Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
File: lHEhWA7QLt309eWofTfgF7Mt9xs.mft (raw, json)
Hash identifier: dXjCddwi0nNXV3yUJ4lzM6e1oxO7mPQNb00pQVvQoUk=
Subject key identifier: 70:0C:28:18:29:C2:47:D0:76:22:29:15:A4:EF:D4:FE:1B:BB:06:B0
Authority key identifier: 94:71:21:58:0E:D0:2E:DD:F4:F5:E5:A8:7D:37:E0:17:B3:2D:F7:1B
Certificate issuer: /CN=947121580ed02eddf4f5e5a87d37e017b32df71b
Certificate serial: 0199FDD8DBCB8865F0411E1723484D967C0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 19:01:11 +0000
Manifest this update: Sun 19 Oct 2025 19:01:11 +0000
Manifest next update: Mon 20 Oct 2025 19:01:11 +0000
Files and hashes: 1: lHEhWA7QLt309eWofTfgF7Mt9xs.crl (hash: WL65/XvNaXyGbLk1Cja2ST1FrazXYIDZEkbbQIiRcb8=)
2: qxUZWESkWfPvrh5nMLtmisJ-xm0.roa (hash: QiH9IyXND+kMiLoL1S1ImhCqyZcezaR+0IjNSX+Zg6I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:db:cb:88:65:f0:41:1e:17:23:48:4d:96:7c:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947121580ed02eddf4f5e5a87d37e017b32df71b
Validity
Not Before: Oct 19 19:01:11 2025 GMT
Not After : Oct 20 19:01:11 2025 GMT
Subject: CN=700c281829c247d076222915a4efd4fe1bbb06b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a8:03:8b:d9:0e:70:9f:7f:f3:7f:8c:c3:33:
e1:e7:d3:c1:b6:03:bf:ac:bb:47:70:fe:eb:2a:f8:
8f:cb:90:3a:12:ff:c3:d1:e7:65:3f:fb:87:d9:a5:
a4:c5:82:5a:29:2b:7c:88:de:e2:2c:18:59:06:b6:
8b:fe:8f:db:de:43:2f:15:c8:74:91:1c:e2:36:13:
a5:69:f8:24:c6:de:09:42:90:cf:e9:35:ac:67:70:
18:2d:b2:00:c4:b7:8f:05:7b:07:2d:8e:58:9b:56:
43:5f:0e:1c:5a:90:d7:1e:86:0d:cc:31:71:ee:24:
25:60:4f:59:7c:ba:f2:2a:da:b2:ba:eb:f5:03:a2:
f3:05:31:ed:1f:c2:74:a1:ad:8a:51:d8:4f:fc:42:
de:a7:05:7e:39:6e:de:f9:1e:bf:b8:1e:a9:06:34:
24:f5:02:bd:c7:b5:f1:d2:fa:e6:f1:80:c5:f6:de:
49:68:ef:91:32:13:af:af:40:3b:7f:eb:e3:af:68:
14:6a:71:09:ed:a8:f8:3c:0c:2e:6b:61:d0:18:73:
91:cd:93:56:55:3f:4c:0b:59:b3:01:97:79:52:04:
48:c7:ea:35:2b:92:46:8e:7d:bd:9a:b2:99:9f:a3:
34:ad:cc:d3:06:95:c9:b4:44:bd:ea:69:fa:3c:5c:
55:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:0C:28:18:29:C2:47:D0:76:22:29:15:A4:EF:D4:FE:1B:BB:06:B0
X509v3 Authority Key Identifier:
keyid:94:71:21:58:0E:D0:2E:DD:F4:F5:E5:A8:7D:37:E0:17:B3:2D:F7:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:37:d7:cb:bc:bd:7a:4e:31:b7:d1:01:1c:d2:9e:75:e6:15:
eb:5b:f6:fe:f9:48:00:40:df:85:5f:53:4a:49:5c:82:35:e7:
4f:d6:b8:95:ed:74:0d:8c:bb:e6:01:0c:19:24:aa:46:e2:6d:
3d:cf:81:49:06:a7:63:95:ce:a2:ec:d7:93:d5:75:f7:cf:28:
13:2b:10:7b:62:02:70:44:dc:a2:1d:84:65:1a:7e:f1:c3:0f:
da:8d:94:4c:4c:e2:32:23:3c:72:62:c4:ac:fd:19:58:71:e0:
b0:11:4a:fa:c2:38:9d:51:2b:d1:89:ff:8f:20:78:87:24:5a:
f3:c1:cd:c3:64:2f:44:ad:f6:7d:6c:5e:d1:21:09:28:da:49:
e5:d9:a6:b6:6a:6c:11:8c:c5:a8:eb:6c:a3:7c:a1:9d:3d:dc:
aa:a9:1d:49:26:8d:df:75:42:58:6e:77:5d:58:01:ad:e7:aa:
02:21:15:f8:88:a0:09:1c:81:1e:19:c2:a9:6f:fc:23:8a:c5:
85:10:0f:d2:83:16:42:ab:41:17:89:38:02:07:e6:8e:fd:b0:
aa:71:48:66:08:08:83:2a:ed:fc:12:87:76:e1:e3:03:cb:9c:
9f:2d:a4:d2:02:a5:e3:63:56:e9:20:67:9f:bc:d9:bc:32:cb:
d4:2e:71:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:40:10 2025 by rpki-client