Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: Y4k4xu8QIse3jrUQiyyVha8KIyzjMO4WxwgLby/JI8s=
Subject key identifier: E2:03:A1:42:1C:9B:7D:5C:85:37:A0:39:BD:9D:06:1C:DE:0F:53:B6
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 0197B77C9005AEF6565F6D249D93A48E6862
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 0224
Signing time: Sat 28 Jun 2025 17:01:23 +0000
Manifest this update: Sat 28 Jun 2025 17:01:23 +0000
Manifest next update: Sun 29 Jun 2025 17:01:23 +0000
Files and hashes: 1: 32WtKH3EfM7-S6v7tTmyQcU-a9s.roa (hash: Fn/80HetfWjEwrwQy2saw9cqkA9VjrY/6O3eDGyjCbw=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: ppgJX/XpRAi8p9vbtawSHLPe0u9+mWClKzxpik/ZgmA=)
3: ef1K6dC6_lGn3rxGTHxMT8fcB0w.roa (hash: KYKxli5ZRinkaBImEiWWBBcr8lpZPoWAqbzOeddaU7I=)
4: pLMH0ozDSiYZXzqiHdSEzphkheE.roa (hash: CFbM9K2hMJ4HkUaVbEdJq2H47xHqfonXY2RvABtKsw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:90:05:ae:f6:56:5f:6d:24:9d:93:a4:8e:68:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Jun 28 17:01:23 2025 GMT
Not After : Jun 29 17:01:23 2025 GMT
Subject: CN=e203a1421c9b7d5c8537a039bd9d061cde0f53b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d1:b9:28:70:ba:f9:7e:e3:bd:3e:b4:1f:2a:
95:79:80:f2:d2:9e:9f:de:fd:8f:2d:99:ad:48:14:
65:0d:b3:bf:74:41:6c:f1:89:6e:01:17:3d:d0:31:
ee:51:26:be:5f:5d:62:75:6a:93:c5:62:16:9d:5e:
7d:da:54:f1:b2:42:2f:13:a8:61:8c:72:3f:32:09:
7a:f7:45:46:11:cc:f1:5c:05:f0:89:d1:4b:51:c6:
ad:ee:8e:6e:60:4f:62:67:b1:40:ef:2c:3f:0f:0f:
d5:87:c9:76:7c:b7:15:f9:9e:ec:17:3c:ee:c5:a5:
7a:4c:9b:e6:70:8b:eb:81:a4:0a:95:1d:1e:db:5a:
4e:13:0d:29:7c:0e:ea:6b:2b:9a:ad:14:19:f1:92:
cf:81:63:32:1f:3e:92:47:aa:11:96:b6:0f:7c:1e:
f9:12:ba:8d:c4:e1:29:2b:76:4f:47:b3:cc:9a:a0:
34:64:39:b1:21:38:34:82:f0:3d:21:fc:f5:92:ef:
0b:da:4c:3a:f9:3c:e8:d3:c0:a0:80:d9:af:84:ae:
48:15:93:ce:ac:d0:87:67:f7:51:aa:ba:fb:ac:63:
3e:97:ac:cd:ab:c0:d3:17:1d:a3:5f:20:61:cf:c1:
e1:f4:27:a2:a3:59:dd:4b:80:1c:50:dc:03:da:50:
99:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:03:A1:42:1C:9B:7D:5C:85:37:A0:39:BD:9D:06:1C:DE:0F:53:B6
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:35:05:cc:4b:ec:d7:e7:c0:eb:04:01:d5:64:a7:2b:ba:d8:
81:8d:10:11:3f:ec:a5:4f:7e:39:85:10:81:d7:30:f8:3d:12:
