Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: 5BN91U2tZ+BJ6bR01x7WJDdvA/eCkoCBwO7CC9pbhN4=
Subject key identifier: 21:04:92:02:51:BA:71:A6:E9:DC:D3:37:9D:F7:C2:33:A6:9C:41:F8
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 0199FD33F42BFCDA450711F2EFB0D2FD88B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 16F3
Signing time: Sun 19 Oct 2025 16:01:04 +0000
Manifest this update: Sun 19 Oct 2025 16:01:04 +0000
Manifest next update: Mon 20 Oct 2025 16:01:04 +0000
Files and hashes: 1: 96CoHDqUFKRWLMKpuPNky2AThV0.roa (hash: 2dbkXGtx2Y2iGJ3uWXJRyOKWK4j+bBsW6iNp6F1vwRk=)
2: Zv6rhEtfx_jSCXc_S8UyXA0vo2U.roa (hash: upx9rJYDv3PHx1B1uURg+ybXETCTfjV8bsr8SvgJ3XM=)
3: biGYeNx8PlSGKHRmVucthKOSlnY.roa (hash: YxlSQax5Hky2oIIKAGXfmWIsjyjpaMRbBxvVdrI+BSI=)
4: g1Zk3nIRea2SYaHqoN92Ss1LCL8.roa (hash: aHQejC3hHy18rRg2jbGxWbnzx0KaJtZTncqKQ8jXn3M=)
5: kZbYAR7_VQFdZ98vhS7MW7IOa5g.roa (hash: veptVlnHGE2k0mSrEVT7abLTAqTrUJe6t8F1/LuZDvo=)
6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: ubvr0YBx2tR3lq2Ey4TsBkhvhGCd5/TE6siguHmz0Ow=)
7: mmvuqSKrxCIOK5dTOpgllxAuYB8.roa (hash: cXrhSBrwqA5XppxSkBQnZWJRKIyKnPJRdZjf9M/iItg=)
8: rZuO-15UbHThyJRmeryxRpgLk2M.roa (hash: /ED0vNPFUaV7PRvXzqX2jHZ983s8HtxjtsJuRuMtCvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:33:f4:2b:fc:da:45:07:11:f2:ef:b0:d2:fd:88:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Oct 19 16:01:04 2025 GMT
Not After : Oct 20 16:01:04 2025 GMT
Subject: CN=2104920251ba71a6e9dcd3379df7c233a69c41f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ec:ca:82:cf:3c:a5:0b:d6:9c:96:4e:96:94:
70:7b:7d:39:68:93:bb:45:ed:ca:cb:c1:2c:ef:55:
b1:e0:aa:ee:40:14:bc:bd:45:2c:f7:93:ab:2e:04:
91:dd:5d:44:fc:16:9d:28:5a:68:a5:fb:e4:bf:00:
f5:54:bf:33:09:df:a6:59:23:d4:9b:d7:84:d8:ce:
ab:68:df:95:71:30:99:1a:15:86:06:da:dd:b3:9e:
39:e0:c1:8f:14:15:7a:68:05:fc:ae:65:df:81:b8:
5b:87:40:d5:6b:04:f1:87:50:a5:79:c5:f6:4f:38:
ad:a4:5c:53:3f:5c:72:ba:c5:bf:0d:16:f3:20:69:
13:4b:34:ab:db:c6:f6:f1:93:02:8a:b0:a0:ed:e6:
57:a3:86:30:e6:1a:e3:fb:dc:41:b8:2a:73:df:84:
58:a1:b8:0e:3c:1f:83:c7:8c:53:db:67:bc:de:be:
10:d7:ee:ca:a0:b1:e1:68:aa:f2:0b:af:e0:cb:05:
2c:6f:04:00:fb:12:41:a8:37:62:cf:92:a1:30:34:
99:64:be:7b:58:c2:bb:da:11:a3:62:cf:b4:0d:92:
10:fa:aa:15:3d:0c:f0:89:6c:62:be:d5:a8:cb:76:
5d:ab:27:e7:8b:58:71:49:89:55:88:16:96:5e:da:
a2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:04:92:02:51:BA:71:A6:E9:DC:D3:37:9D:F7:C2:33:A6:9C:41:F8
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:b0:48:90:cb:ed:6b:55:fd:08:11:6a:65:78:45:10:6c:c2:
d3:35:28:91:d3:cf:c2:e4:af:3a:d2:27:db:8e:e8:0c:ab:e8:
63:72:0b:42:20:de:70:e6:6a:9e:96:2d:5d:85:1f:bf:46:72:
c5:47:8e:c0:ba:05:0e:ac:b2:8c:8e:55:f2:eb:fe:38:0b:a0:
47:28:da:09:eb:ea:47:77:12:48:46:ef:b3:1e:d1:19:fe:75:
63:26:96:1b:77:2d:47:db:37:ff:73:69:09:96:d4:86:67:2b:
c1:79:52:44:4d:24:a4:17:4d:5d:2f:3b:2a:9e:1a:2f:92:a9:
22:f2:72:89:8d:62:b1:98:1a:3f:7f:e8:3a:bb:cc:7b:4b:13:
1f:df:61:37:dd:15:af:ab:68:4a:fe:54:34:41:1e:f9:fe:d8:
57:58:46:03:d8:a6:ff:9a:67:2b:eb:cd:21:42:c1:23:d7:16:
fc:0a:05:d1:e6:fe:dc:ac:d1:b6:45:2c:00:f5:d3:bc:ca:7d:
19:f1:5b:c6:b6:07:33:31:b5:63:8a:4c:de:58:8e:58:9a:70:
c0:cb:f3:dc:2a:a1:f6:aa:63:a6:ac:6e:68:dd:7e:26:c7:a7:
19:37:35:d5:b3:e8:1e:2b:8a:c6:d9:80:5a:35:c2:9e:35:aa:
f1:8b:67:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:17:40 2025 by rpki-client