Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
File: lBZrcEhD09l1QJXIOpG0k4KCAKI.mft (raw, json)
Hash identifier: y9ybUI0b8vHFJJeQ0mUQxyi958e2gQlTwZZPLEaX3LY=
Subject key identifier: 33:29:4E:D5:A2:59:14:53:62:DF:65:DD:44:3A:71:25:23:75:62:EE
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 019A288BBB05F216923DFC903ECB9C3343A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
Manifest number: 17B2
Signing time: Tue 28 Oct 2025 02:00:37 +0000
Manifest this update: Tue 28 Oct 2025 02:00:37 +0000
Manifest next update: Wed 29 Oct 2025 02:00:37 +0000
Files and hashes: 1: 7NOWSwr6Ix9WqMtFCauUoXq2B4E.roa (hash: 71eyC9fYC2VExHc19u8sJwP29ASsjLuAVH+CBPHOF2M=)
2: QE-0-GHrWq5bT_oQzBuxsGZ0jgg.roa (hash: Whew7oC4VAA4M2out/vzMuiYeBE1U3ZiPJv+gEs+1dU=)
3: Ruw-x4zfVCc3GTiQCnnMayYLrMQ.roa (hash: VPqD7NaSAxVUR7gCvmAQcQt1SUni3lPjk7OqIt9I1TI=)
4: Z7uuC5XE4-fMCsGBtqQw7mSeH9U.roa (hash: W7maKhHagBpEQgNK15fnWc66E1ZuDuwRIn7gOriSZAo=)
5: h9d0ktI5MHIktnWrhY2zneTKIew.roa (hash: 9qkOa4Wd+V/Z+xQC2CIhkz1VoRa5qCsYXEwwfKMwhGQ=)
6: lBZrcEhD09l1QJXIOpG0k4KCAKI.crl (hash: 7n1DMCVfrVnjQOjCfU8rZiVrHg/N4oRzrnU7K+eoaCM=)
7: sCbiretHkvpeYn6X-YO7yjpBd3I.roa (hash: m4o26nuHfI88h55NDmirhyFa20WJfqvTKSftUFTfvL0=)
8: zIA6BDrr_xrDLDlzAGpw_9P6klo.roa (hash: pfzDsna4zGoCQX7v3ji49EBWdSr9XYlq27X+4n1BNgY=)
9: zRIEfiHVhkzqHiYdm3McIGPDP2Q.roa (hash: 32bioXyHcsiw84uow4i7c6KhRJSD3457u6OM44k/3vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:8b:bb:05:f2:16:92:3d:fc:90:3e:cb:9c:33:43:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Oct 28 02:00:37 2025 GMT
Not After : Oct 29 02:00:37 2025 GMT
Subject: CN=33294ed5a259145362df65dd443a7125237562ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2b:7c:2e:db:35:b4:e9:08:52:fd:e1:96:d7:
57:4a:a4:d4:35:2c:bc:3c:85:b5:d8:6a:c7:db:b4:
c4:be:18:22:7d:16:79:fc:93:fc:6a:78:36:3f:2d:
43:20:a4:7a:a8:b5:bb:a5:b6:09:ba:af:81:bf:8d:
30:d8:b2:bf:46:30:95:1c:05:d7:24:5a:df:28:17:
f4:23:18:8f:e4:45:f1:fa:65:9d:5b:65:3c:d8:c4:
4d:b1:3f:93:69:2a:bb:47:6d:45:1b:b5:05:8d:48:
b0:ba:82:2b:c8:fe:8b:ab:40:23:90:3c:38:92:0b:
87:1b:5c:24:bf:95:55:89:70:f4:e5:03:aa:9b:4f:
71:b4:ac:80:5f:c4:86:23:c4:f0:28:d9:c0:3f:8d:
2a:91:f7:df:e7:eb:ae:6d:e9:bb:40:8f:64:d5:27:
c4:4c:ca:a1:0e:1d:de:a6:e0:f8:ef:8f:9e:83:06:
27:84:cc:9e:ee:b7:7f:ae:50:1a:e6:a4:1e:ba:32:
59:ad:e7:f1:9c:56:4b:a4:2c:88:4a:56:c6:6f:ed:
77:98:2c:b2:28:ab:05:05:ab:05:00:e3:1c:68:5b:
be:2c:ac:af:4b:53:32:df:92:c8:f6:e3:19:a9:e5:
ef:d0:ce:68:da:24:64:92:db:4b:de:75:89:0d:6e:
05:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:29:4E:D5:A2:59:14:53:62:DF:65:DD:44:3A:71:25:23:75:62:EE
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:1b:1f:5f:7c:e5:97:7b:d3:e0:8c:74:8f:80:72:38:6a:5e:
b2:a2:31:14:a8:da:92:1e:c2:79:1d:70:6e:8f:32:d7:63:84:
7f:9b:31:81:5a:cb:b4:33:67:74:50:b2:10:ac:3e:88:41:74:
73:36:cc:35:ab:cd:06:67:b5:32:1e:ec:38:56:3b:30:17:0e:
d5:bd:dd:e3:59:dd:87:ad:05:71:cb:62:ab:f2:47:10:f9:f0:
d4:44:24:66:a6:4a:02:e1:0e:09:e5:4d:92:85:a6:c7:6c:c6:
ea:a2:05:bb:a4:53:2a:0d:9e:cc:23:78:18:5a:52:a4:8a:d5:
21:ba:4a:9a:8a:84:5b:65:25:30:91:e9:73:46:13:1b:b3:dd:
7a:da:c9:4c:1b:d5:eb:19:1e:45:22:10:7a:cf:8a:76:0e:12:
be:e5:a0:32:9e:d6:26:80:f0:e2:22:94:2e:68:0c:95:ec:4c:
bd:aa:79:c8:10:1a:6e:19:c9:71:fb:f9:7c:89:2d:71:ec:37:
a1:2f:ac:63:d2:fc:2f:0e:33:1b:db:53:ef:cd:a6:9e:bf:e7:
10:52:3a:22:f2:42:fb:3f:74:63:6d:ab:23:32:ef:42:32:55:
a8:6f:94:77:0d:f0:21:67:68:59:92:39:bc:ca:9a:0d:16:a8:
d8:b8:f8:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 06:51:40 2025 by rpki-client