Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
File: lNmOj-xoB3WhVyZuDGt4sUGjT14.mft (raw, json)
Hash identifier: nC+e7mxzGMG8b0kqAxpKEEbtZJzVeOR5ZhisM1KnzbA=
Subject key identifier: FD:F2:4A:96:8E:D6:A9:57:F3:E4:AA:8D:EF:5F:DC:34:C0:A0:A9:7D
Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Certificate serial: 0199FBEC199AA58EA8B8545EAA96B06D0EBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
Manifest number: 0FC6
Signing time: Sun 19 Oct 2025 10:02:58 +0000
Manifest this update: Sun 19 Oct 2025 10:02:58 +0000
Manifest next update: Mon 20 Oct 2025 10:02:58 +0000
Files and hashes: 1: 0YppZtvRSXBHB8NFrLn_rzdM4Wg.roa (hash: AIX2Owt5viXo6Wp2eQTWR2x2rHaX/2g8xn17pbf1zi4=)
2: H0U-Km3rz_YtidSX7xAdJ-A_RzA.roa (hash: L4ck5kUvwk5NkXR5fk3e/8692feGx3cZZTXMDkDHo6o=)
3: JcpkDEw0JBmGAZTOYP-EZkG7h4Q.roa (hash: jiM13rTCKDGbOFYZdyZ0lzDL0Z/zn/1jyUcNFr7C9ic=)
4: j0eQCpRbkkshg2cOl2P0JLeBDDw.roa (hash: sMtFOxKW/3UNJ7k3m/3q4HKIZXU/80JJ7tR1eHGV0HE=)
5: jk5DLmbJDPFvDX_KRrXRzuIQONk.roa (hash: QsbO4bJZnkw7RxYXi6mJ0xpqtRhxRs42uhmxBRFdmEI=)
6: lNmOj-xoB3WhVyZuDGt4sUGjT14.crl (hash: 6IZa7jjn8lnFV0W+1FiAJseRaZHuYA890m1GlWMcXMw=)
7: uNzKfKgIpPbpXrUU6oGeZECqr9M.roa (hash: s2axTj5E8SUZbZUz5S5Jplmoh/pA2RgMQVViMaq+JJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:19:9a:a5:8e:a8:b8:54:5e:aa:96:b0:6d:0e:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Validity
Not Before: Oct 19 10:02:58 2025 GMT
Not After : Oct 20 10:02:58 2025 GMT
Subject: CN=fdf24a968ed6a957f3e4aa8def5fdc34c0a0a97d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:64:22:37:47:84:52:d8:d2:d7:d6:c6:86:8b:
6a:4a:24:65:cf:68:0a:f6:e1:02:47:78:e6:f4:7f:
21:c4:d9:d4:9a:23:18:e7:53:74:40:d3:31:8a:8b:
16:64:2f:fb:ba:a7:5f:c6:e1:ce:07:9d:ce:50:06:
4c:e6:5c:98:6e:48:82:c4:a9:32:08:51:5e:59:45:
e8:a9:74:69:ca:4c:05:d2:75:b1:7e:9b:1c:7f:15:
66:26:f8:b8:00:87:3d:1e:67:30:81:ed:fe:10:2c:
1e:ba:94:ad:5f:f6:77:d8:35:b8:da:b0:9b:1c:e4:
05:47:c3:a3:5c:3e:53:cc:0e:8b:8d:20:66:e0:2e:
81:fd:e3:ec:d6:48:65:e7:ff:6e:fb:a0:48:84:62:
63:9a:cb:08:96:02:20:6f:6f:8c:53:0e:77:22:33:
97:4f:d4:db:ab:a3:41:80:8f:00:3c:4a:1e:51:cb:
3c:31:fa:74:03:aa:bb:28:a9:f8:52:c4:29:29:24:
ae:bf:10:b3:08:94:5f:dd:20:b8:91:c6:45:5a:9b:
52:68:84:d0:9c:5b:44:71:73:c4:fa:1b:c9:8e:b5:
5f:db:23:21:40:fc:e8:4e:7f:d4:bb:8b:de:ce:a2:
46:f1:97:73:4d:52:18:a9:3b:36:48:84:ad:38:26:
fb:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F2:4A:96:8E:D6:A9:57:F3:E4:AA:8D:EF:5F:DC:34:C0:A0:A9:7D
