Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
File: lJQumzXZGQbREkXXO9WM3Y7KSdE.mft (raw, json)
Hash identifier: 2zrvk7apPqlAql7RF4JczmWh9tZZIbjxRFBbX5ydDbE=
Subject key identifier: DA:CC:43:23:B6:11:4A:76:E4:74:14:5B:0A:08:88:0C:B6:EC:93:D0
Authority key identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
Certificate issuer: /CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Certificate serial: 0198D65F7B6AEE739998AFD9A86B5F429C96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
Manifest number: 15A1
Signing time: Sat 23 Aug 2025 10:00:38 +0000
Manifest this update: Sat 23 Aug 2025 10:00:38 +0000
Manifest next update: Sun 24 Aug 2025 10:00:38 +0000
Files and hashes: 1: V6dzQYTukirsU-gqtCUSWtxmwyw.roa (hash: TAhPxTUSZwI4JsrpdkkvjRG18+wELOBapOWsonm/zpw=)
2: lJQumzXZGQbREkXXO9WM3Y7KSdE.crl (hash: h9h4ytGttLsg1px9HYSWL5UPaZImLcfwczTw1H6viAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:7b:6a:ee:73:99:98:af:d9:a8:6b:5f:42:9c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Validity
Not Before: Aug 23 10:00:38 2025 GMT
Not After : Aug 24 10:00:38 2025 GMT
Subject: CN=dacc4323b6114a76e474145b0a08880cb6ec93d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b0:32:06:54:a8:67:9f:67:c8:52:0c:ea:70:
86:c3:46:47:9b:8b:6e:5b:61:0e:ce:f7:ab:ba:13:
a3:4b:b9:aa:63:bb:dc:a2:70:ea:96:af:42:f3:b3:
55:39:5f:d6:e1:14:1a:7d:db:69:ab:a3:fe:25:a1:
91:41:fb:de:f5:60:e9:58:32:ed:7e:a9:25:b7:cd:
4f:46:6b:f3:f4:60:11:9d:83:2b:83:76:c7:8f:da:
60:f8:d2:f5:1e:ef:14:9e:05:4c:e0:22:58:c4:0c:
99:47:8c:a8:bf:d8:d5:2b:6c:aa:46:fa:90:97:fe:
b5:be:c3:d4:da:55:c9:81:d3:5d:04:ac:8b:ed:87:
5d:b2:92:56:72:55:c4:e0:9e:de:cf:c2:dc:93:82:
12:e9:9f:2b:14:a6:17:20:b5:e7:33:99:0f:38:cd:
a6:64:63:d4:ca:62:57:b0:b4:fa:40:07:62:24:45:
90:c1:e6:08:2a:a9:19:8c:ac:64:1b:ec:e3:c5:55:
84:07:30:ef:7f:1e:d6:b7:fb:c3:ac:fd:d9:f9:f8:
4b:8b:c4:c9:f7:11:01:9a:2b:5c:8d:2f:5f:1c:41:
d8:db:b4:27:78:89:6d:3c:6a:72:38:53:c1:fa:eb:
7f:02:24:c9:03:c7:86:d4:93:d1:79:2a:37:18:e1:
25:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:CC:43:23:B6:11:4A:76:E4:74:14:5B:0A:08:88:0C:B6:EC:93:D0
X509v3 Authority Key Identifier:
keyid:94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:7f:2a:97:cf:2a:18:94:97:7a:76:d2:98:f6:90:c4:3d:22:
cb:e1:fd:5e:a4:c1:ef:41:6d:a2:13:be:cd:82:e5:a3:c2:7a:
