Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json)
Hash identifier: 624wpxi7KZx164jiAb+plAF6nQM8cSjy0OxZNqEYNug=
Subject key identifier: D3:43:1C:50:3C:75:02:00:30:46:54:04:9D:D3:00:39:74:EB:11:BE
Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Certificate serial: 0199FCC69EBADF1FDF04FFA0C696E19D1340
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
Manifest number: 0B87
Signing time: Sun 19 Oct 2025 14:01:39 +0000
Manifest this update: Sun 19 Oct 2025 14:01:39 +0000
Manifest next update: Mon 20 Oct 2025 14:01:39 +0000
Files and hashes: 1: BlSKEWV8a0Pu0DQWSBEZ8E6j6Ig.roa (hash: E+fl2IDftOEsy56bvfa1HOBzyBMqnDbK6GEdF9F9KeI=)
2: amBacDdU6Mjk1rJegCvOmhPZCuI.roa (hash: QFuN87Ca0aIv1BOf1cf5zbuSpQPxJlnZXFNDEW5Ik9U=)
3: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: oeWeZ8YR48xfh9LrPKrGK0QC8sDSzRtTWsUEtpUHp10=)
4: oQUx3CaetTGOoOfH7R_GIuQC9ZM.roa (hash: QXtVeIAnBIaJbBWzjL0HKxzProdKFi/c2re+3CNcveM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:9e:ba:df:1f:df:04:ff:a0:c6:96:e1:9d:13:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Validity
Not Before: Oct 19 14:01:39 2025 GMT
Not After : Oct 20 14:01:39 2025 GMT
Subject: CN=d3431c503c750200304654049dd3003974eb11be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5b:23:0d:e2:54:19:6e:d5:43:3e:fb:cd:f2:
d7:77:69:c3:5a:da:b0:6d:8d:49:6a:22:74:73:bf:
4e:77:c1:80:cb:cb:d1:9c:38:ae:1e:75:8a:0d:dc:
ab:f8:c4:2d:d5:df:92:2e:c3:03:b7:76:c2:e3:9d:
7d:63:6d:fb:a5:a0:aa:7a:cc:89:2d:bf:a7:cb:a0:
cb:9a:bc:c8:33:5a:27:2f:1e:40:ba:9a:5d:4e:d2:
4d:b2:23:6d:e6:f3:81:33:94:51:d7:6b:63:31:c1:
fe:cd:aa:be:5c:1d:79:b5:ed:85:3f:a8:d9:76:9d:
71:08:5f:c8:06:e9:59:8c:33:ae:b6:a3:60:76:dc:
f9:94:de:d4:2f:cf:66:16:f8:3d:45:a2:50:fc:a5:
57:46:b1:bf:b6:93:96:7d:d4:9f:70:3c:93:69:85:
74:33:a6:8a:89:e5:af:35:7f:ff:63:1c:fe:e9:22:
e8:f2:ca:1a:53:ad:9b:4a:06:20:e6:c6:96:9f:f2:
23:4c:dc:ec:fa:30:e8:01:73:9f:a5:49:60:4c:97:
3e:95:5f:73:cb:fe:32:56:2c:35:95:91:1c:20:41:
12:5d:83:cd:9a:49:6a:d3:22:55:a5:c2:93:5e:8f:
79:ad:f5:90:d4:09:c4:83:30:4d:d0:a1:00:19:aa:
69:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:43:1C:50:3C:75:02:00:30:46:54:04:9D:D3:00:39:74:EB:11:BE
X509v3 Authority Key Identifier:
keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:98:36:0a:0d:22:ba:49:26:5d:af:b6:a8:c0:ad:57:fb:e4:
21:1b:be:8e:dc:ea:40:cf:7e:29:52:5c:f4:6b:a9:f8:92:d8:
c6:c8:1c:04:a1:c3:2f:85:f2:8f:9c:19:85:a6:07:c3:4d:04:
5b:17:10:21:f5:97:b2:73:e7:a1:ed:ea:66:f0:0f:eb:8a:f1:
01:56:17:b5:ac:af:e9:ef:35:17:76:87:d1:55:a6:54:df:13:
52:0c:80:25:ed:47:ee:cf:3a:1e:b1:a8:87:10:b7:da:a5:8a:
d1:dd:96:9f:14:ed:3c:66:65:de:39:fd:78:fd:91:1b:24:2d:
51:64:ae:61:34:7b:36:6d:d1:21:64:e0:f4:0b:f2:14:4f:9b:
3e:a0:37:a0:97:97:a3:a8:c4:53:20:ab:a1:5e:1b:e8:86:65:
75:e0:de:88:22:e0:07:c0:aa:32:d6:7d:86:ec:cc:b5:b5:7f:
47:13:db:4d:6d:10:75:dd:96:45:ef:c7:00:50:7f:73:86:79:
f2:62:83:c1:79:30:a9:f4:fe:db:f9:02:e4:c6:7a:d7:7e:fc:
4d:61:09:7c:3e:11:22:e9:a4:84:23:da:65:0a:2e:6d:2f:7a:
45:73:d1:ae:b1:f8:44:9f:03:00:d1:22:e2:a4:3c:d6:39:b9:
b3:f2:3b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:31:05 2025 by rpki-client