Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
File: lowsVdyOuZe_WRIdTC_9VESiLi0.mft (raw, json)
Hash identifier: AaxjmSaWstnshtfXXbahZt8K+ex99bxUnR48f4Yx0lc=
Subject key identifier: B8:D6:CB:9F:1F:74:98:58:6D:63:74:BA:2D:8D:3C:ED:10:6A:A2:8D
Authority key identifier: 96:8C:2C:55:DC:8E:B9:97:BF:59:12:1D:4C:2F:FD:54:44:A2:2E:2D
Certificate issuer: /CN=968c2c55dc8eb997bf59121d4c2ffd5444a22e2d
Certificate serial: 0197B70E82996C5C77E972475B226D9BCD56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
Manifest number: 15B2
Signing time: Sat 28 Jun 2025 15:01:10 +0000
Manifest this update: Sat 28 Jun 2025 15:01:10 +0000
Manifest next update: Sun 29 Jun 2025 15:01:10 +0000
Files and hashes: 1: lowsVdyOuZe_WRIdTC_9VESiLi0.crl (hash: 1sQ7IfrvjEuVZc2Ev0XZ5qBi9aN6ORm1/YYcKe8SN/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:82:99:6c:5c:77:e9:72:47:5b:22:6d:9b:cd:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=968c2c55dc8eb997bf59121d4c2ffd5444a22e2d
Validity
Not Before: Jun 28 15:01:10 2025 GMT
Not After : Jun 29 15:01:10 2025 GMT
Subject: CN=b8d6cb9f1f7498586d6374ba2d8d3ced106aa28d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:25:b9:39:8c:13:90:7c:9e:f3:65:bb:e5:19:
8b:05:12:23:75:cd:fd:f6:ac:f6:e5:60:45:29:ac:
54:65:3d:b9:15:4d:bf:f9:dd:c2:61:c3:13:29:18:
c0:bd:99:b4:1e:62:b2:cc:0a:16:31:f0:0c:e0:d5:
03:5e:df:8f:cf:8c:65:c8:ef:fb:b2:8c:67:01:f9:
0d:65:92:42:96:48:4a:fb:54:e6:31:24:d3:ee:cf:
19:71:2b:cb:08:11:dd:cf:a5:d2:cb:4b:8f:7d:26:
98:19:69:05:8e:0e:56:08:05:0d:f0:11:0c:7f:c9:
d0:65:e3:f8:7c:74:a7:99:4a:93:7c:c4:35:dc:1c:
63:7a:16:0a:a8:b1:01:1a:93:be:67:2c:e8:66:cc:
61:df:0a:0e:64:0e:50:83:95:7d:16:72:00:11:1a:
69:e0:33:24:e0:73:7a:8e:71:63:48:27:66:ec:95:
71:c0:c2:ab:94:bd:c4:f6:8a:a1:02:f5:84:74:a5:
ed:83:fa:f9:e1:8a:27:57:71:59:19:6b:c2:f9:6f:
6d:4c:d9:5a:03:08:33:4d:e5:57:9c:13:c8:05:86:
6f:63:a3:ce:4c:f3:ab:96:b2:b0:65:ac:da:57:f9:
d3:b7:c8:c0:33:b6:9a:a7:aa:95:a9:98:a2:32:5e:
c9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D6:CB:9F:1F:74:98:58:6D:63:74:BA:2D:8D:3C:ED:10:6A:A2:8D
X509v3 Authority Key Identifier:
keyid:96:8C:2C:55:DC:8E:B9:97:BF:59:12:1D:4C:2F:FD:54:44:A2:2E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:43:73:45:1f:17:f4:54:25:f3:9a:6c:e8:c9:1f:3d:91:4c:
60:f6:04:0b:10:ee:d5:5d:29:57:96:e4:c9:d3:13:1c:50:60:
