Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
File: lWmTFkJJYHEcLo7LU2vdArxyT60.mft (raw, json)
Hash identifier: GfuPkeZCOv4AqFfyXCjxUUvghjWaJ63HOzsa9EdiG28=
Subject key identifier: D5:8B:D1:5E:2C:F0:92:3D:EE:74:C5:DB:BB:A4:36:F8:3A:79:45:7D
Authority key identifier: 95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
Certificate issuer: /CN=95699316424960711c2e8ecb536bdd02bc724fad
Certificate serial: 0198D705FCCAD8FC35CA2C043113B8386BC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
Manifest number: 04C3
Signing time: Sat 23 Aug 2025 13:02:30 +0000
Manifest this update: Sat 23 Aug 2025 13:02:30 +0000
Manifest next update: Sun 24 Aug 2025 13:02:30 +0000
Files and hashes: 1: QlwSz5QY3CNReEwoqy5_qdcxp7E.roa (hash: J1QwLI9Oak3umoZp+VK8k+3z4SfC016Ed6Yx+Y0FOX0=)
2: lWmTFkJJYHEcLo7LU2vdArxyT60.crl (hash: PlKGSeWAQ618zC4YYx4IjfNvuw2D6oeoVvpegmi7nkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:fc:ca:d8:fc:35:ca:2c:04:31:13:b8:38:6b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95699316424960711c2e8ecb536bdd02bc724fad
Validity
Not Before: Aug 23 13:02:30 2025 GMT
Not After : Aug 24 13:02:30 2025 GMT
Subject: CN=d58bd15e2cf0923dee74c5dbbba436f83a79457d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ed:3f:89:37:46:51:7f:93:5a:9c:22:e3:54:
1f:cd:58:9c:cc:e8:b1:1a:c7:63:92:71:ed:a8:f2:
37:4e:95:04:19:b5:65:5f:d8:c7:74:62:1b:6a:28:
10:04:dc:fe:24:e2:00:ce:e4:fd:06:dd:b7:59:df:
d8:82:17:98:71:ab:a6:98:40:ff:32:81:e2:d8:f6:
7e:4d:ba:c0:f9:24:2d:c7:7f:2b:f1:69:a3:8e:a7:
21:18:de:db:d3:79:08:4b:41:cf:0a:11:b1:5d:ac:
84:ae:47:dd:fc:69:15:87:e3:67:ca:38:8b:72:d7:
56:0a:3a:87:51:fc:d6:6a:e7:7e:b3:d1:72:f5:3b:
b8:96:e5:b2:01:e1:c4:92:b0:70:b8:ab:b4:50:0c:
fd:1a:92:2b:f4:0d:e2:14:9b:53:cf:ea:ac:f4:2b:
0f:e6:66:32:fe:8a:08:48:e1:6d:e1:38:41:23:dd:
dc:bd:f7:e4:ab:b5:05:6c:65:6f:5e:bf:cc:0b:cf:
f2:56:c2:ef:50:c9:ba:44:c7:52:cb:f9:d9:43:83:
75:02:a9:3b:fe:ca:88:7d:4f:fe:bd:0f:c3:8c:5e:
bd:6c:18:aa:c7:d1:05:b4:dd:4a:9e:fb:d7:b3:5b:
24:a5:dc:34:a9:b9:57:36:ba:18:75:12:16:f3:95:
eb:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:8B:D1:5E:2C:F0:92:3D:EE:74:C5:DB:BB:A4:36:F8:3A:79:45:7D
X509v3 Authority Key Identifier:
keyid:95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:95:51:18:71:59:c8:26:b3:d7:4e:cc:66:4d:a8:33:f9:04:
00:5f:76:fe:76:7d:2b:d3:1c:33:97:21:f8:59:10:70:ec:17:
