Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
File: lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft (raw, json)
Hash identifier: EuW0AbLOEAn6JvYB6/Fcmy/pllUocTFpvVn7aCC24xY=
Subject key identifier: 28:E2:CC:44:5B:20:91:A0:70:2F:AA:B8:A2:0F:5C:17:C0:9C:5F:B7
Authority key identifier: 95:46:46:5C:A5:B8:6C:25:A0:2E:52:EC:BF:04:C4:CF:BC:07:65:4D
Certificate issuer: /CN=9546465ca5b86c25a02e52ecbf04c4cfbc07654d
Certificate serial: 0198D5BC1D19EC3827B93DF84373B2D4BE50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
Manifest number: 0494
Signing time: Sat 23 Aug 2025 07:02:11 +0000
Manifest this update: Sat 23 Aug 2025 07:02:11 +0000
Manifest next update: Sun 24 Aug 2025 07:02:11 +0000
Files and hashes: 1: NWUftztBrG96_y2EzypECwRaWiE.roa (hash: iB3abFntFNLTwV5YoQUMjYIpTV58Rd0ggjc38BexLcc=)
2: lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl (hash: ATo2Yeo+aEKOjGENVUGMf8ZWwurTHzYNns2P7gvnZSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:1d:19:ec:38:27:b9:3d:f8:43:73:b2:d4:be:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9546465ca5b86c25a02e52ecbf04c4cfbc07654d
Validity
Not Before: Aug 23 07:02:11 2025 GMT
Not After : Aug 24 07:02:11 2025 GMT
Subject: CN=28e2cc445b2091a0702faab8a20f5c17c09c5fb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c0:55:be:ce:10:f6:b2:c3:80:0f:98:be:d3:
4a:27:5f:61:c3:bb:e2:97:aa:7a:7e:50:25:f8:08:
fa:03:4a:e7:c2:44:04:3e:c1:d4:dd:85:dd:e9:04:
d1:5e:43:18:ed:92:77:0c:11:ce:c9:87:87:23:d2:
eb:88:e4:8b:1b:e2:6c:cd:1e:a5:11:12:4a:b3:51:
ee:1f:5b:7a:c8:e9:b6:cc:4b:32:83:fb:6f:0d:b4:
13:cb:bd:b2:62:b5:1f:20:f1:58:fe:97:a5:97:9f:
51:fc:d4:54:b5:fc:b7:62:1c:e0:4d:8c:e2:06:77:
59:0d:8d:2c:6f:d6:fd:2c:a2:10:9f:86:47:35:ea:
a7:37:66:e9:6b:0d:a6:4e:f2:be:ca:71:7c:c9:d1:
27:bb:be:8b:05:dd:29:48:1d:57:12:0b:3d:7a:e1:
38:39:b8:9e:e4:89:d5:29:bf:55:73:39:f1:dd:b7:
4e:5f:30:12:d3:94:05:6e:50:73:2f:20:0f:1f:95:
3f:00:39:23:75:56:ed:14:30:25:4e:d6:67:97:41:
19:ae:ba:b0:55:fc:0a:8a:14:8b:23:1c:54:e9:60:
96:ec:7c:19:ad:17:df:66:33:8a:2a:7a:9e:51:55:
ad:48:4d:61:8a:e0:37:78:56:c3:67:24:1f:e8:a6:
ae:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E2:CC:44:5B:20:91:A0:70:2F:AA:B8:A2:0F:5C:17:C0:9C:5F:B7
X509v3 Authority Key Identifier:
keyid:95:46:46:5C:A5:B8:6C:25:A0:2E:52:EC:BF:04:C4:CF:BC:07:65:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:7b:48:04:f2:be:a5:a3:f2:ba:c0:99:b1:02:ee:ed:e2:58:
02:c9:1e:d0:9c:03:b4:0c:2f:6e:af:c0:fd:74:ae:9a:b0:47:
21:40:36:e9:d1:50:37:cb:0b:79:a9:e5:1f:70:43:8f:26:c2:
47:6a:15:bc:6e:4b:bb:42:8e:c4:a8:9b:a0:99:3f:4a:7b:74:
c2:d8:26:37:0e:58:34:69:2c:9e:21:07:e7:09:e1:5f:61:d2:
fc:f6:88:0e:5d:ae:bc:ad:16:d5:dd:f9:dd:48:25:03:d0:bd:
f2:39:49:aa:b9:68:e4:ee:ec:0c:d1:d0:87:fd:a8:30:bc:18:
43:45:73:26:d3:ad:4a:e6:d6:64:3f:d1:da:1a:97:fe:59:54:
26:67:ef:ae:f0:65:4a:b0:13:94:03:20:1b:e7:a2:24:77:ca:
a6:8e:64:d4:5c:59:80:2a:e2:92:df:9c:cb:3a:d2:4b:30:4b:
f0:5d:84:43:d7:97:98:3e:c9:4c:a3:9f:8d:1a:e5:b8:c1:7b:
f8:ea:c3:1c:2f:73:e1:41:a7:7e:15:6d:cf:ab:49:82:35:97:
c4:fe:d4:e0:d3:ab:e3:ca:86:8c:bf:70:0f:b6:b6:da:bf:29:
98:99:36:23:ad:ae:c3:d2:9d:c2:59:45:4d:3b:c5:f5:f3:2f:
4f:06:7a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:00:15 2025 by rpki-client