Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
File: lhzPqdAsvwWWDjovkHmFnM1urW0.mft (raw, json)
Hash identifier: 6HfwN+FlUppXHnN6N2Y1+pXea4Fc1jmAkoJK1pjxBpQ=
Subject key identifier: 8B:3C:4F:93:D9:FD:B8:D5:70:BB:E2:DC:7A:EC:6A:BC:52:83:C3:53
Authority key identifier: 96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
Certificate issuer: /CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Certificate serial: 0199FC8FB6119EC99104E5AF323294080C56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 13:01:40 +0000
Manifest this update: Sun 19 Oct 2025 13:01:40 +0000
Manifest next update: Mon 20 Oct 2025 13:01:40 +0000
Files and hashes: 1: lhzPqdAsvwWWDjovkHmFnM1urW0.crl (hash: HAm0SgFT/4/qJelrHXxG2wggk0dwKMwQaZOq7M6mR1s=)
2: qTElxIuYhBq2Kr2moM3xQmQlUEA.roa (hash: 6HA56HJcMMODNW40FbLFvKXa1rIMDv54m0DX5YcNqN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:b6:11:9e:c9:91:04:e5:af:32:32:94:08:0c:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Validity
Not Before: Oct 19 13:01:40 2025 GMT
Not After : Oct 20 13:01:40 2025 GMT
Subject: CN=8b3c4f93d9fdb8d570bbe2dc7aec6abc5283c353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2e:9b:44:9d:4b:c7:ba:c9:e8:35:74:00:e1:
1b:2c:1c:41:cc:d1:f5:61:76:1b:85:7d:4d:7a:ff:
bb:4c:b5:4d:33:68:b0:28:ea:9c:78:70:10:15:38:
1d:bc:c7:38:4f:d4:87:94:33:95:32:ff:28:10:a2:
22:ff:07:e7:6f:ba:9e:8a:5b:1a:1c:32:4f:88:0e:
f6:9d:ef:ec:71:5b:a3:dd:47:88:ac:6f:55:05:65:
27:9c:c4:a9:bb:4d:c0:57:a8:26:45:36:20:e8:b4:
76:b8:3f:b2:0a:df:31:27:d8:36:82:0a:5d:7b:1f:
52:6d:46:51:45:02:94:bd:03:2b:21:84:84:8c:33:
b0:05:77:ad:e9:a9:9b:e8:98:84:34:65:0d:b1:59:
7e:e6:9e:32:5f:bc:b7:58:0e:30:67:b2:c0:38:2c:
5c:dc:68:bc:77:c6:24:b6:b3:59:76:a9:b4:9e:3d:
ab:20:36:b3:0e:a0:e1:08:01:6a:27:94:b1:0e:c3:
e4:bf:05:e5:93:8a:8a:dd:29:a0:8f:09:39:a4:9b:
6a:13:a7:f0:c1:01:86:5e:68:bf:5a:c6:19:19:83:
74:a3:6a:9e:04:de:12:04:7c:49:3c:38:5a:0a:81:
0b:af:ae:08:a2:cc:68:23:e7:23:91:12:65:f2:40:
9a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:3C:4F:93:D9:FD:B8:D5:70:BB:E2:DC:7A:EC:6A:BC:52:83:C3:53
X509v3 Authority Key Identifier:
keyid:96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:a3:54:fc:1f:93:f4:e8:ea:96:00:c6:53:06:84:09:db:45:
e6:79:3a:dc:da:e7:83:17:d8:90:90:06:92:81:2f:95:2e:76:
89:e4:d4:04:e4:03:d7:5d:57:ee:01:c1:11:8f:31:fd:b7:3c:
89:e9:77:a0:a1:8a:1c:6b:99:d3:be:42:80:d0:f1:56:66:a6:
3f:bd:7b:b9:62:10:a1:07:08:76:04:bc:b9:67:de:e7:f6:8c:
7c:26:38:42:d9:c9:5c:af:89:36:33:41:81:a1:2f:50:a8:f1:
1f:e0:79:62:04:84:58:e1:a7:90:32:e5:12:22:f4:f5:ad:19:
f0:a5:a4:17:66:05:44:49:85:64:12:81:b4:d7:bb:52:bf:92:
33:6b:d0:1e:c9:4b:5a:6b:bc:2e:e0:6d:32:cd:4f:bb:da:8d:
e9:07:5e:44:f6:dc:3f:8b:8f:58:53:eb:5f:3b:70:8b:e3:ac:
31:13:c4:c0:84:77:e9:0b:f7:f8:df:f8:16:b7:43:3e:f7:4a:
91:82:66:a3:1e:fb:54:fb:89:64:1c:26:08:1f:09:91:1a:fd:
6f:cf:55:80:3d:8f:d0:5a:87:52:41:c0:ee:7b:a3:10:41:20:
b6:64:b0:da:30:42:90:c0:dd:f6:3f:d3:71:35:19:41:25:d8:
ec:13:d2:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:38:43 2025 by rpki-client