr05dOqz219NC4+P/blOqeZrYt845//4QLoOHUs
4GMi5VwiO1hvzeNg36D7+TpkP3uWWvpOg7+6HWvptlmnPc2CUN9lkkhejKVWA2YT
QmFvh/RGwS+ydA==
-----END CERTIFICATE-----
Generated at Mon Jun 9 04:48:16 2025 by rpki-client