Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
File: legTEe8dNuzG0SXjbILCb5FbDfc.mft (raw, json)
Hash identifier: PaK/rpel1TMiWVgJo1fqswUJobECff9O3BcTw3eP7Ko=
Subject key identifier: 29:59:55:E0:02:6A:53:EE:4A:33:65:95:F2:95:4B:0F:80:24:A5:E0
Authority key identifier: 95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
Certificate issuer: /CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Certificate serial: 0198D473D29B4B0B3CAE2F7CDA7E8E708D70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
Manifest number: 11AB
Signing time: Sat 23 Aug 2025 01:03:36 +0000
Manifest this update: Sat 23 Aug 2025 01:03:36 +0000
Manifest next update: Sun 24 Aug 2025 01:03:36 +0000
Files and hashes: 1: WYTqj2Ru4b6Ds31lFp0qL0GBiG0.roa (hash: TiMpifh1/6heVxOwrxdYBK/lz/TeczLDX2jTHHgJqNw=)
2: legTEe8dNuzG0SXjbILCb5FbDfc.crl (hash: 6gO7tQxB8CCPKyaUUseInGgffedkdAbf4phPE2xjpmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:d2:9b:4b:0b:3c:ae:2f:7c:da:7e:8e:70:8d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Validity
Not Before: Aug 23 01:03:36 2025 GMT
Not After : Aug 24 01:03:36 2025 GMT
Subject: CN=295955e0026a53ee4a336595f2954b0f8024a5e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:73:9b:ed:2a:0e:96:50:b4:e7:92:97:05:50:
39:11:dc:50:c1:2a:97:96:2b:06:69:b3:49:f2:1e:
6d:29:22:db:9e:f5:c3:35:1c:12:3a:c9:55:50:f1:
3c:28:be:76:5a:e4:7b:78:ce:15:ae:0d:bc:fc:d9:
97:59:c3:ac:fd:90:f9:a7:cf:97:e7:11:72:ed:a3:
b9:a3:8d:d9:28:46:cd:05:44:bf:5a:74:82:8a:e4:
2f:0d:aa:e9:0b:2c:59:da:8e:73:2d:c0:0a:3e:f1:
8a:9a:f6:2a:e3:ae:b2:e2:68:c4:97:b1:64:64:14:
b7:54:f8:bd:ef:dc:3b:e5:7a:6a:e8:d9:bf:0a:1a:
d0:8b:a2:40:2b:96:9a:fd:04:ae:b1:e0:14:16:5d:
cb:4c:d5:ec:72:0a:64:3c:9b:2c:c0:d7:49:1a:86:
9e:0b:a9:a5:fc:bd:d8:dc:0d:00:5c:46:e6:dc:7c:
81:80:dd:70:c9:9a:a8:23:ed:88:2d:51:85:54:71:
c2:46:e0:3e:50:23:23:63:05:67:58:02:e4:6d:4e:
0a:82:e6:1c:ca:2d:dd:1e:36:22:ad:95:43:cd:60:
46:a3:cc:43:21:d9:27:10:4b:85:34:1c:e4:77:20:
c8:ad:23:7f:a6:65:94:65:8b:c0:fa:09:36:ff:10:
ef:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:59:55:E0:02:6A:53:EE:4A:33:65:95:F2:95:4B:0F:80:24:A5:E0
X509v3 Authority Key Identifier:
keyid:95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:56:70:bd:09:f8:5f:5f:76:1c:28:ec:db:59:9a:c2:1a:5b:
96:1f:36:7e:54:2a:9a:b7:4a:6f:be:b8:a1:81:08:33:5f:46:
