Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
File: lb24W36o8fqvdR52xBR8gbYOmU0.mft (raw, json)
Hash identifier: 1Iedo9S/cAL1dtUQsTed8V3pT2wY/aO1+fBLCtQKozM=
Subject key identifier: 9B:74:B1:CC:59:36:71:E5:B5:60:F4:1B:64:E8:B6:F5:94:14:BF:90
Authority key identifier: 95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
Certificate issuer: /CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Certificate serial: 019923A0ADE2C391B496E2B72016CF949168
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
Manifest number: 25
Signing time: Sun 07 Sep 2025 10:02:36 +0000
Manifest this update: Sun 07 Sep 2025 10:02:36 +0000
Manifest next update: Mon 08 Sep 2025 10:02:36 +0000
Files and hashes: 1: 5R1-l58ft4GhxzonN9PpLF0e3rg.roa (hash: ld57U57oSYCdX19ANUoiIqFJmCosw0zLo2ypqpVfq5A=)
2: lb24W36o8fqvdR52xBR8gbYOmU0.crl (hash: /RHMXF8+d9TI+Kl6pgxGNl/tqLflZoPIJxcArHjzKbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:ad:e2:c3:91:b4:96:e2:b7:20:16:cf:94:91:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Validity
Not Before: Sep 7 10:02:36 2025 GMT
Not After : Sep 8 10:02:36 2025 GMT
Subject: CN=9b74b1cc593671e5b560f41b64e8b6f59414bf90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:38:cf:80:0b:21:f4:63:34:da:16:ac:04:cd:
b0:65:f0:6e:f9:f5:b6:fb:eb:78:f9:89:5a:67:0b:
f4:91:bb:95:f9:0b:3b:9c:4b:55:6d:98:f8:d3:b1:
87:c4:c2:6e:6e:4f:5f:b1:7e:be:4c:8a:a9:32:a0:
ae:5f:de:bb:40:51:6a:d5:24:12:a6:f6:b4:0a:4e:
b9:cc:57:e1:8d:61:07:b7:0b:30:0a:a0:ab:d8:32:
07:4c:91:02:8e:a2:60:9b:32:51:25:44:16:54:f9:
ce:c2:cf:30:9f:8e:de:05:48:54:a3:46:8b:4d:25:
c7:4b:a5:27:e7:e4:5c:d3:d9:99:7f:58:2f:07:8f:
0c:aa:34:b0:5c:4d:4e:45:93:c2:69:bc:f6:75:8e:
46:fc:5e:dc:eb:00:74:1f:47:8f:56:4c:56:74:d4:
49:c2:32:34:af:43:1c:26:4d:0c:c9:22:c0:5c:0e:
f5:ad:4d:41:16:37:68:62:bc:d4:0b:49:fc:2d:c0:
0e:fb:45:e2:da:08:e8:ab:2f:1c:51:1d:ba:8d:68:
2b:b6:8f:cc:cb:6b:60:31:fb:63:81:5d:8d:c5:6a:
a0:65:d4:58:83:a7:7e:2d:c2:37:b4:20:f9:97:66:
79:29:e5:17:88:a3:d0:fa:a9:8c:cf:db:22:fc:b0:
6f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:74:B1:CC:59:36:71:E5:B5:60:F4:1B:64:E8:B6:F5:94:14:BF:90
X509v3 Authority Key Identifier:
keyid:95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:73:e3:dd:5d:28:da:20:28:98:93:c7:2c:42:18:41:eb:b9:
9a:ab:37:f2:bc:37:b0:5f:31:0e:2f:a2:4f:31:8b:ba:fd:27:
14:13:6f:d6:c5:3d:fb:21:17:9f:08:9b:d2:81:76:99:03:26:
64:07:ed:cb:cb:f1:c7:3e:a8:62:b7:71:49:78:a3:85:0a:57:
07:e3:c4:97:d1:de:ae:2e:27:61:03:24:8f:d6:46:ac:59:69:
45:63:96:ad:10:5a:ee:3f:43:bf:dc:7d:9b:99:b0:4c:a8:d6:
87:58:d1:7d:ec:b8:20:de:73:70:7e:f7:d6:04:c8:a2:57:1b:
00:b8:b9:6b:2d:e3:16:eb:ed:3a:1f:58:f2:05:d8:4a:4e:bc:
6f:83:02:a1:70:05:2b:72:2b:a3:71:97:d0:e6:53:34:31:50:
aa:39:4b:57:24:60:5e:d8:2e:22:ec:f9:c6:08:ee:93:a8:3d:
ae:6f:8d:62:19:f0:b0:fc:13:b6:94:7a:22:ab:b9:06:8e:a4:
4b:f1:c3:e6:1a:a3:8f:3c:c5:df:b6:35:73:3c:36:8e:f5:72:
a8:8a:40:bf:e6:7a:73:94:42:d2:5e:bf:5b:31:46:d5:cd:bd:
1b:f6:4e:8f:b7:dd:43:16:26:ef:cf:a5:8d:5d:af:98:df:9e:
ba:88:2c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:49:42 2025 by rpki-client