Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: jYRBnVBPFHvzWBQmala2E0gElBNGcBX3OrfHTmeLhm4=
Subject key identifier: A9:E0:50:8C:4A:24:BB:CC:68:FC:A9:AF:01:B6:50:9D:8B:3C:4D:B8
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 019A2477B054BD40B1200366D438387FE9E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 16F7
Signing time: Mon 27 Oct 2025 07:00:14 +0000
Manifest this update: Mon 27 Oct 2025 07:00:14 +0000
Manifest next update: Tue 28 Oct 2025 07:00:14 +0000
Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=)
2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: sFjPgIvDXTmsU6BsasgOdVz/0bUu88qTjWumKif80WI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:77:b0:54:bd:40:b1:20:03:66:d4:38:38:7f:e9:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Oct 27 07:00:14 2025 GMT
Not After : Oct 28 07:00:14 2025 GMT
Subject: CN=a9e0508c4a24bbcc68fca9af01b6509d8b3c4db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d9:94:1d:3c:a3:44:f0:30:e6:b7:42:4a:7c:
7e:d7:3f:ec:75:92:b0:9d:91:4c:89:78:23:13:e9:
3d:6b:c6:09:bb:3a:0c:47:2d:df:b2:38:c7:7d:d7:
83:f9:14:fe:1a:6d:f2:dc:de:1b:18:02:9f:e5:84:
89:cf:dd:73:1b:89:22:27:83:26:d5:69:6a:75:45:
b5:52:85:a6:52:87:d1:0f:9d:e5:71:cb:50:3b:d0:
c9:de:ab:c3:7a:c0:9e:49:a6:e9:97:e3:3d:bf:30:
1b:11:66:29:30:1b:ab:00:e4:d1:49:c8:3c:3b:00:
e4:3c:33:87:df:de:fd:3a:bc:46:36:db:52:46:f6:
64:34:fc:35:eb:45:ab:e2:bf:2d:62:b9:8e:7f:66:
99:49:15:09:cb:3f:f9:96:4d:ec:6c:52:1d:08:86:
73:d7:50:16:fc:60:8e:63:3e:b7:9c:b6:8f:93:ee:
48:69:3d:9b:88:ca:fc:e7:aa:9a:ad:b3:28:0e:65:
ce:a4:b6:e1:73:bc:bd:b6:66:81:30:e3:e1:3e:f2:
c6:a5:c6:72:f8:33:81:66:06:74:4b:96:46:a6:59:
4e:72:a9:33:e3:d1:f4:3c:ed:54:86:09:52:ec:3d:
ea:f4:b2:69:c9:58:9a:e8:70:ce:5a:be:88:ba:2b:
93:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E0:50:8C:4A:24:BB:CC:68:FC:A9:AF:01:B6:50:9D:8B:3C:4D:B8
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:35:2c:d3:39:99:67:45:da:df:3e:30:09:8a:00:8e:66:21:
c2:83:ce:9d:3e:a1:cd:49:cc:7b:d0:ec:33:dc:10:3a:64:81:
40:10:b3:1e:20:ce:1f:57:93:47:44:67:34:54:49:6d:1a:81:
61:95:a7:73:f5:cd:72:0e:6e:3f:fb:e2:5e:c3:3e:89:d3:b2:
79:68:5b:c9:1b:50:0c:3d:9e:c1:bf:46:ef:8c:e0:67:27:f2:
17:84:1b:47:b5:1e:2b:6d:d2:04:9a:44:f8:36:b0:d9:ed:3e:
ed:05:ee:39:e1:1d:3c:3d:1b:24:35:ac:7d:01:7f:b6:3e:cb:
53:ca:40:c2:9d:1d:ee:f6:32:bf:9c:9b:01:ba:d3:18:4a:de:
e6:af:60:ce:4a:f6:f8:65:2c:f9:17:a9:cc:0d:1f:30:e4:04:
63:0d:d1:f6:73:20:7f:b7:92:63:e3:ee:68:e9:81:13:b5:e4:
84:d8:5d:b6:ae:4d:3e:78:75:44:f6:b9:f4:d2:c4:dd:78:d4:
28:82:f4:0b:d5:aa:f5:5c:0c:3b:94:35:64:72:56:cc:c0:a4:
70:45:ce:23:3a:40:b1:0e:47:12:e4:8d:ad:89:25:f4:07:02:
fd:72:46:f4:c4:9c:f3:6e:99:86:20:14:62:2c:f3:03:e9:e9:
9b:b5:7c:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 14:05:15 2025 by rpki-client