4b:57:bb:0e:c1:e1:c6:a8:af:39:eb:af:0c:5d:31:94:12:9f:
b2:e6:f4:36:78:e3:02:40:e2:b8:f2:47:12:56:5e:15:a3:71:
ea:b5:71:be:d7:e3:9a:0d:86:85:4f:b8:9e:a8:59:0b:5f:9f:
f5:0b:95:44:ad:e4:e9:70:7d:04:5b:cf:0d:f7:3c:27:65:e5:
95:95:26:57:6f:c9:1f:67:84:96:ec:26:16:98:97:3d:b8:00:
01:37:44:d6:e7:b4:d8:fe:9a:57:df:9a:06:65:2a:40:cc:7a:
00:58:06:9a:c9:dc:3a:1f:fa:b7:b4:21:24:7d:10:4c:00:5b:
05:a3:c8:90:9f:d3:f6:f4:ac:21:b1:65:a5:f1:ee:b7:84:05:
af:ce:2d:6e:1b:b8:3c:d8:eb:9b:c0:8d:02:f8:10:47:8b:3e:
5b:ef:03:48:fc:bc:d9:1b:2b:89:2f:11:f6:13:15:65:49:83:
68:c3:74:e5:95:2c:23:76:f1:4a:cf:7c:2d:80:fb:8e:8c:c6:
c9:41:bf:bb:bf:95:37:53:6b:ba:68:a2:2d:ab:b4:b1:55:98:
bd:c3:ab:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXBfzK2Pw1yiwEMRO4OGvGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1Njk5MzE2NDI0OTYwNzExYzJlOGVjYjUzNmJkZDAyYmM3
MjRmYWQwHhcNMjUwODIzMTMwMjMwWhcNMjUwODI0MTMwMjMwWjAzMTEwLwYDVQQD
EyhkNThiZDE1ZTJjZjA5MjNkZWU3NGM1ZGJiYmE0MzZmODNhNzk0NTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+0/iTdGUX+TWpwi41QfzViczOix
GsdjknHtqPI3TpUEGbVlX9jHdGIbaigQBNz+JOIAzuT9Bt23Wd/YgheYcaummED/
MoHi2PZ+TbrA+SQtx38r8WmjjqchGN7b03kIS0HPChGxXayErkfd/GkVh+NnyjiL
ctdWCjqHUfzWaud+s9Fy9Tu4luWyAeHEkrBwuKu0UAz9GpIr9A3iFJtTz+qs9CsP
5mYy/ooISOFt4ThBI93cvffkq7UFbGVvXr/MC8/yVsLvUMm6RMdSy/nZQ4N1Aqk7
/sqIfU/+vQ/DjF69bBiqx9EFtN1KnvvXs1skpdw0qblXNroYdRIW85XrqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNWL0V4s8JI97nTF27ukNvg6eUV9MB8GA1UdIwQY
MBaAFJVpkxZCSWBxHC6Oy1Nr3QK8ck+tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFdtVEZrSkpZSEVjTG83TFUydmRBcnh5VDYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8zMjBlZjktMzU0MS00MzIxLTgwZmYt
Zjg1YzYwYmUzNDBkLzEvbFdtVEZrSkpZSEVjTG83TFUydmRBcnh5VDYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8zMjBlZjktMzU0MS00MzIxLTgwZmYtZjg1YzYwYmUzNDBk
LzEvbFdtVEZrSkpZSEVjTG83TFUydmRBcnh5VDYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARJVRGHFZ
yCaz107MZk2oM/kEAF92/nZ9K9McM5ch+FkQcOwXS1e7DsHhxqivOeuvDF0xlBKf
sub0NnjjAkDiuPJHElZeFaNx6rVxvtfjmg2GhU+4nqhZC1+f9QuVRK3k6XB9BFvP
Dfc8J2XllZUmV2/JH2eEluwmFpiXPbgAATdE1ue02P6aV9+aBmUqQMx6AFgGmsnc
Oh/6t7QhJH0QTABbBaPIkJ/T9vSsIbFlpfHut4QFr84tbhu4PNjrm8CNAvgQR4s+
W+8DSPy82RsriS8R9hMVZUmDaMN05ZUsI3bxSs98LYD7jozGyUG/u7+VN1Nrumii
Lau0sVWYvcOr0w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:00:06 2025 by rpki-client