Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
File: lhzPqdAsvwWWDjovkHmFnM1urW0.mft (raw, json)
Hash identifier: W0uPve7IIyfOrw18fTXnV5Xz23q5SqiLOGSfivOAcvE=
Subject key identifier: BA:01:56:75:66:8C:72:62:41:0C:00:B0:5C:8F:26:44:97:86:EF:2B
Authority key identifier: 96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
Certificate issuer: /CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Certificate serial: 0198D705D587A4D32E65060C12EDF6B8E8AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 13:02:20 +0000
Manifest this update: Sat 23 Aug 2025 13:02:20 +0000
Manifest next update: Sun 24 Aug 2025 13:02:20 +0000
Files and hashes: 1: lhzPqdAsvwWWDjovkHmFnM1urW0.crl (hash: 0mT3USNGpUzUxOJ+b8t4x6qz9u+Q/L05UFAdhrzR/d0=)
2: qTElxIuYhBq2Kr2moM3xQmQlUEA.roa (hash: 6HA56HJcMMODNW40FbLFvKXa1rIMDv54m0DX5YcNqN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:d5:87:a4:d3:2e:65:06:0c:12:ed:f6:b8:e8:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Validity
Not Before: Aug 23 13:02:20 2025 GMT
Not After : Aug 24 13:02:20 2025 GMT
Subject: CN=ba015675668c7262410c00b05c8f26449786ef2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:95:0f:c7:8f:e7:21:dd:c7:90:57:e3:f6:55:
5a:10:51:d1:0e:3c:2b:30:2f:54:8f:82:92:0f:89:
dc:cf:ab:32:ca:2a:02:08:14:43:0f:e1:e9:a1:65:
b4:b1:1f:e5:b1:d6:c9:b7:1b:bf:38:fa:ac:8d:56:
86:0f:0c:e2:44:cc:e0:4f:e5:2d:5c:4a:5b:7e:f0:
f7:a5:79:e2:6e:ff:f3:67:3e:86:df:18:e2:7b:31:
e1:34:be:f9:76:51:83:bc:a8:b1:ed:27:57:17:d3:
f0:b1:26:65:6a:2f:2b:b0:84:23:cb:50:ba:77:cb:
99:c5:5c:21:ff:73:d2:d3:0d:31:fd:68:ba:61:f1:
0f:bc:87:35:0d:2e:32:e9:36:a9:e8:ea:1c:e6:fe:
e3:cc:48:66:54:23:d5:41:be:0f:56:6a:b0:07:a2:
de:71:e1:ea:a1:45:dd:00:0b:73:6e:cf:b4:a9:ee:
ce:f7:2c:47:df:b1:5f:7a:4d:67:4c:b3:bb:3a:bb:
4e:20:a8:af:12:bf:c3:a0:e3:c4:ba:fc:31:c8:6c:
2d:9e:8e:bd:c3:11:a8:f5:db:84:30:68:b7:21:0a:
46:61:79:c2:c3:27:f6:9f:fe:91:1b:86:ca:a4:95:
81:1f:d1:95:ba:52:e6:ed:ba:5d:a1:5d:e8:97:8d:
ba:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:01:56:75:66:8C:72:62:41:0C:00:B0:5C:8F:26:44:97:86:EF:2B
X509v3 Authority Key Identifier:
keyid:96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:01:a3:7b:51:38:7e:fa:d6:df:c5:c0:5f:ae:7d:05:03:f6:
05:75:d7:fb:7c:04:c8:27:fd:53:58:28:06:90:3f:32:60:e4:
da:67:c1:36:de:65:b7:c7:34:19:7e:27:09:b0:63:ac:db:de:
67:e4:e9:86:26:7f:33:6f:82:7d:1a:77:23:81:79:74:46:10:
42:62:74:9c:5d:28:93:f9:c4:0a:18:fa:77:e9:09:9b:af:32:
eb:d5:7f:8a:82:e8:f5:3f:93:b3:84:bf:5e:e5:0d:e7:4b:3b:
94:f7:13:26:8c:55:3c:e8:17:60:c5:6c:d3:b9:75:22:ec:38:
11:da:f6:b0:bf:76:bc:f7:35:92:b2:e3:b2:f4:2d:54:33:8e:
73:7b:e2:48:79:f2:2a:35:df:a6:85:d0:91:c0:d7:3a:21:40:
35:e3:0c:04:8e:2b:e5:4b:b6:a7:3b:cc:cc:e0:ff:6f:29:fc:
4c:03:e8:13:94:03:8e:07:79:1e:c4:d8:27:29:5b:24:31:7f:
30:e9:78:fc:f0:ad:48:57:c9:e3:9e:73:08:83:95:21:9c:3d:
31:ec:c5:35:5c:40:16:5a:19:c0:7a:9f:af:36:23:88:db:f8:
2b:d2:26:32:e3:55:3e:3c:81:12:07:85:55:40:0a:38:a2:8a:
5c:b6:d2:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:39:04 2025 by rpki-client