Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: jfzAGRzyUpix3zTXpmH/A1hnb/n7eI3lyp4hEsJHk6M=
Subject key identifier: 94:B0:9D:72:08:0F:03:87:A5:01:D6:77:8A:C4:BA:10:78:F1:5C:D3
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 0199FBEACF7C40C92F576CB730D81695739A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 10:01:33 +0000
Manifest this update: Sun 19 Oct 2025 10:01:33 +0000
Manifest next update: Mon 20 Oct 2025 10:01:33 +0000
Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=)
2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: ylkOAalwLNBY7GWTksp6uKQzWaaUh6yYtlTMixIs2eU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:cf:7c:40:c9:2f:57:6c:b7:30:d8:16:95:73:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Oct 19 10:01:33 2025 GMT
Not After : Oct 20 10:01:33 2025 GMT
Subject: CN=94b09d72080f0387a501d6778ac4ba1078f15cd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:24:3f:e8:59:57:80:55:56:40:96:56:31:65:
c6:7b:6e:ea:b8:b4:a5:32:8f:80:fb:7d:fa:1d:7e:
37:b2:7c:9b:52:54:53:43:bb:4b:e9:15:5b:14:09:
f5:b2:9b:d2:d2:5d:e1:69:33:df:b8:3c:b7:96:3b:
2f:3e:77:86:46:1b:56:33:45:52:60:b0:64:0f:9d:
7b:86:94:6e:ba:ed:ee:77:0b:30:2c:31:2b:60:75:
f2:be:6e:a7:63:fc:4a:d0:da:89:b3:4a:01:45:36:
d6:b1:05:c2:90:93:01:da:4d:0f:03:fd:cb:87:4a:
24:e1:ac:55:ea:49:2e:8b:a1:f5:9a:41:a4:09:c0:
bf:af:eb:6e:e8:f0:3e:cd:e8:a5:5d:dd:b2:c4:38:
e1:f0:fb:a8:f2:36:c5:1c:07:39:bf:f0:dd:0d:f9:
7a:0f:40:0c:1e:3a:99:fa:29:71:d2:79:de:27:de:
69:5b:4a:97:36:89:7e:69:74:fd:5d:7c:8c:fb:ae:
6c:63:12:39:8f:f5:78:e0:b1:b2:0f:b8:f6:00:a2:
8d:7e:9e:20:89:b2:eb:11:93:e3:86:55:db:7f:47:
2c:25:27:38:bd:01:30:e2:fe:47:6e:7e:0b:f9:6d:
6b:c7:a9:b6:31:46:76:8f:84:06:da:7a:4c:14:5f:
e4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B0:9D:72:08:0F:03:87:A5:01:D6:77:8A:C4:BA:10:78:F1:5C:D3
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:c0:83:2b:4c:5b:49:d6:4a:fa:6e:ec:83:6f:d4:4e:ec:c8:
23:7c:77:42:2e:fa:27:4c:10:f7:2f:3a:fc:19:d9:be:62:38:
c6:99:18:d8:05:e4:cd:ac:25:81:97:a3:da:e2:c9:d7:c5:e6:
d5:dc:3e:c7:71:6b:5c:08:90:5f:28:dc:6c:f4:e8:fa:7d:0e:
88:51:de:e3:27:2b:02:58:68:2f:84:5f:9f:b0:96:ca:84:51:
78:a9:fd:3a:e8:03:6b:3c:21:33:dc:2b:3d:f2:6e:e1:cb:9d:
57:a3:73:ef:63:d1:94:fe:a1:07:24:75:25:75:70:b2:7c:15:
2e:68:01:d8:b7:5d:2f:3d:a5:70:b6:fe:9d:e3:b8:d5:1c:99:
38:db:da:8f:3e:f3:38:ed:cf:c1:b1:d3:e6:35:6a:3f:c0:9e:
4b:b3:39:c3:f6:a6:b8:1d:d2:a3:9c:b6:51:da:fb:10:04:f5:
65:2b:01:e1:58:5e:52:4c:0f:5e:a0:ca:ca:f9:1a:b7:63:c5:
8b:0f:65:b6:3d:77:c4:ee:28:5d:94:d6:f3:ec:8b:3b:f9:56:
a2:7b:27:bc:f1:a6:4c:a7:31:ba:c4:ea:71:57:81:4c:5c:0d:
aa:40:b4:2c:4a:ed:49:fe:46:e4:8d:89:c2:6b:1f:8b:86:4b:
ca:50:ec:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76s98QMkvV2y3MNgWlXOaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0Yzg2YzliMzVkNzgyMTE2YjJjZDg1ODNhMjdjZWI0MDNi
OGY2MWEwHhcNMjUxMDE5MTAwMTMzWhcNMjUxMDIwMTAwMTMzWjAzMTEwLwYDVQQD
Eyg5NGIwOWQ3MjA4MGYwMzg3YTUwMWQ2Nzc4YWM0YmExMDc4ZjE1Y2QzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSQ/6FlXgFVWQJZWMWXGe27quLSl
Mo+A+336HX43snybUlRTQ7tL6RVbFAn1spvS0l3haTPfuDy3ljsvPneGRhtWM0VS
YLBkD517hpRuuu3udwswLDErYHXyvm6nY/xK0NqJs0oBRTbWsQXCkJMB2k0PA/3L
h0ok4axV6kkui6H1mkGkCcC/r+tu6PA+zeilXd2yxDjh8Puo8jbFHAc5v/DdDfl6
D0AMHjqZ+ilx0nneJ95pW0qXNol+aXT9XXyM+65sYxI5j/V44LGyD7j2AKKNfp4g
ibLrEZPjhlXbf0csJSc4vQEw4v5Hbn4L+W1rx6m2MUZ2j4QG2npMFF/k9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJSwnXIIDwOHpQHWd4rEuhB48VzTMB8GA1UdIwQY
MBaAFJTIbJs114IRayzYWDonzrQDuPYaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMt
MzViMGM5NjUyNGZhLzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMtMzViMGM5NjUyNGZh
LzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlcCDK0xb
SdZK+m7sg2/UTuzII3x3Qi76J0wQ9y86/BnZvmI4xpkY2AXkzawlgZej2uLJ18Xm
1dw+x3FrXAiQXyjcbPTo+n0OiFHe4ycrAlhoL4Rfn7CWyoRReKn9OugDazwhM9wr
PfJu4cudV6Nz72PRlP6hByR1JXVwsnwVLmgB2LddLz2lcLb+neO41RyZONvajz7z
OO3PwbHT5jVqP8CeS7M5w/amuB3So5y2Udr7EAT1ZSsB4VheUkwPXqDKyvkat2PF
iw9ltj13xO4oXZTW8+yLO/lWonsnvPGmTKcxusTqcVeBTFwNqkC0LErtSf5G5I2J
wmsfi4ZLylDsVA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:40:10 2025 by rpki-client