Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
File: lUoq7ghhdLAScvrnea1DHrCSrrc.mft (raw, json)
Hash identifier: 4mD0ThR9Q/5OTljsWAikDUlstrMg7YIOkcnxeezmEJg=
Subject key identifier: D5:48:8A:DF:FC:3E:32:5B:CC:C8:98:B6:30:EE:9E:7D:F8:37:6D:70
Authority key identifier: 95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7
Certificate issuer: /CN=954a2aee086174b01272fae779ad431eb092aeb7
Certificate serial: 0198D773A0E38B4684EEFBF7F83BC548AF80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
Manifest number: 1655
Signing time: Sat 23 Aug 2025 15:02:15 +0000
Manifest this update: Sat 23 Aug 2025 15:02:15 +0000
Manifest next update: Sun 24 Aug 2025 15:02:15 +0000
Files and hashes: 1: H3J9vQn6K2WpcdcY5HgOFWtNqro.roa (hash: xKCbCFvdaEaZUoBRTwlz8wWkQD7E1NB3Xk+GOW8NOkg=)
2: LOAmRNgz3AR78bC-CKjKBqCJY3M.roa (hash: xld+cbw2oRdP1v3iddUMoK+GuqeXMoAOXkKfJjjcrk8=)
3: SHnk_yFs5TSkbtqQ5cCS3qWVobY.roa (hash: Ajdz5jpsdOUtu+sq17fM1dWOMUvOtdvwwcm7jylQXUs=)
4: lUoq7ghhdLAScvrnea1DHrCSrrc.crl (hash: DBFA2NeRgX70b8Q1Q6wiVL4uhtoGxdi4P5OLhyG1Dz4=)
5: moYZTBKvPSG4btrjulSkg5IFyz0.roa (hash: 6aUdQOfwMXy22wY7pvBt6ynhj6U7FZPNFhYHyrILLNI=)
6: zErY100DK7ioQox1ZzAkRJEw58A.roa (hash: 5zdCqOsn2rNGmVqhQaT7S+ghfmyDSWdx/JglPCJCIZE=)
7: zQSqcApOIlR6_yHJBYuZ2ciPt3Q.roa (hash: 5DPAi2kks5u9Bus3Asxn5EjHBrdWHv0pv/j5caKoCFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:a0:e3:8b:46:84:ee:fb:f7:f8:3b:c5:48:af:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=954a2aee086174b01272fae779ad431eb092aeb7
Validity
Not Before: Aug 23 15:02:15 2025 GMT
Not After : Aug 24 15:02:15 2025 GMT
Subject: CN=d5488adffc3e325bccc898b630ee9e7df8376d70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fc:1e:92:6f:60:61:45:a0:e2:2e:c3:a3:16:
cd:0b:78:46:7e:4e:bf:7e:1f:49:26:d7:90:86:52:
34:9f:8e:f0:8a:30:fd:e0:ed:7b:98:84:b2:c5:ff:
21:2a:57:79:bb:49:e3:e2:5c:28:da:ba:c1:4e:70:
8b:4b:9d:0e:36:f9:b7:65:74:da:db:38:33:03:63:
d1:13:51:be:f7:9b:ba:9a:c3:75:dd:9b:3c:4d:53:
bb:97:a5:fe:69:ff:c8:1e:ca:70:3e:92:da:bf:15:
8e:bd:98:e8:16:36:cb:4e:c0:69:a2:5c:70:d5:24:
ce:11:4c:9b:b1:51:86:4a:da:e8:2f:3e:75:ca:6a:
09:e5:d5:41:f9:de:c3:be:14:14:e5:a7:44:e2:de:
3c:dc:80:a2:30:8b:a6:75:76:c9:0b:45:6e:06:92:
32:4a:22:bd:da:02:f6:0c:50:f3:38:22:c9:ec:c6:
01:82:31:36:db:a6:ed:ff:8a:09:07:2d:3c:59:b4:
ca:5d:cc:d1:ed:ec:00:b1:97:99:39:14:ce:79:6a:
c1:52:01:bd:a8:f2:c5:83:73:46:3c:dd:1b:5c:9f:
fe:25:68:ae:a9:84:43:9e:1a:f0:d2:5c:e4:0e:28:
59:bc:fd:20:c8:ae:57:e1:e3:3f:aa:8e:4e:fc:e1:
e5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:48:8A:DF:FC:3E:32:5B:CC:C8:98:B6:30:EE:9E:7D:F8:37:6D:70
X509v3 Authority Key Identifier:
keyid:95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:de:d0:f4:c6:60:0f:59:72:de:ed:15:a0:0e:06:17:c3:ff:
83:67:3c:e7:bb:52:6d:4e:ff:02:b8:5b:64:53:c9:ce:51:38:
6b:23:4e:c9:d7:2c:ed:67:26:10:56:e2:5d:4c:d3:11:f5:ee:
62:ba:37:e9:b0:ac:9c:ac:4b:3d:b5:0b:64:5b:0d:60:41:bf:
6f:96:00:cf:d8:92:9e:e1:37:31:ae:d0:11:c4:2e:b6:ee:51:
5e:67:18:e1:a6:05:9e:68:c3:90:01:ba:31:65:9c:8f:cb:6f:
2e:db:f0:05:46:89:54:ab:2e:d0:6c:d6:f8:19:02:07:d8:3d:
80:83:d7:52:d0:73:08:82:76:93:06:1d:e8:e5:70:54:3c:79:
22:7d:d0:10:c7:b4:cf:21:82:d5:2e:a5:82:80:5a:28:94:67:
dd:b6:ad:8d:92:f2:2e:3e:57:52:bd:65:75:03:78:42:fd:6a:
1b:d7:8e:89:31:0c:1d:9f:88:c5:ad:14:ed:31:3c:69:e4:b5:
9b:18:41:4b:5e:6a:2d:4a:cb:f2:92:79:ce:70:05:1e:e3:3b:
a2:f5:81:4b:45:33:84:da:de:f5:9a:5a:ac:16:6d:18:4a:87:
9d:fe:c3:30:3d:10:fb:8b:8a:80:27:7f:ac:c6:d5:48:01:d2:
79:f6:8b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:07:13 2025 by rpki-client