ea:00:57:9a:63:cc:03:3b:90:d3:57:d4:5d:31:2e:7a:d5:b1:
50:e6:10:17:52:0f:e3:d8:87:27:11:56:df:25:ef:e9:26:ca:
d8:32:38:5c:c4:98:37:c0:10:a2:11:a2:98:e0:2d:89:cf:03:
9a:6e:9c:f3:a4:7b:5e:93:6a:d6:8b:87:35:b7:09:fd:2e:ce:
8c:1c:71:92:1c:79:96:90:7c:a1:09:22:5c:c4:e3:42:f5:6a:
61:b1:9e:f2:d4:7e:83:45:48:1a:83:8c:86:9c:2c:39:8f:79:
ef:44:2d:fb:98:61:5e:70:52:09:ef:16:c5:3a:67:99:c3:a5:
d5:78:f6:b4:a5:5d:dd:8d:c1:7a:f0:a9:d0:67:c7:ac:d3:10:
64:ff:05:81:7d:23:a2:7a:49:d9:5d:19:4c:24:f6:19:61:bd:
55:26:d6:90:63:e4:9a:db:8b:3f:05:fd:82:ec:6d:c9:b2:3d:
09:5d:90:46:a5:47:8a:cb:ae:93:f3:f9:14:95:26:14:16:4a:
00:fb:7d:c7:1e:14:e7:d9:72:82:e4:9b:18:8c:b2:5d:ae:5a:
2a:87:2b:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fJAFrvZWX20knZOkjmhiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkZmVmMmI4MzlhZDA3Nzg2ODMzYjFiZWRjYThiMGIxOTIw
M2UxMTEwHhcNMjUwNjI4MTcwMTIzWhcNMjUwNjI5MTcwMTIzWjAzMTEwLwYDVQQD
EyhlMjAzYTE0MjFjOWI3ZDVjODUzN2EwMzliZDlkMDYxY2RlMGY1M2I2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9G5KHC6+X7jvT60HyqVeYDy0p6f
3v2PLZmtSBRlDbO/dEFs8YluARc90DHuUSa+X11idWqTxWIWnV592lTxskIvE6hh
jHI/Mgl690VGEczxXAXwidFLUcat7o5uYE9iZ7FA7yw/Dw/Vh8l2fLcV+Z7sFzzu
xaV6TJvmcIvrgaQKlR0e21pOEw0pfA7qayuarRQZ8ZLPgWMyHz6SR6oRlrYPfB75
ErqNxOEpK3ZPR7PMmqA0ZDmxITg0gvA9Ifz1ku8L2kw6+Tzo08CggNmvhK5IFZPO
rNCHZ/dRqrr7rGM+l6zNq8DTFx2jXyBhz8Hh9Ceio1ndS4AcUNwD2lCZGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOIDoUIcm31chTegOb2dBhzeD1O2MB8GA1UdIwQY
MBaAFC3+8rg5rQd4aDOxvtyosLGSA+ERMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8wMzU3ZTgtM2VhMC00OTY4LTllZjkt
N2Q3MDUxOWI3NmRhLzEvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8wMzU3ZTgtM2VhMC00OTY4LTllZjktN2Q3MDUxOWI3NmRh
LzEvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOzUFzEvs
1+fA6wQB1WSnK7rYgY0QET/spU9+OYUQgdcw+D0S6gBXmmPMAzuQ01fUXTEuetWx
UOYQF1IP49iHJxFW3yXv6SbK2DI4XMSYN8AQohGimOAtic8Dmm6c86R7XpNq1ouH
NbcJ/S7OjBxxkhx5lpB8oQkiXMTjQvVqYbGe8tR+g0VIGoOMhpwsOY9570Qt+5hh
XnBSCe8WxTpnmcOl1Xj2tKVd3Y3BevCp0GfHrNMQZP8FgX0jonpJ2V0ZTCT2GWG9
VSbWkGPkmtuLPwX9guxtybI9CV2QRqVHisuuk/P5FJUmFBZKAPt9xx4U59lyguSb
GIyyXa5aKocrzw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:20:16 2025 by rpki-client