X509v3 Authority Key Identifier:
keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:26:30:1f:e8:bc:75:fa:76:5f:86:0f:e0:45:da:d0:0c:d2:
6b:42:f4:e4:bc:d0:0a:36:40:52:13:e5:d0:56:3b:ce:45:16:
82:b6:09:5f:2b:9c:cb:cb:99:10:6f:2a:88:a1:24:f1:ea:a0:
93:b1:1c:cf:77:0e:91:2a:82:36:37:8d:a6:5c:ae:ce:79:66:
e9:c0:92:41:dd:f5:7a:a3:25:57:5a:a4:0d:de:fa:f2:0c:44:
bf:1c:3e:8f:55:5f:e8:7c:94:c8:cd:bb:69:b0:09:98:dc:bd:
7e:ec:6a:05:fa:a6:c3:41:fc:2f:5d:fa:0e:29:5c:f8:68:e4:
f6:3a:71:46:9b:e5:c0:5e:9e:ab:b4:25:8e:0c:ff:d6:06:16:
46:00:c1:48:70:11:5c:a9:00:1c:d2:21:ad:57:34:c3:e0:49:
14:dc:e0:e3:8e:bc:ac:0f:05:8e:43:01:cf:29:ac:5e:69:b3:
c8:23:73:66:ff:83:ea:06:c7:57:ba:95:0f:e5:76:de:be:ff:
ad:78:23:87:64:7f:99:34:15:69:1a:b9:04:13:9d:f5:e3:82:
e7:a3:df:5b:bf:c9:3a:03:2f:ac:45:3b:80:a2:26:33:4a:98:
4e:eb:8c:08:e0:7c:7c:2f:f9:ba:f4:6d:3f:d1:eb:2a:09:68:
ef:6d:20:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn77BmapY6ouFReqpawbQ6+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ZDk4ZThmZWM2ODA3NzVhMTU3MjY2ZTBjNmI3OGIxNDFh
MzRmNWUwHhcNMjUxMDE5MTAwMjU4WhcNMjUxMDIwMTAwMjU4WjAzMTEwLwYDVQQD
EyhmZGYyNGE5NjhlZDZhOTU3ZjNlNGFhOGRlZjVmZGMzNGMwYTBhOTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8WQiN0eEUtjS19bGhotqSiRlz2gK
9uECR3jm9H8hxNnUmiMY51N0QNMxiosWZC/7uqdfxuHOB53OUAZM5lyYbkiCxKky
CFFeWUXoqXRpykwF0nWxfpscfxVmJvi4AIc9Hmcwge3+ECweupStX/Z32DW42rCb
HOQFR8OjXD5TzA6LjSBm4C6B/ePs1khl5/9u+6BIhGJjmssIlgIgb2+MUw53IjOX
T9Tbq6NBgI8APEoeUcs8Mfp0A6q7KKn4UsQpKSSuvxCzCJRf3SC4kcZFWptSaITQ
nFtEcXPE+hvJjrVf2yMhQPzoTn/Uu4vezqJG8ZdzTVIYqTs2SIStOCb7lQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP3ySpaO1qlX8+Sqje9f3DTAoKl9MB8GA1UdIwQY
MBaAFJTZjo/saAd1oVcmbgxreLFBo09eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi83YWUzYzctNjdlNC00NGRlLWIxMzkt
ODdkMTdkZjc0YzdlLzEvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi83YWUzYzctNjdlNC00NGRlLWIxMzktODdkMTdkZjc0Yzdl
LzEvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiCYwH+i8
dfp2X4YP4EXa0AzSa0L05LzQCjZAUhPl0FY7zkUWgrYJXyucy8uZEG8qiKEk8eqg
k7Ecz3cOkSqCNjeNplyuznlm6cCSQd31eqMlV1qkDd768gxEvxw+j1Vf6HyUyM27
abAJmNy9fuxqBfqmw0H8L136Dilc+Gjk9jpxRpvlwF6eq7Qljgz/1gYWRgDBSHAR
XKkAHNIhrVc0w+BJFNzg4468rA8FjkMBzymsXmmzyCNzZv+D6gbHV7qVD+V23r7/
rXgjh2R/mTQVaRq5BBOd9eOC56PfW7/JOgMvrEU7gKImM0qYTuuMCOB8fC/5uvRt
P9HrKglo720gmg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:44 2025 by rpki-client