Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
File: lXbbt2mVtJUKhsXwfKjbPrSWePY.mft (raw, json)
Hash identifier: XhmwunlqJoVQeNfUyyqjUDSQLTocSSexjxgOUwrxBmk=
Subject key identifier: 91:76:BD:4F:39:42:A2:02:03:B9:83:12:46:C4:E5:9C:60:72:BF:F7
Authority key identifier: 95:76:DB:B7:69:95:B4:95:0A:86:C5:F0:7C:A8:DB:3E:B4:96:78:F6
Certificate issuer: /CN=9576dbb76995b4950a86c5f07ca8db3eb49678f6
Certificate serial: 0198D5161CD17F57CFCB5EF52EE9B2051A6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
Manifest number: 0389
Signing time: Sat 23 Aug 2025 04:00:52 +0000
Manifest this update: Sat 23 Aug 2025 04:00:52 +0000
Manifest next update: Sun 24 Aug 2025 04:00:52 +0000
Files and hashes: 1: lXbbt2mVtJUKhsXwfKjbPrSWePY.crl (hash: NnZhZqOTzdXc31AA/LrxzNH12A8bifAggNUOdwXJlZU=)
2: wOkYAGqpSPBGigfUEv7El852HGA.roa (hash: jGAVgltAX4k1B+fH3k6Z7JMTyuIFNv8n6kIlzZB4Zww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:1c:d1:7f:57:cf:cb:5e:f5:2e:e9:b2:05:1a:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9576dbb76995b4950a86c5f07ca8db3eb49678f6
Validity
Not Before: Aug 23 04:00:52 2025 GMT
Not After : Aug 24 04:00:52 2025 GMT
Subject: CN=9176bd4f3942a20203b9831246c4e59c6072bff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bf:c2:6a:16:d1:88:96:9c:89:64:bb:d3:76:
b2:ce:11:36:40:c1:c9:34:97:05:12:8a:c5:46:3d:
74:74:16:62:53:70:ae:2c:49:ac:9b:09:ff:6e:56:
7e:d8:2a:5a:6b:15:67:44:ea:25:57:1f:59:4c:85:
b2:6d:6a:c5:40:37:4d:2b:6a:7b:4b:82:98:d3:93:
37:03:a2:eb:a5:ac:b7:dc:c1:37:2f:4f:03:14:60:
e7:e3:c5:bf:43:12:f1:80:7d:aa:81:fb:1b:70:ef:
ff:28:21:9f:d8:a2:d6:46:bd:95:dc:fb:11:6d:ac:
eb:09:b9:4b:49:06:6e:3e:e4:81:4b:ec:5f:7b:cb:
0c:35:30:a9:f4:62:0b:3a:19:68:e1:a8:04:96:d1:
aa:b8:2b:f3:d9:e9:2c:4f:ce:42:0b:03:ce:e5:0e:
1d:af:38:d2:a9:d6:16:21:fd:da:72:f2:0b:b4:86:
1c:68:f2:dc:b9:88:bd:98:b3:2d:27:c1:00:3d:16:
e3:1d:aa:d7:78:7f:cd:44:76:8a:e2:72:86:ba:79:
d9:6e:27:73:cb:96:a2:9e:0a:bd:25:57:9c:e7:ac:
af:2b:84:18:41:3e:93:69:eb:d9:ec:27:2e:e2:9a:
2b:67:9a:61:3a:68:bb:a0:17:86:ea:c3:14:d8:a9:
07:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:76:BD:4F:39:42:A2:02:03:B9:83:12:46:C4:E5:9C:60:72:BF:F7
X509v3 Authority Key Identifier:
keyid:95:76:DB:B7:69:95:B4:95:0A:86:C5:F0:7C:A8:DB:3E:B4:96:78:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:22:7b:11:70:77:7b:6b:32:f6:59:62:c3:e4:db:17:43:d2:
23:3d:e9:13:ea:3d:e1:10:f0:40:8e:c7:d8:11:c2:69:44:25:
fa:5e:7a:fb:72:c9:06:5d:9b:13:04:58:8a:38:e1:1b:76:99:
a5:5e:19:53:04:41:0d:59:94:21:41:15:0e:1c:7e:65:03:6c:
db:8b:7e:c4:c0:97:f8:f3:8a:86:5c:6e:bd:a4:df:a6:d5:a6:
fa:7f:0a:72:ec:35:86:23:0a:9c:de:02:53:bb:34:e3:78:7d:
97:87:54:a1:79:c9:c8:b8:48:2c:f8:3d:1f:fc:34:cc:16:74:
5f:cf:4b:a1:0a:95:6c:f1:15:fc:c9:ec:a9:66:47:7f:a5:7f:
a1:c9:96:e7:47:b1:bd:9a:2b:d6:18:60:c4:a0:6e:82:c0:cd:
cf:77:c2:3b:31:42:ee:47:ef:c6:81:d9:bf:cb:88:a4:57:b7:
86:7a:12:9a:fd:b5:34:5e:ac:37:e3:d3:32:97:79:58:63:62:
ce:a5:e3:8f:08:7c:2e:89:14:32:55:1c:63:9f:6f:4f:a7:6c:
fd:25:de:02:71:1e:7e:3c:bb:63:aa:7d:d9:dc:49:92:3c:06:
28:d0:0f:60:bc:e7:25:54:ea:e1:56:26:fe:89:16:09:88:37:
c6:16:82:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:23 2025 by rpki-client