Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
File: lHMg0DCTAXjm987vkdKrh4TT3BY.mft (raw, json)
Hash identifier: h7/pS8V1BgSFlKinGr0P1bgjipZINSWcSXCac3wPs9Q=
Subject key identifier: A0:C9:48:55:0A:8A:CE:8B:54:1B:88:DB:26:7E:4D:A5:E1:A0:AC:97
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 019A25F85256AF89CD46357B7B3AF8F1D37A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
Manifest number: 1325
Signing time: Mon 27 Oct 2025 14:00:22 +0000
Manifest this update: Mon 27 Oct 2025 14:00:22 +0000
Manifest next update: Tue 28 Oct 2025 14:00:22 +0000
Files and hashes: 1: 5QMHmJgfqvSExR78QZoDl1UWmsA.roa (hash: Dbmsjz6HJzMNQXjckNup+UFifmkcVaFAdGg2/Xlr06g=)
2: 9Hm8EAVuf4tqOcHaH0y7y-1Ym9k.roa (hash: FodBXOCVdl5JGOEkTl9E8+4jK0F+A6PAABCoahGBKds=)
3: ChcX6dEQMX7PgnkGnKeX9TQTPSU.roa (hash: 9GX5XaBmVeFjM4n7HjAG7e5pB9imRwZnEdAGfd1ulvc=)
4: I2s0NE0e0ldLesJa5IwWq_3YoQY.roa (hash: 32nxkp+mnSpxawrjeJdAmkwgRYzly761fgfPTbswaVo=)
5: jSjfKvzyOnWZuydcXt3rIa9SA5M.roa (hash: vLtsL1YPKmn6qXZiRbrjcjOEo4/Oi9668rEJ8VN4zCs=)
6: lHMg0DCTAXjm987vkdKrh4TT3BY.crl (hash: Fn1DoU6K0JfyNtLTVIo42hosgUeB8YqSkCYqtOsyZ9A=)
7: wV_UPXPoWr2rMigTEJujKEPHkRU.roa (hash: sWrQ1dC0i8v5NdCh/KJb/CYIzz2swLex9WzWGoX8cPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:f8:52:56:af:89:cd:46:35:7b:7b:3a:f8:f1:d3:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Oct 27 14:00:22 2025 GMT
Not After : Oct 28 14:00:22 2025 GMT
Subject: CN=a0c948550a8ace8b541b88db267e4da5e1a0ac97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:88:c7:d7:49:a0:08:5c:4f:57:75:39:e5:f9:
8f:5e:ba:52:49:dd:36:3c:0a:3b:8e:86:10:56:e5:
b5:96:7f:e2:58:f5:77:e6:51:89:67:7d:b3:c6:82:
27:d0:24:a7:fd:29:40:82:21:c2:c0:49:0b:9f:63:
e1:b3:b4:34:bd:2e:18:99:f2:ca:3e:49:78:a4:75:
95:1f:3f:09:56:d8:33:7d:dd:e5:b4:26:13:a8:58:
57:19:18:ee:24:8b:78:ae:bb:a8:86:aa:2b:7f:ea:
9e:0a:02:8e:78:51:81:c9:94:93:f2:79:52:aa:52:
a1:d2:4d:20:66:ac:4e:30:f5:aa:48:db:82:1f:0d:
ff:90:25:81:44:a8:6e:6c:dc:62:fb:b7:9b:25:7c:
41:dc:8b:6b:7b:58:fa:30:5a:2d:ff:b3:95:12:32:
6f:2a:29:18:7d:c4:95:13:2c:b6:04:82:e2:17:86:
b8:fc:05:3a:84:2a:32:fc:5d:16:55:78:fb:d4:ef:
0a:f2:71:00:71:5b:a5:13:c6:ef:ce:b1:75:0b:e5:
8c:68:05:00:06:14:82:07:59:40:46:91:09:46:f1:
76:bc:be:12:49:25:aa:a7:ee:33:ef:19:7c:9f:86:
69:34:95:ef:97:68:45:17:b8:e5:de:30:73:f9:6c:
4b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C9:48:55:0A:8A:CE:8B:54:1B:88:DB:26:7E:4D:A5:E1:A0:AC:97
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:0b:bf:f0:5e:4b:60:cb:02:7b:5e:a5:6b:2d:9d:61:ba:1e:
85:84:46:23:53:74:ba:53:85:6c:57:63:24:a8:3f:a7:ab:00:
98:f7:cc:da:9f:c3:9e:6b:4d:90:f1:e6:b3:9a:7d:d9:5b:e4:
54:f0:62:7c:e8:b4:63:91:59:bc:20:c4:e5:53:91:5a:b3:f1:
3f:60:4f:81:9e:45:87:d4:68:08:3f:a5:c8:6c:ff:87:39:aa:
c0:32:bf:d7:13:3a:1f:89:5b:e3:b2:ea:dc:a9:b8:56:9c:15:
81:5a:40:dd:0e:c9:3a:f6:9f:6a:73:50:ef:7d:64:f3:aa:d3:
9e:bc:e7:39:c1:b1:a7:50:ac:d7:84:e0:52:57:86:f0:ab:70:
4d:1c:77:19:0c:d7:fe:7f:c1:f3:cb:cb:09:29:c2:b4:53:36:
e4:ee:cf:e1:a7:31:d9:70:07:e6:a0:bf:25:cc:f2:e7:a9:c2:
ee:b7:bc:84:25:e7:bc:e8:61:f6:30:31:0a:91:c2:c9:7c:f8:
5e:4c:32:1e:99:ba:8f:37:20:6d:31:48:66:16:16:0b:37:b8:
17:c2:e2:2b:08:c6:80:ed:60:39:11:c6:3a:6b:8f:a3:ff:91:
c0:67:92:a3:0e:7d:87:a5:f9:48:93:05:52:f1:34:be:4b:52:
a1:43:bf:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 15:48:00 2025 by rpki-client