Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
File: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft (raw, json)
Hash identifier: 0/AQMg+mP9Zs3KmS2PJW52IWVOtPPRVsrIg0CTtZJ9I=
Subject key identifier: D0:E4:75:7D:70:15:4F:65:DB:3D:2F:49:9F:AD:95:C8:5D:7C:2E:B8
Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Certificate serial: 0198D4046680B645E49ADC3FB80E07825D93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
Manifest number: 0732
Signing time: Fri 22 Aug 2025 23:01:54 +0000
Manifest this update: Fri 22 Aug 2025 23:01:54 +0000
Manifest next update: Sat 23 Aug 2025 23:01:54 +0000
Files and hashes: 1: cCGgeXQG7w7JJ0VVtoCaqK0Nuk0.roa (hash: OWS86sPN3Xs5u+J3GeHiIwJ0UACEogG9zbUxH/qhnWU=)
2: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl (hash: N1Jb4NyX/943w63hYAwaW0p3mO0jskFLa19Ji0OBobA=)
3: x4XI86xuT3wsfzGO7m_2JB-s4p4.roa (hash: Dt7gE1TI/UXgmAj9V+d2Jv58edUR433oJyH6DVwQHcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:66:80:b6:45:e4:9a:dc:3f:b8:0e:07:82:5d:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Validity
Not Before: Aug 22 23:01:54 2025 GMT
Not After : Aug 23 23:01:54 2025 GMT
Subject: CN=d0e4757d70154f65db3d2f499fad95c85d7c2eb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:02:87:ac:2e:62:ac:fe:98:43:64:2d:d2:00:
0c:1f:5f:02:3c:76:24:4c:16:3c:c3:52:7d:3d:4f:
b0:7f:c0:70:bc:67:31:37:66:da:88:1d:2d:62:ca:
cd:8a:de:d5:e6:96:2d:00:a1:98:06:cb:59:ad:d8:
85:e0:b2:ba:a2:82:21:b0:9c:bb:a7:73:fa:5f:58:
5d:91:57:b6:a0:5d:84:0b:e5:1c:aa:83:ae:5b:f3:
cd:5f:44:38:98:9c:3f:9f:26:89:a8:f5:68:84:ef:
5b:2d:4a:d6:0d:28:18:4f:d5:5e:30:36:e8:02:7e:
63:e3:72:e4:1c:8c:5c:8f:83:5d:ad:89:a8:a5:b2:
39:33:1d:7e:13:bb:de:a4:64:ad:9c:37:53:56:d8:
2e:8b:67:9d:5b:7b:38:57:be:56:7a:45:70:84:90:
87:f2:25:be:9b:e8:37:39:9f:bf:04:e5:40:18:90:
4b:f9:dc:67:38:15:8b:6b:14:96:19:8f:d5:84:94:
63:48:95:75:3e:50:79:73:1b:48:7f:e7:2a:39:b1:
50:47:29:1b:0a:3e:38:de:41:6c:30:c8:dc:cd:02:
bf:c6:4c:98:27:b8:61:d4:d8:e7:93:b8:1c:ab:20:
77:5a:c3:f5:20:68:29:20:84:2c:3e:ca:34:2e:38:
78:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E4:75:7D:70:15:4F:65:DB:3D:2F:49:9F:AD:95:C8:5D:7C:2E:B8
X509v3 Authority Key Identifier:
keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:6e:c1:34:f0:93:ac:da:1a:be:8c:1d:d9:7b:26:c2:fc:87:
5d:c9:19:99:92:73:8b:be:7d:e0:7a:f9:8d:9b:79:a1:70:9d:
f2:ec:00:33:2d:62:fa:06:90:44:eb:40:da:2c:83:67:d2:4d:
9e:9b:86:1c:79:20:97:bc:7b:83:f8:40:c8:e8:6a:52:73:c7:
ba:25:c4:e6:5a:78:8e:bb:f2:34:1c:48:fe:38:c7:ec:d2:14:
12:3a:24:0d:70:d0:46:56:50:0f:13:cb:41:65:dd:2a:39:54:
fa:ad:10:f7:ad:3a:57:05:16:92:a3:0a:c5:8e:ce:0b:ef:13:
2d:25:4b:49:5d:08:e0:78:b9:d5:8b:cf:62:54:7e:ec:7b:da:
33:7f:7b:23:6c:e4:c8:66:ef:03:03:ba:78:81:c9:2b:46:c0:
a7:80:4b:fd:cd:c1:10:02:78:67:fc:48:13:64:eb:59:c5:c7:
c3:4e:0f:2a:0d:7f:16:70:41:1d:8e:3f:28:b8:60:48:1a:97:
0f:68:89:06:aa:f0:d4:84:24:cd:3b:c9:e5:77:de:10:fc:3d:
01:e3:1e:77:c6:46:a5:67:0b:05:5a:f1:db:a0:e6:c6:eb:8a:
9e:0f:c9:dd:2b:91:6b:3b:0c:f6:4b:0c:e9:4e:4e:02:00:13:
b3:e9:d8:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:21:23 2025 by rpki-client