7f:2f:aa:44:3e:37:c3:5f:a5:fc:07:0c:ad:d4:ae:34:75:f7:
84:02:45:32:82:3a:dd:ba:9b:72:94:06:61:18:62:4d:49:a9:
ad:33:65:29:5d:f9:ee:06:e1:f8:86:0a:17:26:4d:97:a1:0a:
ce:79:b6:7b:cb:58:dc:a3:4f:43:36:d2:96:24:0c:cd:0c:cf:
1f:7c:75:ea:17:b8:17:cd:17:cd:85:4a:ad:5a:65:fa:b3:35:
84:93:db:3a:18:7f:88:38:ac:1d:49:54:4b:83:1f:68:b1:e7:
e5:90:f3:10:da:16:27:9b:7d:7b:f7:eb:55:7a:5d:23:69:f7:
c8:28:9c:a8:89:c3:02:76:21:a4:2b:f1:66:bc:3c:27:ac:52:
51:bb:c6:78:c3:3a:8e:d4:f2:c3:9d:16:5f:50:bd:b6:00:de:
ec:f0:62:d9:d4:c5:4e:57:26:6d:01:4d:7f:68:50:bf:4a:38:
35:b3:49:55:c6:cc:5e:04:74:31:c4:d0:4b:83:44:31:46:0e:
1d:9d:11:67:65:87:64:87:fe:3a:7c:8c:68:5c:e5:45:1d:1d:
da:0f:b4:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DoKZbFx36XJHWyJtm81WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2OGMyYzU1ZGM4ZWI5OTdiZjU5MTIxZDRjMmZmZDU0NDRh
MjJlMmQwHhcNMjUwNjI4MTUwMTEwWhcNMjUwNjI5MTUwMTEwWjAzMTEwLwYDVQQD
EyhiOGQ2Y2I5ZjFmNzQ5ODU4NmQ2Mzc0YmEyZDhkM2NlZDEwNmFhMjhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwiW5OYwTkHye82W75RmLBRIjdc39
9qz25WBFKaxUZT25FU2/+d3CYcMTKRjAvZm0HmKyzAoWMfAM4NUDXt+Pz4xlyO/7
soxnAfkNZZJClkhK+1TmMSTT7s8ZcSvLCBHdz6XSy0uPfSaYGWkFjg5WCAUN8BEM
f8nQZeP4fHSnmUqTfMQ13BxjehYKqLEBGpO+ZyzoZsxh3woOZA5Qg5V9FnIAERpp
4DMk4HN6jnFjSCdm7JVxwMKrlL3E9oqhAvWEdKXtg/r54YonV3FZGWvC+W9tTNla
AwgzTeVXnBPIBYZvY6POTPOrlrKwZazaV/nTt8jAM7aap6qVqZiiMl7JkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLjWy58fdJhYbWN0ui2NPO0QaqKNMB8GA1UdIwQY
MBaAFJaMLFXcjrmXv1kSHUwv/VREoi4tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbG93c1ZkeU91WmVfV1JJZFRDXzlWRVNpTGkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9lNDc0MWItZjViNS00MThmLThlOTYt
MTU0ZTU5OWZkMzVmLzEvbG93c1ZkeU91WmVfV1JJZFRDXzlWRVNpTGkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC9lNDc0MWItZjViNS00MThmLThlOTYtMTU0ZTU5OWZkMzVm
LzEvbG93c1ZkeU91WmVfV1JJZFRDXzlWRVNpTGkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAekNzRR8X
9FQl85ps6MkfPZFMYPYECxDu1V0pV5bkydMTHFBgfy+qRD43w1+l/AcMrdSuNHX3
hAJFMoI63bqbcpQGYRhiTUmprTNlKV357gbh+IYKFyZNl6EKznm2e8tY3KNPQzbS
liQMzQzPH3x16he4F80XzYVKrVpl+rM1hJPbOhh/iDisHUlUS4MfaLHn5ZDzENoW
J5t9e/frVXpdI2n3yCicqInDAnYhpCvxZrw8J6xSUbvGeMM6jtTyw50WX1C9tgDe
7PBi2dTFTlcmbQFNf2hQv0o4NbNJVcbMXgR0McTQS4NEMUYOHZ0RZ2WHZIf+OnyM
aFzlRR0d2g+0RA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:59:20 2025 by rpki-client