Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft
File: dLJ8XVaEhkhT31uBVyIS7eMizgo.mft (raw, json)
Hash identifier: wo6sPddhNLpt9E/KypbDr7vo/OwURJuiv/XV501q98g=
Subject key identifier: E3:5D:55:71:37:26:1A:30:39:C3:0F:C9:87:99:2D:3D:71:03:65:20
Authority key identifier: 74:B2:7C:5D:56:84:86:48:53:DF:5B:81:57:22:12:ED:E3:22:CE:0A
Certificate issuer: /CN=74b27c5d5684864853df5b81572212ede322ce0a
Certificate serial: 0198D5BC3ABC19FCC394DB48B974AF92AFBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLJ8XVaEhkhT31uBVyIS7eMizgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft
Manifest number: 031E
Signing time: Sat 23 Aug 2025 07:02:19 +0000
Manifest this update: Sat 23 Aug 2025 07:02:19 +0000
Manifest next update: Sun 24 Aug 2025 07:02:19 +0000
Files and hashes: 1: dLJ8XVaEhkhT31uBVyIS7eMizgo.crl (hash: w+U8UOmAVLhmjc9s6t9t4DsthRCxUVBR6n+aWkMLqP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLJ8XVaEhkhT31uBVyIS7eMizgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:3a:bc:19:fc:c3:94:db:48:b9:74:af:92:af:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b27c5d5684864853df5b81572212ede322ce0a
Validity
Not Before: Aug 23 07:02:19 2025 GMT
Not After : Aug 24 07:02:19 2025 GMT
Subject: CN=e35d557137261a3039c30fc987992d3d71036520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f1:da:a7:0a:32:81:1e:f4:77:ae:37:48:bc:
ca:69:4a:8f:58:ad:32:4b:08:a9:d2:c2:69:e1:4f:
f7:3a:fd:88:cb:c3:ad:00:fb:5b:1f:75:6e:f0:81:
71:ca:1c:63:a6:16:ab:b8:58:14:bd:03:1d:c5:ef:
da:07:d3:9f:2a:cd:1f:fa:37:14:04:de:d7:97:1a:
0b:9f:17:ed:0b:26:94:97:a2:3d:fc:e7:55:be:47:
d4:cc:6e:8a:7c:02:60:ac:d1:59:2b:61:44:54:f4:
86:a5:36:6e:4c:15:ac:90:09:a3:f7:b6:0e:14:3c:
0c:9f:d7:d3:c7:91:49:e9:42:c7:e8:47:91:0e:4e:
5c:fe:d1:4b:11:e3:c6:2c:7a:81:2b:db:18:15:83:
65:44:2c:67:1e:ce:58:71:26:27:72:27:5c:14:a6:
fe:3b:78:78:37:1c:ae:23:0a:96:9a:18:88:8a:ea:
0c:59:1b:57:23:fd:71:e6:cc:fe:e4:13:5c:ef:3a:
e1:c8:2c:b1:69:7e:49:8d:d6:87:b6:8c:82:22:71:
28:50:21:84:3f:17:c3:85:b8:79:8a:3c:75:df:c7:
a5:bc:c8:00:8d:c8:94:ec:88:bc:9c:4f:16:8c:83:
5d:81:af:b8:84:e2:85:49:4f:99:fb:e5:c7:17:bc:
90:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:5D:55:71:37:26:1A:30:39:C3:0F:C9:87:99:2D:3D:71:03:65:20
X509v3 Authority Key Identifier:
keyid:74:B2:7C:5D:56:84:86:48:53:DF:5B:81:57:22:12:ED:E3:22:CE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLJ8XVaEhkhT31uBVyIS7eMizgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:33:47:b3:d3:64:b5:1c:ff:bc:9d:d9:b2:87:b5:7b:f6:3e:
