Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
File: Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft (raw, json)
Hash identifier: g9IVpVNWKDUISZRiEXygyppXRelS5VTHrTZtm79QdQY=
Subject key identifier: F2:01:8D:53:8B:8E:B7:FD:66:85:34:B9:06:28:8A:97:08:F4:87:C0
Authority key identifier: 2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E
Certificate issuer: /CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e
Certificate serial: 019932A3AE933EBED49A08CB0D1040606B74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
Manifest number: 167D
Signing time: Wed 10 Sep 2025 08:00:11 +0000
Manifest this update: Wed 10 Sep 2025 08:00:11 +0000
Manifest next update: Thu 11 Sep 2025 08:00:11 +0000
Files and hashes: 1: LDfn0M5v99IHnOQFUNXp12Nf90k.roa (hash: do0pH7tAz4W21wYBRY5jEznU82Zdd3DteyiFEbjbCqA=)
2: Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl (hash: cRdG4ewFtW1RgQqB/9ZFYPhC/oNATPdetXHhjO4TEWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 08:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:a3:ae:93:3e:be:d4:9a:08:cb:0d:10:40:60:6b:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e
Validity
Not Before: Sep 10 08:00:11 2025 GMT
Not After : Sep 11 08:00:11 2025 GMT
Subject: CN=f2018d538b8eb7fd668534b906288a9708f487c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:76:70:53:98:9b:a2:02:b5:c3:7d:d3:2e:17:
4e:9b:d0:66:c2:e5:ff:41:d7:22:44:9c:38:26:f9:
c9:02:3f:6a:79:a8:d9:75:db:87:ce:03:a4:cc:07:
6d:9c:d8:ef:85:d2:58:82:2f:a0:d5:7d:e3:78:28:
83:ff:56:67:25:81:24:65:da:5b:b1:36:a2:17:ac:
ee:70:9e:41:9f:4d:e8:2e:0e:6e:53:95:5d:87:8a:
7e:8a:ab:88:ca:f7:b3:9e:f0:3d:bc:45:9b:f3:60:
5b:6b:1a:04:87:07:8b:0c:c8:db:77:1c:30:18:83:
54:90:15:d8:a6:73:f6:9f:43:80:9e:21:53:45:2f:
30:25:60:e4:98:33:90:73:71:1d:d8:46:a2:ed:1c:
20:ec:9b:98:fa:fe:50:a1:08:e6:d8:6f:b4:29:e4:
a1:f4:07:ac:cc:2b:9b:25:9e:9d:9e:82:16:58:bd:
5d:8c:bc:28:c4:56:65:60:11:eb:d7:b5:62:e8:9f:
dd:36:33:84:44:61:09:38:1d:08:cb:b7:84:fd:e4:
2d:33:5d:1c:9f:40:69:2a:c1:a0:6c:a2:f8:2b:85:
c6:f8:16:40:d0:12:ff:ff:d2:61:bc:c3:08:bc:f8:
87:fc:b4:41:b9:9c:cc:3e:e4:c7:ba:f9:56:d5:31:
18:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:01:8D:53:8B:8E:B7:FD:66:85:34:B9:06:28:8A:97:08:F4:87:C0
X509v3 Authority Key Identifier:
keyid:2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:89:6a:8a:7f:44:39:a3:b2:3f:22:16:8d:9e:1c:e3:75:17:
f0:03:37:2b:16:bb:0f:1c:b3:f5:69:4f:04:7c:ed:c8:1c:39:
43:84:7b:e2:17:c8:55:35:e4:93:08:ca:b7:60:cc:bf:cd:e8:
4b:b7:3a:f1:ec:8f:cd:ab:73:7c:9a:ba:7a:35:97:87:84:10:
43:49:fb:93:57:0b:96:86:3a:1f:14:c7:36:d8:5c:66:dd:b6:
b5:97:62:14:2e:33:94:48:b3:cd:3d:2d:44:46:12:53:89:63:
a5:91:ed:4b:51:b6:54:f2:84:d8:ab:4f:a4:1e:c0:3a:ea:61:
36:9f:fc:04:c7:2c:36:cf:32:2b:18:91:25:43:77:72:3a:4a:
6b:0c:23:aa:9f:a2:c3:69:04:34:12:20:88:02:fd:e4:a2:43:
57:a9:b9:db:09:83:5e:9e:e8:5b:04:74:a4:6a:8e:47:3a:46:
59:e6:fb:85:e8:31:d6:44:bd:b0:b0:9a:a7:dc:13:7e:68:5b:
f8:37:8e:d4:81:f8:46:ce:c0:db:f1:a0:ee:27:29:c1:f9:49:
8d:6b:ee:f8:84:74:df:9f:51:14:4b:68:4e:24:47:36:a5:cf:
9b:57:e7:ce:fe:40:f3:0c:21:a8:77:4b:e9:38:ba:e8:b9:0b:
c6:7a:ba:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 16:04:40 2025 by rpki-client