Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: mpv/MOroFq8+89p4QbudnAcFLw4YTeCoTJ33WzmG8hQ=
Subject key identifier: F7:6D:B9:6A:2C:C0:19:93:90:A3:85:8D:A6:C2:4F:45:D3:C5:33:A7
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 019935372B0CE58239D0B19D0C631DA4CED1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 167B
Signing time: Wed 10 Sep 2025 20:00:31 +0000
Manifest this update: Wed 10 Sep 2025 20:00:31 +0000
Manifest next update: Thu 11 Sep 2025 20:00:31 +0000
Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=)
2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: TlSMMwdRzmNS8qjaFPZ5sOX8AnGr6PFiEacvbJ+EYOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:37:2b:0c:e5:82:39:d0:b1:9d:0c:63:1d:a4:ce:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Sep 10 20:00:31 2025 GMT
Not After : Sep 11 20:00:31 2025 GMT
Subject: CN=f76db96a2cc0199390a3858da6c24f45d3c533a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:a9:b0:3e:a2:47:d9:72:d8:2a:39:4e:3a:f7:
48:56:ec:ca:56:83:da:66:50:6e:b4:59:22:12:ee:
e3:9a:19:51:09:14:a9:25:ca:8a:48:b7:fc:4d:8f:
4f:b0:3b:c7:89:8d:c1:f7:81:a3:4a:eb:ec:ce:fc:
cc:ee:86:20:06:02:56:55:82:1f:92:08:0b:05:7b:
60:96:34:2c:0a:fc:dd:2a:d0:aa:80:9a:7f:22:99:
b9:bb:23:a1:3d:c9:7e:3a:c5:72:6a:a4:02:05:2b:
ee:aa:ae:14:d9:ee:1e:b8:da:5d:10:ac:df:ba:13:
51:b1:4d:f5:c2:a5:ea:0b:72:f8:20:08:ac:80:17:
c4:67:ce:e1:de:80:20:72:e4:61:34:bb:ec:db:e6:
09:5b:c5:56:3f:9d:01:3f:f2:26:12:ec:d7:31:0a:
15:e3:14:73:ff:88:56:d0:5f:ca:64:f4:bf:38:b9:
0f:f0:a5:ee:47:cd:cd:fa:33:ae:45:a2:89:e3:82:
61:ab:25:99:86:e9:1a:1e:3e:4d:2c:b7:d4:54:21:
41:7d:9a:36:a4:f8:1a:0c:18:1d:09:2a:bc:c4:c7:
76:07:81:93:b2:35:5c:4d:84:13:2f:7e:b4:95:5a:
1f:ee:f4:a1:f2:04:11:b6:7b:75:0d:08:ed:a8:35:
3c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:6D:B9:6A:2C:C0:19:93:90:A3:85:8D:A6:C2:4F:45:D3:C5:33:A7
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:52:63:9e:ff:d4:b7:38:7d:58:da:1f:2d:c4:25:f1:7c:db:
b9:7f:3a:a5:79:f4:10:5a:bf:f1:56:92:f5:71:7c:2d:ce:9a:
59:cd:49:cd:75:85:a4:03:8f:d7:22:db:8e:f2:cd:a2:ec:32:
93:6f:b8:91:25:64:a4:86:23:68:80:d5:08:5e:84:34:df:a2:
83:2e:2a:2d:8e:b9:ed:cc:f1:29:72:0b:cd:f6:67:cf:1e:51:
70:fb:7d:5b:8e:99:d2:50:9f:db:e7:fd:4f:84:8a:fb:04:de:
07:36:9b:a0:db:ac:16:a3:8f:6f:89:e6:de:23:23:d3:20:65:
71:46:2b:48:af:f5:fe:a1:9d:55:da:ff:69:e5:b1:22:17:4d:
89:85:f7:e0:d9:bf:a0:4f:79:0a:c4:4a:1a:ca:60:24:c8:9f:
a1:7a:1b:91:58:a6:38:59:c2:cf:88:97:e8:79:5a:62:09:fb:
64:44:62:dd:49:fb:f5:98:8b:c0:df:1e:de:76:3c:f5:04:c9:
ba:73:64:28:d7:c9:e4:3e:20:6f:2b:b9:85:47:e7:67:20:2a:
25:d6:81:dd:e3:e3:10:14:ee:c6:ab:b3:d5:d8:d1:64:89:a9:
5e:8b:ee:02:20:89:37:aa:9a:72:2c:06:e8:0f:4d:e8:f3:ab:
c8:12:ce:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 03:13:56 2025 by rpki-client