58:4e:d6:8c:ff:c9:16:77:2b:96:ad:a3:a8:74:da:c9:63:6f:
c2:ff:14:72:93:19:ac:6c:2c:04:36:4a:b7:9d:e9:7b:9e:c7:
77:fa:dc:93:ab:f6:fc:7c:47:65:0f:c4:c3:85:cd:2c:8f:6b:
88:bd:e4:73:19:cf:79:3b:42:d8:98:75:9f:1d:5a:99:8e:7e:
46:e5:b8:03:53:7e:a0:bc:04:a9:a7:82:1f:88:b0:46:65:e7:
5b:63:b8:a7:75:9a:3c:13:b1:a0:18:4d:df:47:9e:43:8d:79:
88:07:15:e4:a4:25:88:f5:35:29:0c:1b:8e:d5:d7:8f:0b:a5:
94:85:ae:e8:b3:91:ff:65:e4:28:6c:98:de:66:d8:da:19:08:
64:4b:fa:26:f6:cc:c1:15:55:9e:70:c4:28:ce:56:c1:93:6d:
b9:45:f4:33:91:ee:29:64:95:73:47:6e:9f:e0:4e:d5:29:d2:
65:e6:3d:89:aa:51:0a:d3:b6:d2:a7:7a:17:d9:ad:a4:59:36:
4b:b4:52:4c:bf:ca:4b:30:c8:dc:f5:7f:e4:08:df:17:a7:47:
e0:f9:ab:85:83:31:c6:b4:fa:73:b5:6c:f4:cc:01:3d:4c:6b:
8d:4f:32:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVvDq8GfzDlNtIuXSvkq+9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0YjI3YzVkNTY4NDg2NDg1M2RmNWI4MTU3MjIxMmVkZTMy
MmNlMGEwHhcNMjUwODIzMDcwMjE5WhcNMjUwODI0MDcwMjE5WjAzMTEwLwYDVQQD
EyhlMzVkNTU3MTM3MjYxYTMwMzljMzBmYzk4Nzk5MmQzZDcxMDM2NTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/HapwoygR70d643SLzKaUqPWK0y
Swip0sJp4U/3Ov2Iy8OtAPtbH3Vu8IFxyhxjpharuFgUvQMdxe/aB9OfKs0f+jcU
BN7XlxoLnxftCyaUl6I9/OdVvkfUzG6KfAJgrNFZK2FEVPSGpTZuTBWskAmj97YO
FDwMn9fTx5FJ6ULH6EeRDk5c/tFLEePGLHqBK9sYFYNlRCxnHs5YcSYncidcFKb+
O3h4NxyuIwqWmhiIiuoMWRtXI/1x5sz+5BNc7zrhyCyxaX5JjdaHtoyCInEoUCGE
PxfDhbh5ijx138elvMgAjciU7Ii8nE8WjINdga+4hOKFSU+Z++XHF7yQ2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFONdVXE3JhowOcMPyYeZLT1xA2UgMB8GA1UdIwQY
MBaAFHSyfF1WhIZIU99bgVciEu3jIs4KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZExKOFhWYUVoa2hUMzF1QlZ5SVM3ZU1pemdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8yOTk2NTYtNzQ0YS00ZGFhLThjZmQt
MDEwYTk4NTZmNzg1LzEvZExKOFhWYUVoa2hUMzF1QlZ5SVM3ZU1pemdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi8yOTk2NTYtNzQ0YS00ZGFhLThjZmQtMDEwYTk4NTZmNzg1
LzEvZExKOFhWYUVoa2hUMzF1QlZ5SVM3ZU1pemdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASDNHs9Nk
tRz/vJ3Zsoe1e/Y+WE7WjP/JFncrlq2jqHTayWNvwv8UcpMZrGwsBDZKt53pe57H
d/rck6v2/HxHZQ/Ew4XNLI9riL3kcxnPeTtC2Jh1nx1amY5+RuW4A1N+oLwEqaeC
H4iwRmXnW2O4p3WaPBOxoBhN30eeQ415iAcV5KQliPU1KQwbjtXXjwullIWu6LOR
/2XkKGyY3mbY2hkIZEv6JvbMwRVVnnDEKM5WwZNtuUX0M5HuKWSVc0dun+BO1SnS
ZeY9iapRCtO20qd6F9mtpFk2S7RSTL/KSzDI3PV/5AjfF6dH4PmrhYMxxrT6c7Vs
9MwBPUxrjU8ytg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:22:39 2025 by rpki-client