Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: +dGPwu4psxjPDX+0wKsJ9sYJBwt34NHBuwpPcAjcuGY=
Subject key identifier: DD:41:17:97:EA:65:0F:BD:E2:AF:9F:36:CE:A1:7C:1D:28:4A:79:D9
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 019A1FF68AB7A72D933EF163178110D7CE91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 1705
Signing time: Sun 26 Oct 2025 10:00:42 +0000
Manifest this update: Sun 26 Oct 2025 10:00:42 +0000
Manifest next update: Mon 27 Oct 2025 10:00:42 +0000
Files and hashes: 1: 96CoHDqUFKRWLMKpuPNky2AThV0.roa (hash: 2dbkXGtx2Y2iGJ3uWXJRyOKWK4j+bBsW6iNp6F1vwRk=)
2: Zv6rhEtfx_jSCXc_S8UyXA0vo2U.roa (hash: upx9rJYDv3PHx1B1uURg+ybXETCTfjV8bsr8SvgJ3XM=)
3: biGYeNx8PlSGKHRmVucthKOSlnY.roa (hash: YxlSQax5Hky2oIIKAGXfmWIsjyjpaMRbBxvVdrI+BSI=)
4: g1Zk3nIRea2SYaHqoN92Ss1LCL8.roa (hash: aHQejC3hHy18rRg2jbGxWbnzx0KaJtZTncqKQ8jXn3M=)
5: kZbYAR7_VQFdZ98vhS7MW7IOa5g.roa (hash: veptVlnHGE2k0mSrEVT7abLTAqTrUJe6t8F1/LuZDvo=)
6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: 8x/Yz24mETovR/PG93XeJk6G7/A6ziL9SeORxzB34/c=)
7: mmvuqSKrxCIOK5dTOpgllxAuYB8.roa (hash: cXrhSBrwqA5XppxSkBQnZWJRKIyKnPJRdZjf9M/iItg=)
8: rZuO-15UbHThyJRmeryxRpgLk2M.roa (hash: /ED0vNPFUaV7PRvXzqX2jHZ983s8HtxjtsJuRuMtCvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:f6:8a:b7:a7:2d:93:3e:f1:63:17:81:10:d7:ce:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Oct 26 10:00:42 2025 GMT
Not After : Oct 27 10:00:42 2025 GMT
Subject: CN=dd411797ea650fbde2af9f36cea17c1d284a79d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d1:9e:a6:e9:d5:c5:d4:56:98:16:b8:12:d0:
01:9e:b3:b9:bb:0b:be:0b:26:2e:e0:d8:2b:f0:53:
c1:31:42:d4:84:ce:f2:d3:da:3f:5d:ca:53:52:81:
11:ae:ff:d1:f8:10:7a:2d:0d:36:86:da:38:cc:a4:
da:b1:21:8a:f9:2f:af:fb:24:42:37:e1:e6:f0:15:
d5:b8:f2:8c:32:20:77:96:72:b8:1e:59:bf:00:a2:
2d:2f:48:c7:52:37:84:d8:78:a3:7d:74:90:a1:6f:
62:aa:22:5f:df:d3:40:32:73:9e:b1:fd:c6:2c:37:
a8:5f:f9:1e:bc:ad:2b:dc:b9:27:0b:b5:b4:d5:24:
e7:16:b6:fe:92:03:59:82:9f:9c:de:0b:5e:57:08:
f2:e5:c6:c2:a5:03:0d:d8:e6:d7:46:4b:66:1f:e5:
ab:ae:1e:c4:b5:f3:78:9c:ce:0a:fc:1a:18:06:c7:
d7:d0:39:88:de:e1:70:46:a6:c1:ae:a7:bf:63:82:
e5:b6:8d:23:59:b4:6f:10:7b:df:e1:83:f8:23:69:
1d:71:be:62:7f:50:ca:ee:d1:ab:23:46:f4:8a:13:
56:f4:dc:45:a7:f4:81:f0:0e:b9:b5:b9:67:3d:83:
35:7e:91:d2:6d:78:35:2d:1a:bd:2b:3f:ae:f7:23:
2b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:41:17:97:EA:65:0F:BD:E2:AF:9F:36:CE:A1:7C:1D:28:4A:79:D9
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:a6:9d:0d:d4:3c:cd:fe:4f:0c:9a:e1:79:8a:29:d1:07:d6:
de:a7:e8:a7:a9:b8:dd:46:f9:b9:2d:46:ea:c3:a5:25:79:97:
41:57:2f:3c:32:c1:ec:2c:3f:45:be:e1:14:38:09:a9:cb:ba:
de:f9:d2:c5:80:c3:30:55:7b:8e:5a:13:a2:f1:fa:2e:70:07:
46:f5:38:7f:e2:10:f6:c6:1d:67:27:4d:5d:d2:be:fe:26:69:
92:33:88:34:0f:23:cd:78:35:a0:e2:aa:5d:08:f7:a2:ee:4a:
fc:10:c4:8c:1c:92:47:4b:be:91:57:21:b8:5d:d0:c1:23:b4:
28:5b:a1:cf:79:e0:82:14:ee:8c:4e:dc:be:bf:41:37:be:28:
32:98:c9:2c:84:d2:6f:0b:1b:62:b5:97:4f:d3:d3:a6:f9:7b:
7b:07:c6:d7:6a:64:5e:5a:c4:0e:99:26:a3:51:97:49:c8:ca:
47:78:10:ca:40:ac:a0:a9:b8:0b:b7:73:e9:1a:d4:bf:b2:ff:
73:ba:de:bc:e2:42:48:43:63:e3:ac:93:3a:a4:ec:66:9b:78:
0c:c8:a7:bf:a1:6e:61:fc:3e:3d:b8:a9:3c:33:4a:ab:ca:a4:
29:fe:8d:30:0a:96:16:02:03:5e:75:dd:f3:35:50:81:08:db:
12:d3:56:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 17:07:42 2025 by rpki-client