Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: kpT3nyu6M8E+FybkVHsdiLXk4qrVQtKGVjM/Dbm5TLo=
Subject key identifier: 2D:AF:FE:88:26:E1:18:09:05:0F:52:19:57:24:CB:18:FC:73:3B:68
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 0198D58391E6754E8C3BEAABC666DFD712EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0DA9
Signing time: Sat 23 Aug 2025 06:00:26 +0000
Manifest this update: Sat 23 Aug 2025 06:00:26 +0000
Manifest next update: Sun 24 Aug 2025 06:00:26 +0000
Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: c55kyBzrDTjW7owwD15Dds1swiPs4/+8WZzFQfeSoL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:91:e6:75:4e:8c:3b:ea:ab:c6:66:df:d7:12:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Aug 23 06:00:26 2025 GMT
Not After : Aug 24 06:00:26 2025 GMT
Subject: CN=2daffe8826e11809050f52195724cb18fc733b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d7:b5:3a:fa:ca:4c:c6:f9:d7:64:d7:31:ab:
0e:00:97:b7:d4:83:86:9f:26:35:81:f0:eb:55:75:
51:39:83:0b:b0:c1:2e:ff:c9:65:e8:09:b9:3d:cf:
17:dd:65:47:1d:3a:f5:ef:47:1a:3a:aa:f8:5e:6a:
fd:7b:5d:78:f7:e0:d0:e8:97:3a:cc:e3:31:cb:2b:
16:77:61:c7:7d:5e:da:4c:59:b4:5c:28:d2:df:91:
ec:df:37:01:49:45:9c:7d:f6:ed:88:b5:9f:07:3f:
7f:47:eb:76:f5:bb:da:26:b8:86:51:fd:e4:40:b7:
58:11:eb:06:b4:b2:e0:d4:52:8b:0f:f3:f8:11:08:
bd:d8:11:4e:aa:e2:54:1a:a2:91:69:28:43:85:c0:
dd:51:1f:92:76:28:a9:d5:d5:a4:e8:e5:76:0b:fe:
70:29:d4:04:d3:18:19:b2:07:7a:83:33:0b:4a:e3:
a7:9c:44:e2:db:7c:ec:9e:a4:c2:f7:c1:7c:b4:b5:
45:6e:c7:bb:ec:a2:09:ca:ac:05:ea:69:85:ed:b5:
c0:b9:69:55:80:eb:78:62:77:10:9c:1e:50:f1:ca:
e7:25:7f:a0:75:2e:39:23:46:08:49:6e:d7:22:dd:
4b:d6:86:97:dc:a9:bd:a2:34:c2:61:a0:88:47:12:
79:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:AF:FE:88:26:E1:18:09:05:0F:52:19:57:24:CB:18:FC:73:3B:68
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:85:bf:06:29:55:2e:7b:01:f2:55:38:21:a6:32:5e:27:1e:
8d:31:0d:5c:b1:19:b4:57:c7:a1:fb:90:c7:ad:ae:a9:7e:74:
be:5c:35:d1:91:3b:d6:80:00:40:35:53:cc:66:49:3f:35:36:
62:2f:15:36:ba:9b:95:ea:04:40:6c:cc:84:2b:f7:6c:16:06:
79:86:76:99:ba:01:29:2c:78:8a:25:5d:2b:84:6f:08:34:49:
43:4e:80:f8:90:f7:9e:f8:ba:58:ab:ca:ff:42:58:5e:26:ad:
71:c9:d3:3b:c6:a8:43:37:4d:70:1e:fb:65:b1:5a:c7:32:e9:
05:1a:87:fa:6e:4b:fc:35:06:a6:e5:6f:44:ae:29:2c:57:e2:
77:e7:2b:ea:17:b5:2b:29:e8:60:d5:17:36:ee:df:08:86:9c:
8e:96:26:bd:1c:e6:7c:de:2a:5b:4a:6c:58:a9:93:40:0e:60:
3e:45:2b:b2:96:82:0d:3f:19:da:e3:8b:8d:db:92:0c:81:ec:
da:95:67:85:1c:4b:0f:79:5b:2e:e4:a7:93:59:5b:c6:0d:1d:
de:48:43:06:cf:a0:b8:03:57:8e:29:db:ad:4b:64:a6:bc:6a:
2f:e4:32:1a:93:89:8c:59:dd:c7:8c:d7:8b:5b:ab:f2:8e:3b:
96:15:4a:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:18:52 2025 by rpki-client