Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
File: lb24W36o8fqvdR52xBR8gbYOmU0.mft (raw, json)
Hash identifier: jiT65p5sk3QA7Z110zrBa2wTRT/7He1sgLC3OOfAsG8=
Subject key identifier: 51:0E:F6:9D:10:A1:DD:25:0F:93:70:90:F2:37:C3:FB:43:66:3F:F9
Authority key identifier: 95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
Certificate issuer: /CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Certificate serial: 0199FBEACEB5AEF9371FC8546633DA01F433
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
Manifest number: 95
Signing time: Sun 19 Oct 2025 10:01:33 +0000
Manifest this update: Sun 19 Oct 2025 10:01:33 +0000
Manifest next update: Mon 20 Oct 2025 10:01:33 +0000
Files and hashes: 1: 5R1-l58ft4GhxzonN9PpLF0e3rg.roa (hash: ld57U57oSYCdX19ANUoiIqFJmCosw0zLo2ypqpVfq5A=)
2: lb24W36o8fqvdR52xBR8gbYOmU0.crl (hash: Ejp5y3qIEPE03xm1CMS44YBHYXOSjZA3ypaa7yucLXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:ce:b5:ae:f9:37:1f:c8:54:66:33:da:01:f4:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Validity
Not Before: Oct 19 10:01:33 2025 GMT
Not After : Oct 20 10:01:33 2025 GMT
Subject: CN=510ef69d10a1dd250f937090f237c3fb43663ff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3c:60:9c:0a:d7:50:16:61:dc:73:3e:22:86:
c8:0b:15:72:bd:87:9e:2b:d5:b0:19:0a:84:62:ff:
ec:a9:40:ec:eb:c0:c5:c6:73:1a:67:38:26:a3:e5:
c0:02:4d:46:35:e6:aa:ce:44:0e:a1:c9:7f:32:5d:
b5:23:46:ea:b8:f9:c0:ba:1a:dd:4c:a7:16:3d:4c:
2b:49:c6:ed:83:24:b9:85:5d:94:74:33:0d:0b:08:
85:2e:08:66:17:ab:d2:35:2c:60:fb:76:c7:c1:96:
29:08:f0:d1:4e:b1:17:68:94:71:7b:01:40:1a:e5:
38:6a:a4:3d:03:91:a9:76:25:f8:36:55:a7:04:db:
09:73:27:82:a3:fd:72:50:28:5d:c4:2b:84:a0:c1:
dd:c3:56:7a:9b:25:36:ff:fd:7c:1e:e5:c6:9a:f0:
7d:27:83:99:ca:b9:f2:ab:a0:f9:b2:e5:5d:2a:d1:
8f:57:d6:a4:e3:2c:f7:1b:ac:cb:d3:80:70:9d:45:
1d:df:8a:e1:b0:80:28:a1:1e:49:18:d9:81:47:25:
31:d3:a3:83:47:d6:5a:98:24:5b:da:1e:a9:eb:33:
71:94:01:8f:75:60:ef:19:7e:c5:d8:93:dd:17:69:
10:bd:64:eb:c1:07:87:4a:a4:31:b2:cf:76:b5:55:
cb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0E:F6:9D:10:A1:DD:25:0F:93:70:90:F2:37:C3:FB:43:66:3F:F9
X509v3 Authority Key Identifier:
keyid:95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:74:b2:bb:f0:ca:c3:e2:5f:42:5a:43:6c:43:8a:3e:0e:3d:
14:04:31:d3:af:e0:f7:3b:5d:e1:c1:77:bd:0c:f0:b7:3a:7c:
33:a1:23:87:a9:a5:5a:50:07:ef:89:2f:fc:33:0c:15:30:58:
d8:ab:5d:93:df:62:a0:e6:37:c1:98:99:f1:6e:9b:96:fe:44:
6e:1d:b4:1f:70:5e:87:16:79:bb:0c:f8:b4:dc:8d:1b:bd:5c:
6a:da:f2:98:df:cc:e3:0c:87:7a:4f:fa:5c:d9:db:3f:5c:f2:
f5:c6:91:88:5b:32:eb:85:c1:4f:30:2c:8a:6d:a0:c1:e8:36:
16:bb:bd:8b:6d:63:14:e1:86:d7:86:1c:62:eb:da:34:ca:5e:
39:00:f9:c9:39:0b:7d:ec:35:29:45:e3:d5:c0:02:3b:e5:9f:
c4:85:10:c4:32:3b:56:ae:75:5c:13:2a:35:98:68:99:fc:ca:
64:90:24:c1:5a:ac:79:fb:b1:d3:9f:51:36:0e:a9:bf:3d:49:
8a:76:69:ef:e9:de:9f:32:bb:43:3d:24:69:3c:2a:c3:29:fa:
e2:60:b4:94:be:6c:56:f3:5f:b1:72:e6:13:48:c9:dd:10:bd:
28:f4:19:34:f7:a5:a7:38:93:1c:42:16:f9:e0:9a:52:df:a9:
6a:3f:21:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:03:53 2025 by rpki-client