Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
File: lHMg0DCTAXjm987vkdKrh4TT3BY.mft (raw, json)
Hash identifier: zHWMVkDyeto6EJVXTogBHjdr8TN00NhYHz4hlHJZzWc=
Subject key identifier: 62:64:1E:9E:D5:D2:88:8F:E9:3E:ED:22:6B:AD:B9:1C:66:70:D3:91
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 01992B9006C6FD50D0E1FC9D5C4C0A6E97D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
Manifest number: 12A3
Signing time: Mon 08 Sep 2025 23:01:23 +0000
Manifest this update: Mon 08 Sep 2025 23:01:23 +0000
Manifest next update: Tue 09 Sep 2025 23:01:23 +0000
Files and hashes: 1: 5QMHmJgfqvSExR78QZoDl1UWmsA.roa (hash: Dbmsjz6HJzMNQXjckNup+UFifmkcVaFAdGg2/Xlr06g=)
2: 9Hm8EAVuf4tqOcHaH0y7y-1Ym9k.roa (hash: FodBXOCVdl5JGOEkTl9E8+4jK0F+A6PAABCoahGBKds=)
3: ChcX6dEQMX7PgnkGnKeX9TQTPSU.roa (hash: 9GX5XaBmVeFjM4n7HjAG7e5pB9imRwZnEdAGfd1ulvc=)
4: I2s0NE0e0ldLesJa5IwWq_3YoQY.roa (hash: 32nxkp+mnSpxawrjeJdAmkwgRYzly761fgfPTbswaVo=)
5: Sx4GrZjuWgu9iofcfquhW4vyGIs.roa (hash: Klrfo3hpXP5vl7y24egIgTTHUAXo1XLHGZTsrjfNBg8=)
6: lHMg0DCTAXjm987vkdKrh4TT3BY.crl (hash: hOTGJz3H8ip/pPJHifef3dtAZNLf3R7bzTjL8bUiKaY=)
7: wV_UPXPoWr2rMigTEJujKEPHkRU.roa (hash: sWrQ1dC0i8v5NdCh/KJb/CYIzz2swLex9WzWGoX8cPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2b:90:06:c6:fd:50:d0:e1:fc:9d:5c:4c:0a:6e:97:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Sep 8 23:01:23 2025 GMT
Not After : Sep 9 23:01:23 2025 GMT
Subject: CN=62641e9ed5d2888fe93eed226badb91c6670d391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a7:68:4d:7b:74:25:18:2c:e0:f5:e5:aa:95:
19:d5:9b:13:0c:94:39:14:82:97:3c:04:cd:12:13:
5f:83:0e:38:f4:d7:04:8c:90:62:ff:0c:01:7b:1f:
bb:73:95:d5:0a:a1:e3:07:80:00:9b:c8:98:fb:f2:
ab:46:39:e0:69:c1:5f:e5:db:3f:4c:d2:eb:dd:9b:
e5:d9:4b:16:d1:a9:97:1d:46:81:5d:b4:1d:cb:e1:
a1:85:01:d8:fd:de:6f:b7:de:06:39:07:2c:9c:ee:
56:d0:1a:70:a3:47:c0:ec:8f:5c:c8:50:4d:c3:f0:
1b:00:84:52:0c:ed:4f:b8:d4:f8:fe:9d:de:fd:9f:
64:3c:e6:91:f8:7c:10:0e:9a:11:7c:f5:1e:3b:3c:
00:44:b1:66:78:99:38:ad:4a:5f:03:38:a8:db:ca:
43:a0:31:f9:95:0c:f1:b3:ed:7b:24:68:94:b6:bb:
1f:b2:e4:57:ea:2a:ce:e6:a9:d4:e9:00:93:f3:9a:
26:d3:a8:1e:a5:65:b8:d0:0e:07:b0:f0:4a:24:e1:
78:ea:e9:28:d2:a4:77:fe:e4:b9:ef:f0:f9:9e:16:
bc:8a:0d:a5:c6:ad:55:a9:44:19:2b:6b:99:ae:45:
8c:a6:3f:bf:51:ef:25:48:05:bd:f9:78:7a:4e:c5:
34:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:64:1E:9E:D5:D2:88:8F:E9:3E:ED:22:6B:AD:B9:1C:66:70:D3:91
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:9a:2b:f0:68:b1:25:73:12:6e:59:85:95:13:0c:90:23:35:
f8:b5:11:91:78:84:1d:0c:09:00:76:6d:26:8c:68:1f:ce:5a:
cd:40:71:17:15:bf:33:98:9b:61:48:87:1e:a9:34:dd:ed:82:
a6:27:73:dd:cf:16:7c:4c:b8:e5:33:06:d3:28:a6:64:cb:4f:
c7:6e:f0:53:bd:34:33:09:5a:fc:fe:29:5f:72:6e:43:bb:de:
7b:a7:2b:1a:95:b8:e3:d9:bc:8b:fb:c1:01:8b:eb:1e:05:8c:
29:a8:71:b1:1c:08:e6:d8:f4:34:43:04:d6:8a:f8:dc:9a:b3:
c4:2f:8c:39:0e:e3:5b:95:01:d7:b0:74:0b:66:94:9b:c0:00:
ba:a6:9e:90:57:23:24:f4:02:3f:67:4d:40:dc:ac:8f:80:32:
51:10:1d:ef:61:ef:99:ef:ef:19:65:64:72:e5:0a:5f:7d:22:
a1:53:74:3d:e7:99:f6:ab:fa:be:1f:91:44:00:9e:d9:7e:f3:
40:df:de:ce:28:8f:5a:95:df:78:ee:a1:22:b1:81:39:a7:b9:
33:58:fa:76:de:03:30:6f:2b:98:7b:3a:d3:57:72:aa:69:e8:
ac:01:18:82:51:dc:f5:3c:f3:2f:c1:61:c1:3d:6b:e2:d0:e8:
d6:34:ca:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 08:46:19 2025 by rpki-client