Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
File: lNmOj-xoB3WhVyZuDGt4sUGjT14.mft (raw, json)
Hash identifier: Zdd4BNY6VUP2N2r4DEQiPvn/7eeC3+JmlAbJIr3WfRw=
Subject key identifier: 03:FA:6E:91:80:F6:1C:05:27:59:81:F2:30:C8:EB:4A:43:BA:A0:DF
Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Certificate serial: 01992A458ADC515C3D3897FF27DCEDCA685A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
Manifest number: 0F59
Signing time: Mon 08 Sep 2025 17:00:24 +0000
Manifest this update: Mon 08 Sep 2025 17:00:24 +0000
Manifest next update: Tue 09 Sep 2025 17:00:24 +0000
Files and hashes: 1: 0YppZtvRSXBHB8NFrLn_rzdM4Wg.roa (hash: AIX2Owt5viXo6Wp2eQTWR2x2rHaX/2g8xn17pbf1zi4=)
2: H0U-Km3rz_YtidSX7xAdJ-A_RzA.roa (hash: L4ck5kUvwk5NkXR5fk3e/8692feGx3cZZTXMDkDHo6o=)
3: JcpkDEw0JBmGAZTOYP-EZkG7h4Q.roa (hash: jiM13rTCKDGbOFYZdyZ0lzDL0Z/zn/1jyUcNFr7C9ic=)
4: j0eQCpRbkkshg2cOl2P0JLeBDDw.roa (hash: sMtFOxKW/3UNJ7k3m/3q4HKIZXU/80JJ7tR1eHGV0HE=)
5: jk5DLmbJDPFvDX_KRrXRzuIQONk.roa (hash: QsbO4bJZnkw7RxYXi6mJ0xpqtRhxRs42uhmxBRFdmEI=)
6: lNmOj-xoB3WhVyZuDGt4sUGjT14.crl (hash: NKa7Jm69EW3QNmrXVSVXVi81Th0QIUZoO4t+mYohyvs=)
7: rJVC54KMnjCB_OVNXkR7wbY_pqY.roa (hash: XBqW9LJVjSv4j8aKjrCl3Ou7nqLb3Clpr0sfUy3Uq/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 14:10:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2a:45:8a:dc:51:5c:3d:38:97:ff:27:dc:ed:ca:68:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Validity
Not Before: Sep 8 17:00:24 2025 GMT
Not After : Sep 9 17:00:24 2025 GMT
Subject: CN=03fa6e9180f61c05275981f230c8eb4a43baa0df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d8:09:35:60:6c:ff:56:65:3a:3b:e0:b0:67:
a6:f9:64:32:cb:d1:52:5f:6d:f2:1c:46:eb:64:bb:
c4:1a:8c:3d:99:c5:f1:55:e4:58:11:bf:cd:07:53:
d4:ed:a0:5c:04:1b:35:aa:da:83:48:bb:41:b5:2b:
12:9b:28:79:49:7a:d7:a4:89:a2:c7:1a:6b:9d:1e:
0f:b3:44:5b:bf:30:88:c8:8e:a6:9f:9f:63:0d:62:
18:8f:b8:28:8d:88:f0:bd:6f:45:14:bf:e7:e7:7e:
d3:7e:d6:95:e1:bc:46:9a:83:09:e7:57:6f:8c:17:
20:3a:01:c9:13:fc:58:eb:58:30:78:03:78:45:7a:
48:9f:e3:e0:3b:f8:94:39:b9:93:4c:4b:50:7b:28:
b2:6a:d0:96:0d:38:28:f6:a6:da:5c:a4:d8:71:2b:
f5:db:4d:6f:9b:e7:99:e3:88:cf:c5:8b:59:c3:71:
09:97:09:f9:50:4c:98:c9:53:5d:9e:98:76:dd:39:
57:fb:48:36:d1:df:0f:0c:9c:8b:e4:22:3c:a8:37:
fa:b5:f8:c1:f6:8c:46:62:1e:c1:9c:40:83:87:f4:
78:be:b0:31:22:6e:a0:86:3b:2b:1b:e8:ee:9b:5b:
76:cf:44:aa:25:5d:15:5a:ae:49:c6:5d:9b:8f:9e:
55:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:FA:6E:91:80:F6:1C:05:27:59:81:F2:30:C8:EB:4A:43:BA:A0:DF
X509v3 Authority Key Identifier:
keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:7e:62:a8:65:7e:c1:09:ef:78:3f:f3:b0:93:c8:88:8b:c5:
3d:8b:e4:69:0e:f4:77:5d:63:2d:fe:0c:77:7a:e4:5f:fc:05:
68:65:a6:ec:d6:48:e2:77:6f:e7:82:64:ad:41:67:0c:f7:ab:
c6:cf:e6:e6:9f:30:00:3f:ad:dd:53:f2:1b:24:1b:87:4e:90:
11:42:bd:3c:20:27:59:d3:ec:33:92:16:ef:e1:b8:9f:af:29:
37:12:21:35:af:5e:25:c8:a2:86:5f:e0:fb:51:fc:ed:3d:fb:
96:3f:66:37:a8:28:3e:02:f5:fa:bf:16:a5:90:03:51:cd:90:
52:e1:3a:4d:d9:41:91:13:9b:68:94:85:20:5d:f0:40:44:9a:
a2:d1:1d:29:18:a9:75:05:20:de:61:7d:f9:df:d1:8e:b6:62:
b6:e8:82:d9:6b:0f:3f:db:96:f3:ae:79:4e:69:92:e0:89:9a:
70:93:1e:70:cc:c2:b7:f4:80:d4:ee:ee:9c:2d:c6:77:56:d3:
e6:2e:6d:a5:bf:e7:25:a1:f9:9a:9f:94:45:77:2e:dc:4e:76:
b0:14:49:b3:e0:7c:b7:19:df:c2:1d:d6:7e:f2:01:b9:35:af:
4e:c3:1c:ee:a1:9f:73:04:4d:3c:85:64:56:c8:39:07:c4:a0:
f1:65:b1:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 20:50:09 2025 by rpki-client