Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
File: lKpBiudwvajvBRax0cYzpn6R84s.mft (raw, json)
Hash identifier: A/D6g75x2JmKXavD58Bjniaea08PSv2WfM5SSVcvg54=
Subject key identifier: A4:38:DE:C6:8C:48:7C:4D:82:BD:14:E3:12:BC:7E:FB:85:16:82:04
Authority key identifier: 94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
Certificate issuer: /CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Certificate serial: 0198D4743260A3AF015EAB57B52AC8B6240A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
Manifest number: 1011
Signing time: Sat 23 Aug 2025 01:04:01 +0000
Manifest this update: Sat 23 Aug 2025 01:04:01 +0000
Manifest next update: Sun 24 Aug 2025 01:04:01 +0000
Files and hashes: 1: JDbsNRiv_WMTlViBQXQ3g59gK5M.roa (hash: 5BHapuXzcbpJhpfOa/evo44J0f0F6BTnvXfMcpPhdEU=)
2: lKpBiudwvajvBRax0cYzpn6R84s.crl (hash: 1wOXVOhaLUPo9yh50MipHAV9fpAhNuMKFo1VckA3e9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:32:60:a3:af:01:5e:ab:57:b5:2a:c8:b6:24:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Validity
Not Before: Aug 23 01:04:01 2025 GMT
Not After : Aug 24 01:04:01 2025 GMT
Subject: CN=a438dec68c487c4d82bd14e312bc7efb85168204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:dd:c0:0b:66:6b:62:4f:93:98:fa:61:53:08:
cc:30:fa:9c:80:20:5f:0d:85:c3:af:cc:6c:03:89:
1f:df:6e:5c:f7:dd:02:1a:f0:ca:3b:36:d6:ec:af:
7f:a1:e6:64:5a:79:72:1d:ea:c2:62:0f:af:88:2b:
d5:8f:ff:79:1c:ca:d2:5e:6b:23:22:7e:6d:93:fa:
75:f2:e8:de:0b:f3:94:9e:bc:42:47:ce:ec:2f:4b:
64:ff:ad:80:ed:bd:40:06:b0:cb:50:92:ca:0d:91:
89:1e:89:29:ac:b2:02:39:ba:06:fc:3a:b6:9d:e8:
21:0f:f8:50:7c:1d:38:86:dd:e1:0f:79:06:43:60:
f9:24:87:82:79:af:75:2c:e5:76:9c:59:05:fa:9c:
63:dd:ab:3f:a9:72:64:24:34:8b:1d:58:c5:ab:3a:
76:17:f2:15:b5:63:ff:31:0f:50:37:be:e0:2a:4c:
eb:5b:64:ce:e8:cf:1b:0b:f7:23:b4:d8:e9:84:e7:
aa:6a:63:9e:10:fa:b0:85:61:0f:b6:7d:5c:0b:01:
f8:09:08:af:db:6b:6d:1c:9d:3c:3a:31:9f:a8:0e:
0d:08:82:03:9e:3e:d2:82:63:40:78:93:ec:16:4e:
52:18:a1:dd:4a:41:44:fa:f5:2b:91:17:00:a4:b0:
5b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:38:DE:C6:8C:48:7C:4D:82:BD:14:E3:12:BC:7E:FB:85:16:82:04
X509v3 Authority Key Identifier:
keyid:94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:9c:98:b7:a2:5b:d0:58:ed:6c:69:07:ec:83:c2:51:71:ae:
e7:27:dd:33:67:c9:7a:5b:e2:dd:f9:82:55:ba:2c:89:c4:1f:
ad:f5:99:69:03:7a:e0:73:b8:25:cc:f4:9c:99:71:ee:d3:d8:
0c:b3:18:ce:88:b8:b0:58:cf:e5:a0:14:cd:dc:6e:5f:a1:eb:
0c:66:9d:00:f2:75:2c:b2:ca:27:bc:72:f9:2c:cf:e3:12:cc:
9b:be:a8:63:4f:38:fc:06:64:5d:63:df:4d:43:ca:eb:5c:3a:
78:3d:10:8e:78:7a:5d:3e:a5:31:50:9c:67:29:23:a0:eb:e9:
8b:1b:d5:99:35:99:d3:3a:e8:1e:60:70:41:56:b6:74:09:26:
49:55:e4:fa:dd:64:cc:14:f9:d9:91:5b:47:26:2d:7c:38:78:
3e:96:16:d1:96:a3:37:f2:81:5c:9b:df:3a:d3:b9:ba:d0:d9:
3d:49:9b:a9:80:ae:ec:94:d3:7d:8a:ea:83:49:98:e7:10:9c:
a9:fb:93:de:2f:e6:f9:32:ef:aa:87:99:54:8f:5e:26:26:67:
02:06:40:1a:e3:bf:b0:9b:4d:4b:3a:c0:9e:cf:db:d4:ec:5f:
18:73:da:ee:83:8a:ff:e9:d2:45:e4:12:d1:9c:d6:14:15:c9:
26:66:07:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:10 2025 by rpki-client