29:67:da:26:60:26:b4:3b:6b:ab:68:94:d2:29:31:33:b6:ea:
fd:4c:20:6b:ec:50:e9:13:64:20:39:78:b6:9d:c8:4a:06:dd:
e6:7c:8d:db:c8:3c:de:7d:14:59:30:73:a7:f4:a3:25:7a:0f:
b1:bf:b0:56:92:62:b6:13:83:e5:7d:28:70:92:7e:9b:27:35:
07:41:9a:dc:ae:f1:49:82:fb:ea:8d:ef:aa:de:b3:09:f8:8c:
35:ee:54:54:f7:da:fc:84:5b:03:01:77:96:95:14:e1:76:6d:
62:37:13:b3:52:07:e4:26:f3:4d:03:45:e0:fd:f7:51:33:88:
a7:00:42:c3:2e:24:fc:f5:c6:91:71:be:64:59:c8:71:08:4f:
19:24:0c:3c:a1:ef:8c:5c:c0:0b:94:5b:21:0c:c5:40:95:e6:
f4:92:6b:8f:5f:33:f3:f3:6c:3f:09:32:f7:53:63:86:ea:dc:
bd:f3:72:be:08:c7:1a:f7:bd:97:a2:99:5f:73:25:7e:3b:02:
14:64:46:b3:cc:35:ca:d4:3d:93:3f:04:01:37:fd:df:b7:49:
23:19:4e:b8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc9KbSws8ri982n6OcI1wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ZTgxMzExZWYxZDM2ZWNjNmQxMjVlMzZjODJjMjZmOTE1
YjBkZjcwHhcNMjUwODIzMDEwMzM2WhcNMjUwODI0MDEwMzM2WjAzMTEwLwYDVQQD
EygyOTU5NTVlMDAyNmE1M2VlNGEzMzY1OTVmMjk1NGIwZjgwMjRhNWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3Ob7SoOllC055KXBVA5EdxQwSqX
lisGabNJ8h5tKSLbnvXDNRwSOslVUPE8KL52WuR7eM4Vrg28/NmXWcOs/ZD5p8+X
5xFy7aO5o43ZKEbNBUS/WnSCiuQvDarpCyxZ2o5zLcAKPvGKmvYq466y4mjEl7Fk
ZBS3VPi979w75Xpq6Nm/ChrQi6JAK5aa/QSuseAUFl3LTNXscgpkPJsswNdJGoae
C6ml/L3Y3A0AXEbm3HyBgN1wyZqoI+2ILVGFVHHCRuA+UCMjYwVnWALkbU4KguYc
yi3dHjYirZVDzWBGo8xDIdknEEuFNBzkdyDIrSN/pmWUZYvA+gk2/xDvoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFClZVeACalPuSjNllfKVSw+AJKXgMB8GA1UdIwQY
MBaAFJXoExHvHTbsxtEl42yCwm+RWw33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGVnVEVlOGROdXpHMFNYamJJTENiNUZiRGZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC81YzA2YmMtOGNhMS00MDkxLTk0MTgt
NzM0ZmFiNmZlYzZmLzEvbGVnVEVlOGROdXpHMFNYamJJTENiNUZiRGZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC81YzA2YmMtOGNhMS00MDkxLTk0MTgtNzM0ZmFiNmZlYzZm
LzEvbGVnVEVlOGROdXpHMFNYamJJTENiNUZiRGZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVVZwvQn4
X192HCjs21mawhpblh82flQqmrdKb764oYEIM19GKWfaJmAmtDtrq2iU0ikxM7bq
/Uwga+xQ6RNkIDl4tp3ISgbd5nyN28g83n0UWTBzp/SjJXoPsb+wVpJithOD5X0o
cJJ+myc1B0Ga3K7xSYL76o3vqt6zCfiMNe5UVPfa/IRbAwF3lpUU4XZtYjcTs1IH
5CbzTQNF4P33UTOIpwBCwy4k/PXGkXG+ZFnIcQhPGSQMPKHvjFzAC5RbIQzFQJXm
9JJrj18z8/NsPwky91NjhurcvfNyvgjHGve9l6KZX3MlfjsCFGRGs8w1ytQ9kz8E
ATf937dJIxlOuA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:11 2025 by rpki-client