Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: jZQ9SxGLM8jA6c37W9cMHqiITd81bldIHHb+e5kUstg=
Subject key identifier: F5:8D:D6:8B:1B:9F:50:D9:F5:89:32:B9:AB:C6:2B:A1:F2:C9:57:CB
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 0198D4DFFA3781687D4237A28DD247F5B0BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 1659
Signing time: Sat 23 Aug 2025 03:01:44 +0000
Manifest this update: Sat 23 Aug 2025 03:01:44 +0000
Manifest next update: Sun 24 Aug 2025 03:01:44 +0000
Files and hashes: 1: 96CoHDqUFKRWLMKpuPNky2AThV0.roa (hash: 2dbkXGtx2Y2iGJ3uWXJRyOKWK4j+bBsW6iNp6F1vwRk=)
2: 9Q1xAgRNiLot3-j54o5iFnxnl4s.roa (hash: AzmmRL1ZS8f2sEp5vFxgu0dw+ympnZshyg3/a0ND1H8=)
3: Zv6rhEtfx_jSCXc_S8UyXA0vo2U.roa (hash: upx9rJYDv3PHx1B1uURg+ybXETCTfjV8bsr8SvgJ3XM=)
4: biGYeNx8PlSGKHRmVucthKOSlnY.roa (hash: YxlSQax5Hky2oIIKAGXfmWIsjyjpaMRbBxvVdrI+BSI=)
5: g1Zk3nIRea2SYaHqoN92Ss1LCL8.roa (hash: aHQejC3hHy18rRg2jbGxWbnzx0KaJtZTncqKQ8jXn3M=)
6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: Q4kXuWPWc3rK/r40F6IydjYchsP/kjbJ2GMgkitWyoI=)
7: mmvuqSKrxCIOK5dTOpgllxAuYB8.roa (hash: cXrhSBrwqA5XppxSkBQnZWJRKIyKnPJRdZjf9M/iItg=)
8: rZuO-15UbHThyJRmeryxRpgLk2M.roa (hash: /ED0vNPFUaV7PRvXzqX2jHZ983s8HtxjtsJuRuMtCvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:fa:37:81:68:7d:42:37:a2:8d:d2:47:f5:b0:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Aug 23 03:01:44 2025 GMT
Not After : Aug 24 03:01:44 2025 GMT
Subject: CN=f58dd68b1b9f50d9f58932b9abc62ba1f2c957cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:26:f8:7d:c7:dd:e4:64:19:09:a1:a7:1d:c4:
eb:3e:fe:34:fc:ec:3a:5c:3a:e3:29:ff:c3:c7:33:
9c:8c:9b:36:40:2c:89:9a:12:30:7e:aa:f7:67:66:
b5:aa:ff:24:48:28:44:75:d8:db:9c:6c:49:33:6f:
62:3d:83:7c:3d:8d:c0:97:6b:05:ef:dc:4d:a2:e5:
7b:0b:8a:e6:a9:16:b6:b5:9a:24:c5:c9:98:86:34:
61:8c:da:7f:6c:45:04:47:5f:d8:32:50:5a:ec:2a:
c8:9e:5d:74:66:b2:86:00:a9:fe:62:ca:87:95:a0:
ae:ba:e0:6c:91:4d:9e:d0:be:54:ad:7a:9a:da:6e:
54:0a:e1:50:62:f1:c3:aa:fc:63:1a:c1:37:7a:74:
96:32:9f:2f:fc:c7:d9:10:52:cf:ad:45:a1:dd:75:
08:fa:38:f5:8d:f1:5f:a4:eb:75:ea:e8:96:6a:2b:
b5:fb:ba:a1:a4:fd:4e:6a:ef:5a:df:07:45:40:54:
cd:d8:b0:0f:a4:87:a7:2a:b4:6c:51:f6:65:0a:7f:
39:4a:97:c4:c7:11:cc:a5:40:7d:ec:50:73:93:0a:
af:c2:5a:ce:f0:66:03:e6:d5:86:63:ca:7d:cb:90:
5d:41:df:40:7e:27:15:52:e8:a1:55:c4:d8:2c:10:
59:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:8D:D6:8B:1B:9F:50:D9:F5:89:32:B9:AB:C6:2B:A1:F2:C9:57:CB
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:5d:80:6d:aa:3d:80:a0:4c:32:3a:49:21:40:18:b6:ff:ff:
81:07:68:98:76:2f:32:9a:ee:62:88:8c:2d:b3:78:2b:3d:72:
2e:15:4f:2c:c2:f6:ef:45:ca:77:0c:73:81:be:5f:aa:97:a7:
fd:6a:2a:3e:bb:7d:35:17:0f:5b:1c:bf:ee:4c:86:b6:90:1b:
35:38:8c:72:78:4c:77:82:0a:53:8d:3c:2b:68:d6:43:9f:31:
c5:a7:f5:10:ad:45:df:57:e8:f6:ef:5f:ed:8e:02:78:0f:63:
48:5f:18:7e:c9:7e:eb:21:c0:18:1f:72:77:09:9f:d3:30:26:
09:3f:0f:fc:d3:4d:c1:f8:90:c3:8f:63:94:8d:7c:4f:d6:3c:
1c:d6:f9:7e:2c:47:f5:61:c7:cb:58:af:1b:a9:9f:02:95:35:
e7:6c:85:7c:f1:db:89:c1:b1:83:dd:ee:f0:99:48:0e:95:41:
ad:b8:15:a6:91:5d:99:68:db:b1:03:49:7f:d4:7e:df:7d:c5:
00:71:b7:0c:c4:ac:89:a4:dd:46:ba:3c:0d:70:a4:ba:9a:84:
13:c6:d3:ae:43:04:f8:06:d1:d5:06:c2:04:56:69:30:f3:d4:
6b:f2:d1:28:8e:34:4b:eb:2a:fd:8f:55:c7:80:1f:60:48:35:
be:b8:72:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:23:20 2025 by rpki-client