Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
File: lWmTFkJJYHEcLo7LU2vdArxyT60.mft (raw, json)
Hash identifier: xoKGP1ikoRpVRWBebZzQYpXv44uIo84Vr83zd8qqi58=
Subject key identifier: A3:EC:A3:F0:87:9D:F0:E4:8B:8C:A6:80:E3:C7:66:B3:1F:98:84:7B
Authority key identifier: 95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
Certificate issuer: /CN=95699316424960711c2e8ecb536bdd02bc724fad
Certificate serial: 019922554B0D96C0879F9CC7DB9B07EF9CC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
Manifest number: 04EA
Signing time: Sun 07 Sep 2025 04:00:39 +0000
Manifest this update: Sun 07 Sep 2025 04:00:39 +0000
Manifest next update: Mon 08 Sep 2025 04:00:39 +0000
Files and hashes: 1: QlwSz5QY3CNReEwoqy5_qdcxp7E.roa (hash: J1QwLI9Oak3umoZp+VK8k+3z4SfC016Ed6Yx+Y0FOX0=)
2: lWmTFkJJYHEcLo7LU2vdArxyT60.crl (hash: pDsksf93WlFepPa7gQqT/vyK+MX6RdcY3NcrvTOoCdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:4b:0d:96:c0:87:9f:9c:c7:db:9b:07:ef:9c:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95699316424960711c2e8ecb536bdd02bc724fad
Validity
Not Before: Sep 7 04:00:39 2025 GMT
Not After : Sep 8 04:00:39 2025 GMT
Subject: CN=a3eca3f0879df0e48b8ca680e3c766b31f98847b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e2:cd:25:81:8f:a0:75:a6:87:e1:19:36:e0:
d7:ac:e9:5d:01:33:4b:fb:5b:39:f7:2c:ad:be:55:
58:7f:4f:a3:ab:d1:eb:48:7a:ef:bb:dd:b9:de:09:
b9:7f:99:56:e5:59:fa:79:9f:d5:65:53:0a:d3:99:
44:1a:75:25:9e:fa:96:c2:7c:5a:88:cf:84:5a:08:
4b:fe:4d:26:36:25:4b:07:2c:c4:76:79:25:7a:27:
de:67:5b:33:c7:94:94:4c:6a:69:dd:0b:3e:96:56:
34:40:a1:2b:bd:4b:f3:a8:e5:f2:31:52:99:af:d2:
32:9d:7c:9c:1e:4c:98:50:67:54:52:78:4d:b3:ed:
20:e9:6d:db:77:4c:bf:6a:a3:26:88:a4:1d:0e:49:
2c:02:16:7c:01:cb:f6:a5:3c:be:ea:3d:3b:3c:1e:
b8:b8:54:bd:a8:18:69:eb:14:7e:c8:2a:28:2f:f2:
f7:4c:5e:9c:88:c2:de:66:2e:bb:88:32:65:9e:b9:
9e:28:fc:d2:18:99:12:39:db:1f:2a:bb:d1:1c:33:
9f:f7:78:0c:12:c0:3c:83:83:ec:3e:da:da:59:3b:
b7:7e:a8:8c:2c:c0:4a:cd:47:f1:39:26:54:62:5f:
c1:20:0a:42:2c:9c:7b:29:22:a9:ad:d0:b9:70:f7:
83:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:EC:A3:F0:87:9D:F0:E4:8B:8C:A6:80:E3:C7:66:B3:1F:98:84:7B
X509v3 Authority Key Identifier:
keyid:95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:1d:ec:dc:10:3d:44:15:b3:51:bd:45:f0:de:6c:b2:e9:fc:
2c:6c:16:33:35:85:15:b4:dd:60:37:6f:c8:f2:b1:76:f5:ec:
30:0b:d0:12:d3:34:0c:c4:6a:00:e5:7b:ca:5d:d0:3a:f8:c6:
39:21:95:86:e9:b4:48:a0:8d:d9:23:45:b3:54:72:67:b4:b4:
60:6a:47:26:1c:a9:1f:a5:26:67:a6:16:07:95:40:ab:22:17:
22:48:3c:f8:89:cb:e0:d1:55:57:c0:fc:2d:66:32:f3:1e:d2:
34:be:1f:17:d4:08:2e:b4:5b:34:f8:f4:9e:d2:4c:cf:4d:21:
b1:81:28:e6:43:5f:c5:93:b6:98:3c:c9:c0:c9:d2:26:23:a6:
6f:60:9c:5c:a1:8c:00:d3:d3:a5:48:d6:75:56:53:8c:18:88:
04:48:47:3e:55:54:e1:2c:96:07:56:ce:e3:32:c1:59:30:2e:
b6:85:56:d5:7d:8f:c6:c1:e2:22:bc:ac:c9:68:d9:f7:6f:99:
44:ec:73:19:e0:6f:f0:ff:3a:ca:6c:76:6c:e0:2c:c9:bf:70:
39:3a:2a:07:fe:e2:e5:e0:fe:af:49:bb:28:cf:f7:b6:8f:6d:
07:8d:d3:13:ee:9c:70:65:95:15:bf:2f:a9:47:d3:91:23:be:
28:5a:59:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:26:17 2025 by rpki-client