e5:57:66:94:44:35:81:dc:c5:c1:19:4b:e1:9a:69:dc:ab:46:
90:1f:35:bb:49:fa:f3:05:3a:3f:b1:cb:5f:be:12:9b:41:4a:
d6:91:b4:61:28:38:73:21:78:fc:04:55:e3:ea:c9:b5:4c:73:
e1:b1:ee:8b:25:25:92:53:c6:c3:27:fd:1c:a9:95:41:fa:43:
7d:61:ed:ba:24:93:72:bc:ad:2b:e7:7a:71:1c:6f:7d:f7:03:
f3:e7:ca:3f:4a:c3:ad:0b:bc:2d:d7:66:d0:41:be:35:b2:37:
d8:a5:79:08:bb:60:f5:42:63:ed:24:75:d7:41:d9:d2:fa:77:
ac:8b:4d:98:37:35:f4:7a:fd:ab:b2:72:ca:0a:9f:14:f3:d3:
90:ae:8b:d7:45:b8:ef:00:53:01:b4:98:b0:a3:1a:d8:38:f3:
dd:d6:bd:f8:33:90:10:f7:ff:ea:87:5c:fb:6f:0e:ca:8a:79:
ab:fa:9c:85:29:2f:36:ed:67:4b:37:02:98:f8:ba:ee:a1:08:
4d:67:9d:c9:a3:57:35:ce:d0:6b:07:bf:ee:04:01:d8:1d:cc:
60:a7:31:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX3tq7nOZmK/ZqGtfQpyWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0OTQyZTliMzVkOTE5MDZkMTEyNDVkNzNiZDU4Y2RkOGVj
YTQ5ZDEwHhcNMjUwODIzMTAwMDM4WhcNMjUwODI0MTAwMDM4WjAzMTEwLwYDVQQD
EyhkYWNjNDMyM2I2MTE0YTc2ZTQ3NDE0NWIwYTA4ODgwY2I2ZWM5M2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLAyBlSoZ59nyFIM6nCGw0ZHm4tu
W2EOzveruhOjS7mqY7vconDqlq9C87NVOV/W4RQafdtpq6P+JaGRQfve9WDpWDLt
fqklt81PRmvz9GARnYMrg3bHj9pg+NL1Hu8UngVM4CJYxAyZR4yov9jVK2yqRvqQ
l/61vsPU2lXJgdNdBKyL7YddspJWclXE4J7ez8Lck4IS6Z8rFKYXILXnM5kPOM2m
ZGPUymJXsLT6QAdiJEWQweYIKqkZjKxkG+zjxVWEBzDvfx7Wt/vDrP3Z+fhLi8TJ
9xEBmitcjS9fHEHY27QneIltPGpyOFPB+ut/AiTJA8eG1JPReSo3GOElqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNrMQyO2EUp25HQUWwoIiAy27JPQMB8GA1UdIwQY
MBaAFJSULps12RkG0RJF1zvVjN2OyknRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEpRdW16WFpHUWJSRWtYWE85V00zWTdLU2RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jNjA5ODAtYTFkZS00MzkwLWEwYTMt
MzJjMjBjYWYwOGVkLzEvbEpRdW16WFpHUWJSRWtYWE85V00zWTdLU2RFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9jNjA5ODAtYTFkZS00MzkwLWEwYTMtMzJjMjBjYWYwOGVk
LzEvbEpRdW16WFpHUWJSRWtYWE85V00zWTdLU2RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARX8ql88q
GJSXenbSmPaQxD0iy+H9XqTB70FtohO+zYLlo8J65VdmlEQ1gdzFwRlL4Zpp3KtG
kB81u0n68wU6P7HLX74Sm0FK1pG0YSg4cyF4/ARV4+rJtUxz4bHuiyUlklPGwyf9
HKmVQfpDfWHtuiSTcrytK+d6cRxvffcD8+fKP0rDrQu8Lddm0EG+NbI32KV5CLtg
9UJj7SR110HZ0vp3rItNmDc19Hr9q7JyygqfFPPTkK6L10W47wBTAbSYsKMa2Djz
3da9+DOQEPf/6odc+28Oyop5q/qchSkvNu1nSzcCmPi67qEITWedyaNXNc7Qawe/
7gQB2B3MYKcxlg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:55:36 2025 by rpki-client