Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: Qr2uKt6hyVKsnyohptKbRF5nNbvlyAqoPoTUoNPzpCw=
Subject key identifier: 19:F4:5D:50:D8:60:15:0C:8D:BD:3C:3F:7D:F1:5C:85:D9:54:9A:8F
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 019922C30A09B69EE8574BB5240F708F80D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0DD1
Signing time: Sun 07 Sep 2025 06:00:31 +0000
Manifest this update: Sun 07 Sep 2025 06:00:31 +0000
Manifest next update: Mon 08 Sep 2025 06:00:31 +0000
Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: RS42YlIq7QD3+gztwsW+KbjFfZ4hLgxRn8/k7O+0JEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:0a:09:b6:9e:e8:57:4b:b5:24:0f:70:8f:80:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Sep 7 06:00:31 2025 GMT
Not After : Sep 8 06:00:31 2025 GMT
Subject: CN=19f45d50d860150c8dbd3c3f7df15c85d9549a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:8d:23:22:23:31:f7:72:a7:53:9b:3f:4c:9d:
a8:3f:82:8e:e2:97:f1:01:26:ea:12:ac:3f:a1:80:
6e:a9:11:6c:5a:48:8c:ba:e0:27:29:2b:28:e2:f4:
21:5d:e0:d8:59:e9:b6:17:fe:45:c8:d6:14:10:3d:
85:88:bf:90:6b:50:5c:8c:d7:ff:3e:06:eb:aa:d3:
dc:96:b1:17:a8:9d:b2:c0:0f:8d:ca:6f:df:0d:26:
f2:a7:34:ab:eb:6e:b5:05:3e:44:9c:9c:58:98:55:
14:50:4b:1d:1c:e0:90:5f:65:39:1a:0d:71:89:c1:
e1:2b:47:dc:af:d5:cf:bf:c3:52:67:8e:e8:26:60:
99:a0:bd:64:f8:87:7c:c5:7e:6a:f0:f8:ef:c0:82:
bf:3d:d8:7a:86:64:61:38:e1:9f:d7:ab:d9:9e:9d:
35:72:11:a3:02:79:36:73:48:57:c5:13:d6:0d:7b:
6d:0a:0e:c1:cf:9c:10:da:47:15:13:3d:1a:4d:5a:
6c:00:50:68:8a:f5:b9:5e:a0:93:e4:8a:bb:d6:2f:
ec:5d:22:c2:03:cc:6e:89:04:e1:2f:fb:eb:f3:34:
17:c3:2c:88:77:a5:b7:f3:9e:a7:79:62:19:8f:6d:
76:14:cb:a1:08:b6:de:09:60:2c:05:94:dc:cb:ba:
6f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F4:5D:50:D8:60:15:0C:8D:BD:3C:3F:7D:F1:5C:85:D9:54:9A:8F
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:42:c0:53:68:e7:49:6e:16:bd:33:ae:df:0c:2a:af:29:d8:
f0:27:f5:1e:9d:2f:20:67:2f:95:28:01:34:c9:e0:16:78:50:
7e:66:08:a6:ef:d2:d3:93:97:77:c7:15:c0:6b:28:59:be:3f:
7d:77:24:e0:c7:ca:e1:14:81:6f:47:e9:e9:b5:dc:a9:27:3d:
5c:05:d8:0b:0a:4a:03:6e:42:de:e3:2f:2c:7c:e1:36:f9:1b:
ee:e1:0c:38:29:7a:42:0c:7e:58:ac:5a:f3:2a:56:0a:72:1e:
c2:05:31:5e:05:02:8f:f0:85:43:f5:74:82:9c:7e:a6:67:d8:
d4:7c:51:c0:18:16:3e:30:18:d1:d2:22:4a:24:ba:73:cd:28:
a9:43:31:37:3b:12:d4:34:f4:fc:8a:ed:27:e4:59:d9:43:56:
7c:3b:10:d6:f4:f7:a4:01:f2:e2:96:37:11:f6:3b:4b:16:ca:
9c:3c:73:f0:8a:0a:b2:41:30:5e:0b:e7:b7:b7:14:89:fd:99:
2f:7d:3b:a3:47:4d:05:50:d0:d5:dd:ea:96:a5:5b:20:4e:ea:
c1:d9:a3:6f:94:5d:d8:6f:68:19:cf:bd:3b:79:a7:d8:31:c4:
1c:40:35:40:da:88:a4:9f:ff:1d:d7:c3:84:9e:8c:9d:64:88:
bf:80:e4:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiwwoJtp7oV0u1JA9wj4DRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2MGM2ZDc4N2U2YjVlYjY0MjQ4ZGQ5YTdhMTA2NWIxMDUz
Zjc0NTgwHhcNMjUwOTA3MDYwMDMxWhcNMjUwOTA4MDYwMDMxWjAzMTEwLwYDVQQD
EygxOWY0NWQ1MGQ4NjAxNTBjOGRiZDNjM2Y3ZGYxNWM4NWQ5NTQ5YThmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA640jIiMx93KnU5s/TJ2oP4KO4pfx
ASbqEqw/oYBuqRFsWkiMuuAnKSso4vQhXeDYWem2F/5FyNYUED2FiL+Qa1BcjNf/
PgbrqtPclrEXqJ2ywA+Nym/fDSbypzSr6261BT5EnJxYmFUUUEsdHOCQX2U5Gg1x
icHhK0fcr9XPv8NSZ47oJmCZoL1k+Id8xX5q8PjvwIK/Pdh6hmRhOOGf16vZnp01
chGjAnk2c0hXxRPWDXttCg7Bz5wQ2kcVEz0aTVpsAFBoivW5XqCT5Iq71i/sXSLC
A8xuiQThL/vr8zQXwyyId6W3856neWIZj212FMuhCLbeCWAsBZTcy7pvWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBn0XVDYYBUMjb08P33xXIXZVJqPMB8GA1UdIwQY
MBaAFJYMbXh+a162QkjdmnoQZbEFP3RYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8wNWFiMTYtMjIyOC00ODhlLWIxNTIt
ZWIwOTIxODk1NzE0LzEvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC8wNWFiMTYtMjIyOC00ODhlLWIxNTItZWIwOTIxODk1NzE0
LzEvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOELAU2jn
SW4WvTOu3wwqrynY8Cf1Hp0vIGcvlSgBNMngFnhQfmYIpu/S05OXd8cVwGsoWb4/
fXck4MfK4RSBb0fp6bXcqSc9XAXYCwpKA25C3uMvLHzhNvkb7uEMOCl6Qgx+WKxa
8ypWCnIewgUxXgUCj/CFQ/V0gpx+pmfY1HxRwBgWPjAY0dIiSiS6c80oqUMxNzsS
1DT0/IrtJ+RZ2UNWfDsQ1vT3pAHy4pY3EfY7SxbKnDxz8IoKskEwXgvnt7cUif2Z
L307o0dNBVDQ1d3qlqVbIE7qwdmjb5Rd2G9oGc+9O3mn2DHEHEA1QNqIpJ//HdfD
hJ6MnWSIv4DkJw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:00 2025 by rpki-client