Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json)
Hash identifier: mWAogCWRG6uBKkYrsXJTDMbnltQ2IoEF80TYgmhcC1c=
Subject key identifier: DD:50:AA:0F:0D:8B:D8:FF:03:06:B3:47:BA:ED:D4:97:3D:3A:AF:67
Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Certificate serial: 0198D54E085D556C57FB2C361027779BEFF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
Manifest number: 0AEE
Signing time: Sat 23 Aug 2025 05:01:57 +0000
Manifest this update: Sat 23 Aug 2025 05:01:57 +0000
Manifest next update: Sun 24 Aug 2025 05:01:57 +0000
Files and hashes: 1: BlSKEWV8a0Pu0DQWSBEZ8E6j6Ig.roa (hash: E+fl2IDftOEsy56bvfa1HOBzyBMqnDbK6GEdF9F9KeI=)
2: amBacDdU6Mjk1rJegCvOmhPZCuI.roa (hash: QFuN87Ca0aIv1BOf1cf5zbuSpQPxJlnZXFNDEW5Ik9U=)
3: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: 0jwgSiKySfY36hw/pOBWCzRQZEfaCWKuHPN98qBCgB4=)
4: oQUx3CaetTGOoOfH7R_GIuQC9ZM.roa (hash: QXtVeIAnBIaJbBWzjL0HKxzProdKFi/c2re+3CNcveM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:08:5d:55:6c:57:fb:2c:36:10:27:77:9b:ef:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Validity
Not Before: Aug 23 05:01:57 2025 GMT
Not After : Aug 24 05:01:57 2025 GMT
Subject: CN=dd50aa0f0d8bd8ff0306b347baedd4973d3aaf67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fd:c4:9f:60:45:8a:b0:e9:70:2b:ed:e7:dd:
3b:b6:e1:d7:2c:bc:87:89:c2:15:b9:07:f0:09:5a:
58:ef:29:4e:11:2b:56:aa:e7:af:a6:49:20:86:95:
2a:3d:1a:0c:20:00:ee:a0:00:06:3e:f6:04:e9:75:
84:61:85:ed:09:af:e8:f3:ee:90:b4:fd:94:69:43:
c3:6e:aa:23:d4:2b:92:d6:53:9b:f4:2a:02:0a:1a:
bf:b4:04:7b:db:dc:18:ba:1a:8f:07:11:2d:c6:1a:
32:22:34:0c:96:7c:84:6b:7f:23:ad:e6:54:30:30:
f3:6d:13:a1:94:8b:fc:50:ea:6c:6e:cc:a2:c8:5f:
70:24:5b:c1:a3:93:22:f6:68:ee:96:bb:e6:f4:7d:
f7:f1:ee:99:28:e7:ae:61:c5:d0:88:2a:eb:90:70:
fe:67:12:d1:d4:24:3b:f0:4e:51:c8:e1:7c:72:48:
cb:bb:fb:9e:63:d9:e1:9e:3b:65:8a:94:ae:92:13:
33:a0:04:17:93:7a:cc:3c:0d:0f:b0:29:24:7d:4d:
5a:2e:b8:37:2d:79:07:70:ab:cc:10:e9:67:f7:96:
d9:31:2e:54:c7:73:ce:1b:e8:01:cc:ea:9a:20:c1:
29:9a:8b:f8:54:30:01:e2:fd:d9:11:ee:fc:fb:5d:
bd:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:50:AA:0F:0D:8B:D8:FF:03:06:B3:47:BA:ED:D4:97:3D:3A:AF:67
X509v3 Authority Key Identifier:
keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:11:8a:f6:c5:49:0d:5e:d1:0e:9f:b0:73:c4:7f:cf:79:f6:
ee:da:40:00:48:a5:b1:4f:1f:75:b9:da:98:3f:35:df:2f:04:
02:1c:47:a4:b4:9b:92:da:12:5d:27:6c:ee:03:61:7d:53:77:
5a:50:1b:0e:27:16:e7:2f:82:6f:62:94:b9:cb:7d:63:dd:94:
7e:80:f9:19:07:4f:58:05:b1:f0:8d:38:9c:ad:e3:7c:9f:4e:
74:89:21:54:02:34:6a:f9:43:40:0b:c5:ee:42:ec:68:af:d6:
0e:4c:1b:16:df:13:cb:4f:99:6d:7f:59:e7:f4:ec:60:5b:9b:
05:05:47:91:92:05:90:a5:15:bc:75:a1:0f:8c:b1:95:37:48:
ce:d3:c8:62:d2:d9:36:14:2a:85:15:98:f7:52:2a:83:af:0c:
ad:3d:0d:89:92:8a:37:93:c2:3c:05:7b:e4:03:c3:73:43:9b:
8c:78:41:09:68:56:d5:d2:98:80:88:77:fc:a3:64:e8:de:c0:
b5:5f:91:b2:08:5e:27:4d:a6:98:21:6d:d5:f8:ec:c0:f1:15:
46:59:33:be:d0:79:33:ca:ff:e9:0b:c1:db:86:26:62:bd:2a:
ac:4f:0c:3e:eb:e9:3d:6a:5d:2e:19:04:46:df:55:f4:a4:ce:
72:ab:29:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:47:43 2025 by rpki-client