Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
File: lFtz335v4RAPHROgfBjVmvIoQow.mft (raw, json)
Hash identifier: xN29KWHarI1mUnYODRsc9ZkYFU0y8UODyx3dH30sZRQ=
Subject key identifier: 40:36:C8:FB:72:B5:16:B2:18:61:35:D8:9C:70:E6:9C:7B:71:CC:73
Authority key identifier: 94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
Certificate issuer: /CN=945b73df7e6fe1100f1d13a07c18d59af228428c
Certificate serial: 019A7149FBD8E44B347206F18FB223EC22AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
Manifest number: 15C5
Signing time: Tue 11 Nov 2025 05:01:05 +0000
Manifest this update: Tue 11 Nov 2025 05:01:05 +0000
Manifest next update: Wed 12 Nov 2025 05:01:05 +0000
Files and hashes: 1: 9LVEIaMlmJxNlD9z3n5kSDNE07w.roa (hash: Ts++AgaSboNBt9jLBwSwB9DRgMmL7vyooMiQkdJdfP8=)
2: lFtz335v4RAPHROgfBjVmvIoQow.crl (hash: 5HRi7YF2epnIryGtmmVI84ynk1cmlKvSoYuyJ9F5MQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:fb:d8:e4:4b:34:72:06:f1:8f:b2:23:ec:22:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=945b73df7e6fe1100f1d13a07c18d59af228428c
Validity
Not Before: Nov 11 05:01:05 2025 GMT
Not After : Nov 12 05:01:05 2025 GMT
Subject: CN=4036c8fb72b516b2186135d89c70e69c7b71cc73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:52:c0:0d:a7:dd:2c:6f:0a:0f:c1:99:04:24:
8b:d6:f4:48:ab:b2:a6:0e:91:3d:5b:1f:9a:26:f2:
29:d9:95:a9:89:39:31:01:14:6d:58:8b:36:eb:fa:
31:8b:47:54:7b:9a:45:6c:f4:33:99:96:7d:6b:53:
eb:e8:b4:e0:c0:81:76:ba:d1:81:1d:f2:6f:64:50:
09:f6:b0:ce:6e:67:85:c1:7c:f6:13:28:c5:cf:25:
67:cc:22:de:c3:b2:d6:eb:b5:e6:91:9f:b4:73:d5:
18:18:a8:2f:45:66:53:3f:9b:b8:1a:93:ab:45:d2:
12:db:78:32:6f:b0:e3:c2:ef:4e:b8:df:42:09:94:
55:47:87:8d:bd:55:b5:e0:1e:95:02:02:05:17:3d:
05:31:b6:64:98:b2:05:47:23:52:ad:03:16:e5:26:
70:e6:6c:db:7c:1b:04:8f:67:00:37:2f:be:ae:f5:
09:a9:83:2d:99:d0:73:36:da:ba:6a:7d:af:68:3b:
b7:49:69:d9:8f:ed:51:1f:fb:b0:bf:94:12:6c:e8:
56:c4:28:c0:06:4a:8a:8a:24:c0:32:69:76:8d:dc:
7c:9f:1c:c6:0c:00:92:2b:b8:84:ae:d9:c6:d6:96:
6d:d0:b6:a8:98:18:06:5e:f8:95:be:ba:da:b4:b0:
a8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:36:C8:FB:72:B5:16:B2:18:61:35:D8:9C:70:E6:9C:7B:71:CC:73
X509v3 Authority Key Identifier:
keyid:94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:4e:1d:c6:69:ee:a8:7e:61:75:5f:8a:78:86:26:0e:33:58:
d9:0e:f2:99:52:5c:71:d3:ff:e5:7e:cf:ea:40:76:27:a1:fc:
d3:4d:f4:63:b9:c8:a9:53:1e:c4:c8:3f:06:1c:82:3b:bc:89:
e3:8f:35:90:ec:5b:a6:bb:bf:4b:2a:4f:cc:29:ec:9e:3a:60:
a1:82:d9:59:0b:be:18:67:f2:73:69:62:e8:59:79:37:b6:51:
23:be:5b:1d:31:f2:ac:cb:63:64:ce:b3:41:7c:9c:0c:25:89:
6a:cc:00:2c:5b:dc:1c:f9:5c:30:21:ac:04:8f:06:fc:61:dd:
ae:a2:0f:94:6d:11:73:1d:ca:00:38:27:a7:a6:3b:d4:0d:7f:
cf:6e:5f:8c:26:04:0d:14:3f:ac:08:58:0d:16:9a:5a:4b:22:
c7:4d:2d:63:0c:cf:8f:0f:43:18:a4:e0:54:fa:6b:98:75:fb:
07:ef:de:78:b3:b4:1a:86:0f:25:7a:1f:89:46:31:a7:e4:d4:
01:b3:85:74:84:aa:45:ed:1c:fc:9f:5e:b8:ad:11:3f:38:ae:
25:53:4a:93:7b:f0:22:c7:b8:39:67:27:7b:cd:d9:13:e6:27:
cd:68:b9:62:7d:0e:e5:48:ec:59:7b:28:8e:1d:73:52:49:f2:
27:55:ee:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:08:39 2025 by rpki-client