Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
File: lJQumzXZGQbREkXXO9WM3Y7KSdE.mft (raw, json)
Hash identifier: p42HrI/w8zPAgVNglR/eq1rNFJJE2UfOH7/GneyEDDM=
Subject key identifier: 3C:5E:63:BB:D7:6E:64:3A:CA:41:FE:A7:8D:E3:D7:89:42:59:84:84
Authority key identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
Certificate issuer: /CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Certificate serial: 0199FDDA3A1B00708097DF3B08B5EBCD65E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
Manifest number: 163A
Signing time: Sun 19 Oct 2025 19:02:41 +0000
Manifest this update: Sun 19 Oct 2025 19:02:41 +0000
Manifest next update: Mon 20 Oct 2025 19:02:41 +0000
Files and hashes: 1: V6dzQYTukirsU-gqtCUSWtxmwyw.roa (hash: TAhPxTUSZwI4JsrpdkkvjRG18+wELOBapOWsonm/zpw=)
2: lJQumzXZGQbREkXXO9WM3Y7KSdE.crl (hash: g6O7WqcSeqYwzckRATp1IZMoJxIEQPqD9CR4dD01UHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:3a:1b:00:70:80:97:df:3b:08:b5:eb:cd:65:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Validity
Not Before: Oct 19 19:02:41 2025 GMT
Not After : Oct 20 19:02:41 2025 GMT
Subject: CN=3c5e63bbd76e643aca41fea78de3d78942598484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:56:7c:cd:4f:d4:29:ba:ce:9b:53:d2:79:50:
40:25:a4:aa:38:81:5a:5e:2c:d7:55:69:74:55:d8:
90:ed:36:94:fc:c7:3b:33:af:85:a2:a3:f5:a4:d7:
64:77:9d:b2:3e:ca:c3:dc:72:ec:0e:0e:47:b7:19:
12:ef:ba:a0:0f:36:77:89:de:69:52:30:f1:f9:34:
50:7b:eb:32:e3:71:20:15:0c:67:e8:bc:d8:ba:3d:
3b:06:9d:13:53:eb:87:18:5e:e9:d0:a7:8a:f4:17:
c5:53:ec:52:95:c8:50:21:24:29:df:ff:14:36:f6:
0e:09:58:f1:13:73:13:d8:8a:97:81:a8:4b:2b:e1:
b4:fb:27:90:89:dc:e6:55:ef:c9:e4:f7:64:07:ab:
e4:d5:77:57:ad:13:04:08:36:b7:4f:b1:77:ba:79:
62:48:31:b5:58:0e:39:b6:0a:b2:3e:a4:ff:a3:5b:
c1:68:52:04:14:62:b0:93:6b:39:8f:15:c5:dc:f8:
40:b5:a6:5b:fe:22:74:a8:8e:d4:5b:e4:ec:20:2a:
4d:9f:6d:51:de:47:e9:8a:87:75:66:5a:fa:8b:d5:
af:d8:d3:1f:41:29:1e:ab:1b:2b:52:2d:03:c6:54:
c5:5a:cf:ce:9f:e8:c4:92:ea:1b:c8:dc:65:ce:b7:
1f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5E:63:BB:D7:6E:64:3A:CA:41:FE:A7:8D:E3:D7:89:42:59:84:84
X509v3 Authority Key Identifier:
keyid:94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:fd:36:a0:9e:41:59:97:4b:b5:7d:c6:05:25:fb:5c:fa:7c:
2e:71:75:04:3f:2b:e5:92:7f:4f:f6:4f:14:96:db:ae:20:c1:
96:82:39:ec:b0:88:4f:4b:e1:35:c6:21:3f:17:83:5f:a7:d5:
a4:4e:09:cc:bf:e9:79:20:8a:a8:c2:a1:d5:17:a6:f3:d7:57:
8f:fc:ab:02:67:8b:77:f8:cb:8d:68:41:9f:60:46:4b:3d:c4:
70:98:d5:ee:76:b9:36:e5:53:40:60:4e:6a:b0:0e:f3:97:33:
ee:db:f7:de:0c:e2:f3:d6:9a:2d:23:89:63:90:58:e5:c9:f9:
83:54:33:12:02:d6:aa:b3:74:26:c1:9c:8c:42:9c:a5:fe:ed:
10:d6:2e:75:cf:44:2e:08:ba:8c:6f:be:8f:bf:80:fe:21:67:
94:82:6b:d7:d1:0b:d2:38:41:34:a7:f8:a5:58:86:88:26:d0:
57:49:59:02:99:39:81:9e:50:9d:46:de:a7:56:d3:36:54:9f:
72:1d:f1:73:0e:cf:d1:0f:39:d0:92:63:47:88:82:7a:19:82:
2d:32:b6:36:41:d5:35:a9:2e:c8:44:15:e2:54:a5:c2:a8:07:
5e:5d:d2:9e:ba:1f:18:69:7a:8d:b2:fe:af:d0:78:5e:d9:76:
35:34:2a:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:32:54 2025 by rpki-client