Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
File: lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft (raw, json)
Hash identifier: mPCGJVShtMv7Sgy96wsJD4715ioFg1wD/tYtzPiy+Mo=
Subject key identifier: 49:3E:95:58:1D:0D:E9:79:BF:65:58:47:5E:16:71:64:CE:60:AD:0F
Authority key identifier: 96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
Certificate issuer: /CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Certificate serial: 0198D4A810E90A6207A1F7B75C8B32F4D368
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
Manifest number: 0E01
Signing time: Sat 23 Aug 2025 02:00:40 +0000
Manifest this update: Sat 23 Aug 2025 02:00:40 +0000
Manifest next update: Sun 24 Aug 2025 02:00:40 +0000
Files and hashes: 1: ew1zgYS28PrRo2_vyICjeeeZzZk.roa (hash: Fhi/oH9QUYxK/iP3UryNP+xQPg6T4wc9jRF/RdGEuMY=)
2: lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl (hash: mk2tZN5VbL/R7V4YCGd6/0MWeX6e8W7Wd7XrTXVHf7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:10:e9:0a:62:07:a1:f7:b7:5c:8b:32:f4:d3:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Validity
Not Before: Aug 23 02:00:40 2025 GMT
Not After : Aug 24 02:00:40 2025 GMT
Subject: CN=493e95581d0de979bf6558475e167164ce60ad0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a0:4b:db:1c:ec:3c:90:3d:8a:c6:98:a1:5d:
dc:9e:02:7a:57:4a:dc:0c:5f:05:1e:42:6d:d1:f6:
59:bc:51:1c:ce:3c:cd:6d:1d:9a:bd:67:99:d2:f7:
a3:28:53:51:f7:b5:48:21:0f:aa:26:8a:82:fa:1a:
96:c6:4f:bd:5e:8e:e2:22:b3:c1:ef:87:6e:83:70:
3d:37:b6:62:32:e6:ef:7e:ce:ff:7b:1f:bc:e7:8b:
48:1c:1d:c0:44:c4:cc:27:c8:30:61:d9:30:27:63:
50:07:ca:c8:c5:70:45:6c:b5:aa:2f:d5:d3:1e:cf:
ba:29:7d:e4:8b:0f:20:50:7c:e0:2e:bc:48:be:d8:
51:2d:5e:ba:3a:2a:c4:45:9a:70:41:dd:31:38:db:
06:19:df:d8:f4:96:a8:a4:b3:91:95:ea:66:44:94:
bf:89:c7:73:4b:e7:9b:ef:d5:5a:b6:81:ea:a8:c4:
bd:2b:8d:90:14:8e:b4:fa:f1:c8:5e:d7:5c:8e:0a:
35:a0:e0:18:4e:42:39:18:70:85:d6:5d:bb:01:13:
69:d2:18:19:1d:17:02:2b:07:ab:f7:19:8d:95:f1:
07:a4:82:8c:51:61:e4:60:6d:e6:3f:00:45:eb:84:
75:0b:87:bb:ef:a8:c5:20:47:00:51:cd:2e:07:39:
5a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3E:95:58:1D:0D:E9:79:BF:65:58:47:5E:16:71:64:CE:60:AD:0F
X509v3 Authority Key Identifier:
keyid:96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:e9:4a:28:bf:0f:d4:bb:9d:62:00:50:53:03:74:2f:6c:43:
91:d4:fa:e9:90:af:8d:40:b7:0f:ca:1e:dd:b3:fb:10:8f:29:
