Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: 4DBIs9NmqXfyW2sjOcqIccNowm1HAoamtHLrLFL+kUA=
Subject key identifier: 4C:B3:B6:D5:21:EC:A6:C7:AB:47:22:9E:29:78:06:5B:69:1B:F9:0E
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 0198D404804D5BB2FF37A587312052191F2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 139A
Signing time: Fri 22 Aug 2025 23:02:01 +0000
Manifest this update: Fri 22 Aug 2025 23:02:01 +0000
Manifest next update: Sat 23 Aug 2025 23:02:01 +0000
Files and hashes: 1: LM0g69HtGp_batQfV5x1NEUMmOk.roa (hash: 7VtBpd+wuDX24L0fq4Y7fsMl9oygXrzXXYzNLlqhtLg=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: maRPmi5ZoZt2WI4rzaZ5Zg69c1HLZ2ue/Eef6G/Rvzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:80:4d:5b:b2:ff:37:a5:87:31:20:52:19:1f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: Aug 22 23:02:01 2025 GMT
Not After : Aug 23 23:02:01 2025 GMT
Subject: CN=4cb3b6d521eca6c7ab47229e2978065b691bf90e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c7:bb:72:ab:d0:7c:27:79:63:fd:7d:e7:ae:
47:0e:28:d2:10:57:59:32:ed:18:d2:0d:e5:8b:ab:
50:18:6f:32:7e:a1:ad:52:48:96:5d:18:b6:4f:9b:
98:60:9a:d9:89:ed:ea:5a:03:b7:78:0c:ee:74:0c:
d1:0f:c0:27:92:ea:fc:ff:bf:e9:69:0e:d0:ca:4f:
a7:8d:04:81:95:e7:be:ac:ba:66:b7:2a:eb:b9:80:
df:4d:c8:39:57:25:ca:9e:45:96:36:cb:f5:f8:af:
9c:8b:d4:85:d8:a2:5c:64:c0:3c:cc:a4:27:c2:02:
cc:bd:c5:75:da:ee:a6:72:ad:b6:15:ae:d5:24:08:
8c:72:b7:da:64:b7:eb:90:cd:73:f6:4f:5a:60:cd:
6c:78:67:13:0c:84:2c:4f:e9:50:f0:1c:fd:6d:c6:
60:22:4d:df:eb:28:df:48:4c:e0:83:45:57:c1:27:
f6:42:19:c5:35:ec:1d:d8:a5:70:f1:b0:a3:5b:14:
43:db:2c:80:9d:b6:d0:e2:2b:fd:69:d7:e9:aa:6c:
2d:0d:ea:72:c5:a6:13:6c:3e:68:c9:91:b6:f5:39:
71:97:63:5a:60:70:2a:10:13:c6:8b:95:62:d0:f6:
6b:2e:94:5f:8b:4c:17:4a:0e:1d:4a:31:48:60:d6:
a2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B3:B6:D5:21:EC:A6:C7:AB:47:22:9E:29:78:06:5B:69:1B:F9:0E
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:29:64:fd:28:7c:65:68:42:33:11:bb:11:be:06:9c:c3:b6:
4e:a3:7f:50:68:80:f1:1b:cf:61:8b:6f:15:fe:f6:fd:16:dd:
1c:6d:82:b3:6e:10:70:67:c4:22:27:f6:ab:77:8d:45:ed:79:
84:e5:19:bd:b8:28:f3:e1:24:04:26:83:8f:01:82:6f:a6:29:
36:bd:b1:d4:34:be:74:0f:e2:5a:a5:d6:30:05:f6:97:3d:ad:
91:23:9a:15:08:62:83:39:d2:7c:be:2d:f0:2c:5d:a0:69:ca:
f9:db:31:61:23:7c:88:06:f3:88:59:86:c8:41:94:17:24:af:
a2:b7:8f:50:f2:d5:f9:67:e4:39:4e:38:fe:6c:b3:8f:4e:78:
f1:a6:81:21:c8:81:29:08:99:75:81:85:70:03:3e:39:8c:b5:
9b:5b:e0:e4:09:5a:87:88:a6:df:c6:9f:5f:ec:f9:d2:cb:ec:
7f:d3:d7:26:a3:f5:cc:d9:59:66:b4:99:f6:ee:b8:0c:77:15:
43:a6:a2:25:02:63:f6:8e:b7:d5:1e:8a:01:f3:75:a2:c0:12:
47:6e:7a:26:18:87:7b:7f:94:68:ac:12:0b:62:cb:18:47:a9:
07:4d:31:0f:f1:47:15:33:24:ed:8e:1f:e6:a5:51:1d:61:47:
30:41:fd:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUBIBNW7L/N6WHMSBSGR8tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxZDZiYWVjYjYzYWU0NmZlZWEzMGNhYjg2MjFkNDZjNTlm
NzI4MDgwHhcNMjUwODIyMjMwMjAxWhcNMjUwODIzMjMwMjAxWjAzMTEwLwYDVQQD
Eyg0Y2IzYjZkNTIxZWNhNmM3YWI0NzIyOWUyOTc4MDY1YjY5MWJmOTBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsce7cqvQfCd5Y/19565HDijSEFdZ
Mu0Y0g3li6tQGG8yfqGtUkiWXRi2T5uYYJrZie3qWgO3eAzudAzRD8Ankur8/7/p
aQ7Qyk+njQSBlee+rLpmtyrruYDfTcg5VyXKnkWWNsv1+K+ci9SF2KJcZMA8zKQn
wgLMvcV12u6mcq22Fa7VJAiMcrfaZLfrkM1z9k9aYM1seGcTDIQsT+lQ8Bz9bcZg
Ik3f6yjfSEzgg0VXwSf2QhnFNewd2KVw8bCjWxRD2yyAnbbQ4iv9adfpqmwtDepy
xaYTbD5oyZG29Tlxl2NaYHAqEBPGi5Vi0PZrLpRfi0wXSg4dSjFIYNaihwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEyzttUh7KbHq0cinil4BltpG/kOMB8GA1UdIwQY
MBaAFLHWuuy2OuRv7qMMq4Yh1GxZ9ygIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMt
N2FmNzlkYWE2OWI5LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMtN2FmNzlkYWE2OWI5
LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZilk/Sh8
ZWhCMxG7Eb4GnMO2TqN/UGiA8RvPYYtvFf72/RbdHG2Cs24QcGfEIif2q3eNRe15
hOUZvbgo8+EkBCaDjwGCb6YpNr2x1DS+dA/iWqXWMAX2lz2tkSOaFQhigznSfL4t
8CxdoGnK+dsxYSN8iAbziFmGyEGUFySvorePUPLV+WfkOU44/myzj0548aaBIciB
KQiZdYGFcAM+OYy1m1vg5Alah4im38afX+z50svsf9PXJqP1zNlZZrSZ9u64DHcV
Q6aiJQJj9o631R6KAfN1osASR256JhiHe3+UaKwSC2LLGEepB00xD/FHFTMk7Y4f
5qVRHWFHMEH9ZQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 09:49:39 2025 by rpki-client