Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
File: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft (raw, json)
Hash identifier: anN5D15r9SXDumUbaTJ68vBSYtsQuXg2tNJqgm/TK0w=
Subject key identifier: 4A:DF:D2:AE:96:3B:07:8E:ED:39:25:0F:D6:06:EB:CA:1A:C4:35:9A
Authority key identifier: 94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
Certificate issuer: /CN=94d161593da815cac58d3479652d048480d26713
Certificate serial: 01984A4154DA20A129C0B7DE5AE4F6810713
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
Manifest number: 1602
Signing time: Sun 27 Jul 2025 05:00:51 +0000
Manifest this update: Sun 27 Jul 2025 05:00:51 +0000
Manifest next update: Mon 28 Jul 2025 05:00:51 +0000
Files and hashes: 1: bdAF9viIHB5V5FhTALS-owQhcks.roa (hash: lPv9YsuyVHwxqfP/RRJpZeMDZjwRG/d34AhteS5V7Ew=)
2: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl (hash: vsU/pKXgnWLj+yk7mGL9i3dvhcmzooLbp+WGG1CKXmc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:41:54:da:20:a1:29:c0:b7:de:5a:e4:f6:81:07:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d161593da815cac58d3479652d048480d26713
Validity
Not Before: Jul 27 05:00:51 2025 GMT
Not After : Jul 28 05:00:51 2025 GMT
Subject: CN=4adfd2ae963b078eed39250fd606ebca1ac4359a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a5:8c:de:35:21:11:9f:98:4c:5c:52:73:bc:
c4:5a:e2:37:0d:ac:9d:ab:8a:17:44:99:37:38:29:
ed:4c:ed:48:19:18:b5:15:ef:39:da:9a:51:d2:6c:
5a:e0:c3:16:cb:94:49:e1:61:0e:bc:10:df:8d:81:
a0:07:32:60:25:7a:18:24:db:f7:cb:a7:6c:28:f3:
a7:94:9a:1f:6b:f9:43:f3:11:0b:3d:a1:f4:65:ad:
e7:46:c9:33:8f:b4:eb:9c:fc:77:ce:bc:e8:c9:24:
d5:e5:28:1a:14:3d:4b:65:11:8d:79:6a:fb:46:5a:
3f:06:b6:ed:e5:e2:8b:ac:f7:60:7b:c7:1c:ba:4b:
aa:ca:34:ac:05:9d:a4:3e:bd:d2:58:d6:65:aa:46:
80:99:f1:c2:06:46:36:33:bd:7d:f0:63:ed:c5:b6:
34:8c:dc:41:87:36:3e:b2:eb:57:9a:68:7d:37:6c:
e5:06:15:60:d0:68:85:c8:9c:dc:54:37:f0:9f:9f:
ea:2c:f2:89:bb:95:dd:64:e4:da:c3:57:e7:31:f4:
b2:e2:8e:70:25:09:92:72:e6:69:25:80:eb:90:54:
7c:22:1f:61:65:29:47:41:ca:c9:3b:31:b6:3c:a5:
fa:ee:6b:86:13:64:fe:56:ef:4f:30:52:a7:bd:8b:
6e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:DF:D2:AE:96:3B:07:8E:ED:39:25:0F:D6:06:EB:CA:1A:C4:35:9A
X509v3 Authority Key Identifier:
keyid:94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:f2:06:81:04:ee:cd:8b:33:16:de:7c:ed:ba:cb:39:8c:c6:
84:14:e9:ac:70:d4:aa:b2:dd:98:c3:73:37:22:ac:27:fb:ba:
f9:a2:9e:b5:58:86:f7:b6:4a:1b:63:ad:d4:a8:88:33:a9:eb:
ce:24:32:d6:79:33:ee:c3:bb:69:af:04:f5:ab:ea:e8:f6:1b:
a3:15:76:7d:02:cb:ac:9f:01:0f:c0:f7:51:3b:3b:2b:e7:57:
94:25:91:a6:83:cb:60:6a:8d:dc:40:9b:62:88:d7:72:8f:b2:
2b:af:cc:cf:bb:fb:d9:d4:ce:aa:75:6c:4b:a3:3f:b7:14:2f:
e8:1c:16:68:0c:11:07:e0:30:93:b2:00:f3:49:34:32:c9:c2:
7f:41:7b:29:e2:56:4d:4e:99:9a:b7:7f:1f:37:c9:be:b9:24:
2b:a8:05:94:b4:2a:7d:4a:24:41:02:32:9e:a5:6a:0b:49:1c:
5e:5a:39:04:a7:07:54:b3:09:cb:36:10:a3:f0:10:b6:85:54:
1e:6d:df:38:6c:b0:9c:22:06:0a:35:fa:8d:d9:ed:e1:bc:48:
71:62:1f:83:1a:67:e5:29:aa:66:7d:c3:cd:16:6a:6b:15:4c:
44:17:7b:df:41:ee:fa:91:ad:77:f8:59:35:4a:b1:44:5a:a1:
66:33:c1:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 14:41:04 2025 by rpki-client