Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: ok4ZriN4En8uYGz8sSCa/idq1uKT0OSwar7KC9TTs7w=
Subject key identifier: 50:5B:94:B9:44:B9:29:D0:35:90:C5:EA:0B:2A:59:52:CE:6F:EC:9A
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 0199326D036D5A6677341EB1BBD1F71B4262
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 168A
Signing time: Wed 10 Sep 2025 07:00:29 +0000
Manifest this update: Wed 10 Sep 2025 07:00:29 +0000
Manifest next update: Thu 11 Sep 2025 07:00:29 +0000
Files and hashes: 1: 96CoHDqUFKRWLMKpuPNky2AThV0.roa (hash: 2dbkXGtx2Y2iGJ3uWXJRyOKWK4j+bBsW6iNp6F1vwRk=)
2: Zv6rhEtfx_jSCXc_S8UyXA0vo2U.roa (hash: upx9rJYDv3PHx1B1uURg+ybXETCTfjV8bsr8SvgJ3XM=)
3: biGYeNx8PlSGKHRmVucthKOSlnY.roa (hash: YxlSQax5Hky2oIIKAGXfmWIsjyjpaMRbBxvVdrI+BSI=)
4: g1Zk3nIRea2SYaHqoN92Ss1LCL8.roa (hash: aHQejC3hHy18rRg2jbGxWbnzx0KaJtZTncqKQ8jXn3M=)
5: kZbYAR7_VQFdZ98vhS7MW7IOa5g.roa (hash: veptVlnHGE2k0mSrEVT7abLTAqTrUJe6t8F1/LuZDvo=)
6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: xEv0LWcphNRIUw6bmw9h11Cz2Zb6jYDyjtRw/VWSmAk=)
7: mmvuqSKrxCIOK5dTOpgllxAuYB8.roa (hash: cXrhSBrwqA5XppxSkBQnZWJRKIyKnPJRdZjf9M/iItg=)
8: rZuO-15UbHThyJRmeryxRpgLk2M.roa (hash: /ED0vNPFUaV7PRvXzqX2jHZ983s8HtxjtsJuRuMtCvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 07:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:6d:03:6d:5a:66:77:34:1e:b1:bb:d1:f7:1b:42:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Sep 10 07:00:29 2025 GMT
Not After : Sep 11 07:00:29 2025 GMT
Subject: CN=505b94b944b929d03590c5ea0b2a5952ce6fec9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cc:d4:54:23:94:e4:00:bd:ef:7b:ee:1f:fe:
bc:52:d1:08:3b:a7:24:25:86:ce:82:c6:64:85:84:
d8:c1:d3:b4:81:10:63:cf:ec:c9:9b:cc:91:85:83:
29:59:63:9e:fa:f0:74:8e:34:4a:4a:89:5d:c9:71:
d8:da:8c:37:b5:99:42:76:e7:f9:f9:42:1a:db:f2:
4d:ce:8f:69:9d:86:df:31:2f:09:2d:13:61:4b:0a:
3b:fe:1b:09:95:7f:51:40:29:5f:2a:75:e9:47:3f:
f4:04:54:86:c0:4e:e7:32:19:25:c1:aa:ae:b4:6d:
cf:64:e7:57:2e:7a:18:d5:bb:69:73:35:cb:74:b9:
8c:76:84:dd:79:fb:31:df:92:db:23:c3:0d:25:c5:
7d:32:6d:c0:1f:78:e0:ab:ee:dc:5b:e8:0b:21:a7:
8d:99:6b:91:20:57:d6:c6:c2:4d:99:ec:69:b0:2d:
4b:fe:c2:2e:f6:27:7e:f3:1c:a8:fb:38:4e:14:ab:
b7:75:4d:2e:3f:10:14:b2:d4:bc:43:76:cc:2c:82:
04:3b:d5:d4:8f:c5:41:a0:f4:a7:3c:83:8a:29:4e:
83:c5:e9:01:c3:f3:3c:17:da:8f:48:28:06:c3:32:
94:b4:6a:ed:c5:30:57:0a:82:5f:32:47:df:5f:a5:
7a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:5B:94:B9:44:B9:29:D0:35:90:C5:EA:0B:2A:59:52:CE:6F:EC:9A
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:a8:75:93:3d:8a:a8:93:33:a5:c9:48:f7:0b:8f:c1:f8:05:
c7:25:a2:0d:b8:b6:a9:c4:7f:a2:46:ba:f7:4b:3c:6b:79:02:
ed:5b:80:a9:f6:2f:2c:7e:af:09:d4:ac:b8:14:55:ab:b4:74:
59:fd:f6:42:16:94:0b:64:0a:09:45:06:34:00:f3:e5:f3:4f:
2a:06:3c:c8:09:3f:0d:bd:ef:72:c3:61:71:bc:40:ee:11:5f:
1a:4b:65:07:1c:c0:a4:71:78:84:2c:1a:c1:ce:6a:ec:4a:99:
2d:38:44:75:7d:13:ac:4a:84:c5:00:17:ac:06:e8:99:78:b7:
0f:5d:0d:a5:80:8d:e1:9f:84:25:f9:61:14:d5:7b:f3:29:f9:
b3:88:c8:81:7b:00:54:d0:96:3b:87:ba:a0:84:e9:7e:a8:68:
55:61:34:ae:7f:91:22:9b:0b:17:e8:b7:31:80:16:d4:8c:78:
ff:cc:72:72:a8:1b:e7:3e:5d:41:14:78:e0:c9:6a:2e:0b:b1:
00:83:36:1a:b6:27:cb:4a:50:6c:fa:de:5e:07:68:25:a5:9a:
98:8e:c3:db:74:5b:6a:39:c3:85:7d:db:01:9a:fc:2f:af:04:
27:32:3c:16:3d:f9:2a:0c:c0:71:ad:a6:f9:13:75:2b:31:5c:
e3:7d:ed:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 15:04:17 2025 by rpki-client