Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
File: lBZrcEhD09l1QJXIOpG0k4KCAKI.mft (raw, json)
Hash identifier: ko0JO9TRBE2muZqfD2+gegsfF92NdDl8WfH7VNjxUrc=
Subject key identifier: DC:B2:5D:10:74:1C:82:1B:A8:80:CA:D5:42:2B:9A:58:64:97:9D:24
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 01992255C25464BB14DF669694C680FE7093
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
Manifest number: 1729
Signing time: Sun 07 Sep 2025 04:01:09 +0000
Manifest this update: Sun 07 Sep 2025 04:01:09 +0000
Manifest next update: Mon 08 Sep 2025 04:01:09 +0000
Files and hashes: 1: 7NOWSwr6Ix9WqMtFCauUoXq2B4E.roa (hash: 71eyC9fYC2VExHc19u8sJwP29ASsjLuAVH+CBPHOF2M=)
2: Ruw-x4zfVCc3GTiQCnnMayYLrMQ.roa (hash: VPqD7NaSAxVUR7gCvmAQcQt1SUni3lPjk7OqIt9I1TI=)
3: Z7uuC5XE4-fMCsGBtqQw7mSeH9U.roa (hash: W7maKhHagBpEQgNK15fnWc66E1ZuDuwRIn7gOriSZAo=)
4: h9d0ktI5MHIktnWrhY2zneTKIew.roa (hash: 9qkOa4Wd+V/Z+xQC2CIhkz1VoRa5qCsYXEwwfKMwhGQ=)
5: iLiQdmyWfTSKLtGAKTv8i9pD7b8.roa (hash: Kr8U4lUGZbLkZ8pUjbEG8aEkHuf+c7USfKgTZhieF7c=)
6: lBZrcEhD09l1QJXIOpG0k4KCAKI.crl (hash: Vu2s4bxl55dfw2CPlm6Ha1fMfbETOoDsaOLOkh2fM0A=)
7: zIA6BDrr_xrDLDlzAGpw_9P6klo.roa (hash: pfzDsna4zGoCQX7v3ji49EBWdSr9XYlq27X+4n1BNgY=)
8: zRIEfiHVhkzqHiYdm3McIGPDP2Q.roa (hash: 32bioXyHcsiw84uow4i7c6KhRJSD3457u6OM44k/3vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:c2:54:64:bb:14:df:66:96:94:c6:80:fe:70:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Sep 7 04:01:09 2025 GMT
Not After : Sep 8 04:01:09 2025 GMT
Subject: CN=dcb25d10741c821ba880cad5422b9a5864979d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c2:c6:51:b0:d5:4b:b1:cc:7a:04:30:fa:e4:
df:82:ae:91:5e:2e:5c:ee:95:91:b0:27:95:60:2b:
40:9e:de:8a:6a:7d:22:6d:b1:cc:22:38:e7:fb:32:
83:2b:dd:bc:ab:2b:6d:8c:c0:0e:89:6e:b5:35:76:
3d:dc:c9:37:9d:93:42:77:7a:ad:c7:71:bc:d4:d6:
be:7b:31:75:35:c0:d7:8f:10:5e:58:6f:ae:79:e5:
78:17:8e:d6:8e:75:51:eb:4b:79:d8:65:5f:80:92:
6a:90:de:5f:1b:69:29:4a:3f:e0:9d:94:80:0d:89:
09:4a:e9:a9:8e:aa:9e:67:34:f5:e4:3c:d5:0b:40:
e5:ca:f4:a0:69:c7:8e:42:b7:da:13:49:11:3b:c8:
d4:30:22:26:68:d6:ae:31:58:ba:1a:7b:27:75:e1:
c9:a1:44:b5:43:0d:3c:81:9c:75:1f:eb:75:08:99:
b4:a8:8e:c1:54:10:a2:d9:9c:76:d0:a5:a3:6d:20:
61:0b:f5:a0:b6:b3:50:5f:ac:25:95:2f:7a:6c:3e:
48:df:7d:3f:dc:58:9e:93:79:a8:52:11:0e:23:19:
79:0a:60:11:4c:56:31:d8:6e:ba:2d:43:ca:2f:f0:
a9:07:88:13:20:72:b6:1b:c8:12:21:02:ec:5c:cf:
f2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B2:5D:10:74:1C:82:1B:A8:80:CA:D5:42:2B:9A:58:64:97:9D:24
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:da:04:da:d9:70:56:7b:e0:a4:e3:dc:9e:09:56:54:b8:f1:
19:06:c0:2f:1d:bb:03:2d:16:95:47:ea:b0:f8:8d:f2:5e:2a:
f5:23:be:be:2b:e4:c4:68:89:53:78:d0:52:f3:70:e5:c6:ff:
52:60:19:dc:c8:2c:9e:d8:92:41:4a:bc:4b:04:df:98:7e:5e:
f2:7d:ae:71:76:50:ee:4e:5a:f0:ba:74:6c:32:5e:37:fb:71:
cc:5c:a2:e4:9f:e4:5c:e1:08:e0:22:6b:59:6e:c4:95:f9:70:
20:a4:7a:3f:26:a8:25:31:92:00:cd:8d:b7:e9:16:0a:2c:0a:
84:9c:7c:63:34:cb:ec:ca:dc:4f:a1:18:55:b4:45:de:00:60:
51:c9:58:f1:11:9f:cb:d6:dd:5a:b4:40:11:97:1f:f5:37:51:
11:d6:96:3b:60:fe:be:ab:52:9b:61:c2:b9:f0:3f:dd:23:ec:
fd:9c:cd:f0:e4:79:62:25:30:29:c0:db:7b:89:75:0f:9c:09:
30:17:4b:61:95:e0:b1:db:5e:76:1d:1b:ab:d9:89:19:6f:c2:
d4:6c:78:2a:71:9c:56:55:87:5f:08:c7:95:c2:84:8f:03:3d:
bd:10:8b:25:ae:61:d9:4e:10:75:3d:bd:b0:fc:d4:f2:ca:b0:
b3:16:77:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:50 2025 by rpki-client