Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
File: 3LZakO089K4EUlVO40uSqEdtzxA.mft (raw, json)
Hash identifier: zpgjW+AiuhW/8OUdOsQWvmLTJTnRszvMXe7nOO3QgRE=
Subject key identifier: B6:1B:76:EA:78:CA:2E:29:AC:8C:4C:47:38:6F:04:85:81:A8:A9:57
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 0199FCFD92A2610ABC76CB0C9C4031B03C93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
Manifest number: 16F7
Signing time: Sun 19 Oct 2025 15:01:40 +0000
Manifest this update: Sun 19 Oct 2025 15:01:40 +0000
Manifest next update: Mon 20 Oct 2025 15:01:40 +0000
Files and hashes: 1: 3LZakO089K4EUlVO40uSqEdtzxA.crl (hash: nX7/RSuhYklq6SeBRWxnhn71+w7kpLFeZNphxuR+bAQ=)
2: 4TacCA5fNMvJzrQKHYvZp1FsTCY.roa (hash: PoM3PiM+eiQs0IrTl3gGzaDWCG/B3yTTKS+dLnu4Yd0=)
3: DPsq0OHf8MVPtjf1meByn-PM7Q0.roa (hash: oRmxnthJtArJCnDUTkrTLD5StLSleGnIBmGT013Rl5I=)
4: RMqD4QZBwk_wzHsp1loeMRU2jMk.roa (hash: nCQ5Eq/Er1do1Gz84LWpqzugPw71HtroPiJZlZhFk8k=)
5: naw_j5gKrLLjpLmDjj2VeLVHcW0.roa (hash: 9rsCrKDYxMlNCKWks8aC7H+vNumWPUdz18CO2dwuUHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:92:a2:61:0a:bc:76:cb:0c:9c:40:31:b0:3c:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Oct 19 15:01:40 2025 GMT
Not After : Oct 20 15:01:40 2025 GMT
Subject: CN=b61b76ea78ca2e29ac8c4c47386f048581a8a957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fb:e9:00:89:bf:2e:b2:cd:08:43:75:61:3f:
bb:4a:8d:0a:c6:7d:32:03:39:ca:0e:f4:c9:58:21:
f5:a1:31:fd:26:5c:71:11:f6:6b:51:84:41:4c:8d:
d6:44:62:4b:55:d9:5d:d1:73:4b:1b:bb:ed:af:a6:
b4:e6:c9:f2:db:e0:99:ab:54:de:09:ae:1a:19:7a:
6f:23:af:4d:80:f4:2f:54:ae:e7:1d:07:29:92:fe:
7d:a1:16:ba:ca:20:08:4f:95:97:fb:ad:4e:28:f4:
d8:17:7d:8f:cd:ca:b9:f9:8d:00:9f:f8:6f:56:22:
97:3d:16:67:45:1c:f0:5e:93:11:f9:2f:7e:52:64:
10:ce:0c:59:92:28:36:13:bf:ae:79:1a:ee:57:d6:
0c:3b:78:a0:90:ef:8c:d9:f6:a8:a1:46:60:ad:e8:
12:47:71:cf:6c:05:73:62:77:37:2f:e9:38:bd:f9:
b9:c0:62:25:be:a1:62:52:11:b5:ba:29:c6:df:39:
96:74:31:88:cf:c5:f8:c4:b9:61:77:09:f2:5f:69:
d9:26:64:76:46:07:5f:10:fe:0f:21:3a:ed:00:fb:
b6:87:09:ea:d0:96:f3:d5:26:31:7b:20:01:4d:2a:
45:e0:1b:cc:39:3d:d4:e2:33:2e:53:d0:30:1a:63:
cb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:1B:76:EA:78:CA:2E:29:AC:8C:4C:47:38:6F:04:85:81:A8:A9:57
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:6a:fd:71:ad:24:da:2f:b6:50:3f:ba:73:21:9e:fa:c3:d3:
2b:75:ae:76:c5:76:5a:01:ce:fc:b5:4c:ec:c4:38:4d:f0:d1:
48:52:0c:22:f6:bb:2d:b0:40:1c:dd:56:e6:f3:1f:0c:87:90:
34:2c:0d:72:db:3c:63:b5:a1:ec:05:53:74:c4:b7:08:6c:f9:
60:2a:aa:95:10:c7:82:c2:21:a6:4a:0a:f9:47:7e:2b:58:80:
a8:cb:85:4f:0a:64:a8:de:f0:bb:fe:8b:f0:40:5d:cb:47:fb:
bb:73:d4:c0:c6:a5:8e:7d:ec:76:53:0a:ae:62:fd:a1:28:ab:
f6:1d:91:b2:ba:02:65:3e:f3:e1:3d:6e:55:e4:af:3e:89:52:
e8:f7:2c:65:a7:e0:49:04:de:47:b4:2f:e0:4d:da:28:11:90:
bc:7c:f4:95:f1:7b:29:7f:8d:69:3b:5f:a2:fa:b5:09:a9:71:
a2:58:c6:67:5c:8b:ba:b8:35:88:ab:7b:1c:4f:98:72:74:d1:
93:2b:bf:bb:d4:d1:65:28:27:33:cd:d9:64:67:6a:65:41:4d:
83:69:e7:28:7c:ec:21:db:3a:3d:9d:8f:45:3e:3a:15:53:dc:
e9:28:1b:e5:03:a7:4d:73:ee:c6:ff:ef:99:8c:31:34:f5:0f:
bc:64:57:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:39:21 2025 by rpki-client