Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
File: 3LZakO089K4EUlVO40uSqEdtzxA.mft (raw, json)
Hash identifier: X3Fu1Wlzkcvpq983U1a1lffgEn8bDf244dwfiDIKrV0=
Subject key identifier: FC:41:B2:19:56:F7:F2:C8:BB:7E:76:46:AB:C7:43:4B:10:3C:9D:BE
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 0198D54DF7314D27986E8A2A25B014598777
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
Manifest number: 165B
Signing time: Sat 23 Aug 2025 05:01:53 +0000
Manifest this update: Sat 23 Aug 2025 05:01:53 +0000
Manifest next update: Sun 24 Aug 2025 05:01:53 +0000
Files and hashes: 1: 3LZakO089K4EUlVO40uSqEdtzxA.crl (hash: 2uItqV7nhwDt+VriMvUci3abaEwdfYVufw+wfzalDM8=)
2: 4TacCA5fNMvJzrQKHYvZp1FsTCY.roa (hash: PoM3PiM+eiQs0IrTl3gGzaDWCG/B3yTTKS+dLnu4Yd0=)
3: 5XSs95Ubgx3AmQjCtcwc9kipgqo.roa (hash: W1QuAOuGtR5IQsNm8mAqSkXh18EH2NzjwhA/lLQEsCs=)
4: 7NaNhfKzkHk-4U6P-rr5I2f5Dns.roa (hash: ho2GvZ21Aa+NkGp3FzrcTvxIRbuhiRhcV51nfQsaRvI=)
5: RMqD4QZBwk_wzHsp1loeMRU2jMk.roa (hash: nCQ5Eq/Er1do1Gz84LWpqzugPw71HtroPiJZlZhFk8k=)
6: naw_j5gKrLLjpLmDjj2VeLVHcW0.roa (hash: 9rsCrKDYxMlNCKWks8aC7H+vNumWPUdz18CO2dwuUHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:f7:31:4d:27:98:6e:8a:2a:25:b0:14:59:87:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Aug 23 05:01:53 2025 GMT
Not After : Aug 24 05:01:53 2025 GMT
Subject: CN=fc41b21956f7f2c8bb7e7646abc7434b103c9dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:75:62:94:d2:58:12:0f:cc:c8:0b:cb:ae:6e:
bc:0b:3b:69:af:80:b4:e0:2b:05:75:30:b3:f8:11:
45:ad:3b:ef:ae:69:6e:41:67:1c:17:3d:bd:87:41:
07:e1:fd:c7:ba:8b:14:fb:d9:8c:59:ff:48:56:df:
63:1b:f8:c0:8d:08:55:91:c8:c0:92:3b:95:61:49:
b9:74:54:25:1c:6b:a8:8b:54:42:2c:a0:74:54:42:
9a:33:10:20:a7:34:ff:dd:7d:99:50:84:57:66:1c:
0c:bf:eb:86:02:93:f2:97:fc:a2:49:26:54:ec:6e:
9e:e3:d0:4d:cd:2d:fa:94:6d:ca:f0:22:9a:af:ad:
2f:98:f1:66:45:1f:c8:66:e3:fd:15:0f:3a:3c:39:
65:1b:53:71:f3:aa:16:1f:a0:16:f8:b5:b7:74:71:
24:0a:eb:ed:88:00:ff:90:b8:ae:0b:f7:f4:21:0a:
80:c9:14:08:ac:82:f4:98:f9:5a:10:3c:59:96:ae:
9e:53:8a:60:ed:79:7a:96:20:2c:d7:5b:17:f6:31:
5c:28:cc:1d:e4:97:5b:62:d4:eb:f3:1e:c3:a9:1a:
63:37:20:3c:19:30:44:3a:82:71:06:36:17:96:d6:
97:3d:17:32:0a:68:74:35:fc:6f:3c:19:03:04:12:
98:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:41:B2:19:56:F7:F2:C8:BB:7E:76:46:AB:C7:43:4B:10:3C:9D:BE
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:e0:f3:45:71:6a:62:1b:da:0c:ce:e4:4b:f4:63:45:85:3b:
8c:d0:18:f1:76:61:24:1b:5b:2a:ef:19:e9:17:a8:e8:1b:38:
96:a1:f5:47:cc:78:64:8f:fc:8e:aa:2c:20:5b:65:01:81:71:
ea:82:60:06:08:00:86:01:9c:ab:a7:f9:c0:43:5d:8f:05:81:
d6:b8:a5:c1:1a:f4:eb:bc:3f:e4:25:60:61:2e:88:f6:d1:38:
a9:42:65:6b:ec:b5:45:d1:fb:66:87:8a:07:77:9e:69:a5:de:
79:0a:0f:fe:f4:f6:42:72:c9:ec:37:51:dd:1f:78:df:8a:1d:
11:3c:df:1c:95:af:28:b1:da:2f:81:01:da:7a:d5:f5:98:51:
32:cc:29:13:04:11:97:f9:ee:38:9e:51:df:24:38:dd:ab:0d:
e1:fd:68:b5:f1:bf:25:8c:d7:ea:32:2e:71:e7:6f:28:69:45:
38:a8:62:8d:61:89:5d:d2:f9:00:68:eb:a5:de:dc:e2:27:78:
11:8e:0b:d1:f6:7b:16:40:6e:1d:f0:3f:f8:fb:ec:cf:f6:10:
dd:1c:67:f7:91:b7:f5:3b:1a:a7:7c:34:3d:48:13:cd:c2:4b:
61:40:62:bf:c1:dc:9a:de:87:ba:57:52:81:49:31:eb:03:58:
92:7f:48:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:50 2025 by rpki-client