bc:a9:17:8a:21:1c:97:1d:e6:52:93:8c:dd:2c:0d:8e:fe:65:
99:bb:d7:b6:74:ee:f7:ad:33:78:41:5b:48:af:38:55:3d:20:
97:52:35:e4:9e:82:86:a8:6e:35:09:19:84:b0:01:da:b7:17:
ce:ab:5e:ab:eb:b3:db:d3:10:33:cc:9d:3e:47:87:38:ef:c4:
69:cb:bb:d5:fa:c6:2a:44:23:48:ad:d8:9a:ca:aa:00:e7:97:
c8:d8:35:ee:ca:d2:1d:bc:76:56:74:f1:4f:f7:f3:a7:18:3c:
50:25:01:76:92:e0:12:b0:89:c0:23:94:ba:1e:a0:a6:37:d5:
be:3e:68:07:5c:cb:f1:aa:3c:a7:70:ac:7d:47:3d:9d:d5:51:
4a:51:e1:40:d4:be:23:72:da:20:db:c7:6e:93:e6:8c:8b:3f:
c1:da:49:94:4f:a2:86:f8:7e:15:1e:ef:df:f1:ae:ba:a1:aa:
5f:6d:b5:ea:95:9c:92:7e:80:0e:e2:09:60:e6:ff:48:d2:c8:
27:07:04:0f:cb:c7:27:81:f2:5b:6a:7c:98:9c:ce:ba:02:b4:
5e:50:5d:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUqBDpCmIHofe3XIsy9NNoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2YzBjZTlmODdkOWQyNzVmNmNhZTRkYzljZGZiNWQ0NDM3
ZDhjZWIwHhcNMjUwODIzMDIwMDQwWhcNMjUwODI0MDIwMDQwWjAzMTEwLwYDVQQD
Eyg0OTNlOTU1ODFkMGRlOTc5YmY2NTU4NDc1ZTE2NzE2NGNlNjBhZDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6BL2xzsPJA9isaYoV3cngJ6V0rc
DF8FHkJt0fZZvFEczjzNbR2avWeZ0vejKFNR97VIIQ+qJoqC+hqWxk+9Xo7iIrPB
74dug3A9N7ZiMubvfs7/ex+854tIHB3ARMTMJ8gwYdkwJ2NQB8rIxXBFbLWqL9XT
Hs+6KX3kiw8gUHzgLrxIvthRLV66OirERZpwQd0xONsGGd/Y9JaopLORlepmRJS/
icdzS+eb79VatoHqqMS9K42QFI60+vHIXtdcjgo1oOAYTkI5GHCF1l27ARNp0hgZ
HRcCKwer9xmNlfEHpIKMUWHkYG3mPwBF64R1C4e776jFIEcAUc0uBzla8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEk+lVgdDel5v2VYR14WcWTOYK0PMB8GA1UdIwQY
MBaAFJbAzp+H2dJ19srk3JzftdRDfYzrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHNET240ZlowblgyeXVUY25OLTExRU45ak9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8zYWEzODYtOTA1Ny00OWEwLWEyMjkt
NWU3N2ZhMDMzM2EzLzEvbHNET240ZlowblgyeXVUY25OLTExRU45ak9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8zYWEzODYtOTA1Ny00OWEwLWEyMjktNWU3N2ZhMDMzM2Ez
LzEvbHNET240ZlowblgyeXVUY25OLTExRU45ak9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPelKKL8P
1LudYgBQUwN0L2xDkdT66ZCvjUC3D8oe3bP7EI8pvKkXiiEclx3mUpOM3SwNjv5l
mbvXtnTu960zeEFbSK84VT0gl1I15J6ChqhuNQkZhLAB2rcXzqteq+uz29MQM8yd
PkeHOO/Eacu71frGKkQjSK3YmsqqAOeXyNg17srSHbx2VnTxT/fzpxg8UCUBdpLg
ErCJwCOUuh6gpjfVvj5oB1zL8ao8p3CsfUc9ndVRSlHhQNS+I3LaINvHbpPmjIs/
wdpJlE+ihvh+FR7v3/GuuqGqX2216pWckn6ADuIJYOb/SNLIJwcED8vHJ4HyW2p8
mJzOugK0XlBdHg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:35:24 2025 by rpki-client