Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.mft
File: lRZkUh1QOVkhL1WypZrsbSB7Cig.mft (raw, json)
Hash identifier: MQ7tYNq5nEpjDyAYlqPBR7zrx8tYu0cipd9J8gFmAY8=
Subject key identifier: 7C:15:B2:66:77:92:0B:02:C9:11:68:F2:0F:96:75:BD:7A:80:D9:43
Authority key identifier: 95:16:64:52:1D:50:39:59:21:2F:55:B2:A5:9A:EC:6D:20:7B:0A:28
Certificate issuer: /CN=951664521d503959212f55b2a59aec6d207b0a28
Certificate serial: 0199221E849CDDCECB53BC56C54BDC81EA59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRZkUh1QOVkhL1WypZrsbSB7Cig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 03:00:49 +0000
Manifest this update: Sun 07 Sep 2025 03:00:49 +0000
Manifest next update: Mon 08 Sep 2025 03:00:49 +0000
Files and hashes: 1: IPg6gK3cvCBZgriElu-X9QULHhI.roa (hash: KfBBSFaoabvdCiHx1hEd3tUcsuSp0LUQmRosJtF9Y6s=)
2: lRZkUh1QOVkhL1WypZrsbSB7Cig.crl (hash: zwsRp4XO4qAQwqCuxruMLJ1TlQRa846kg1rZR9rmF14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRZkUh1QOVkhL1WypZrsbSB7Cig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:84:9c:dd:ce:cb:53:bc:56:c5:4b:dc:81:ea:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951664521d503959212f55b2a59aec6d207b0a28
Validity
Not Before: Sep 7 03:00:49 2025 GMT
Not After : Sep 8 03:00:49 2025 GMT
Subject: CN=7c15b26677920b02c91168f20f9675bd7a80d943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ef:1e:74:16:65:8b:fc:ed:7e:14:52:41:4e:
63:bc:05:b2:4e:94:eb:90:60:42:cf:8d:1d:2e:37:
ec:b7:fc:4b:16:54:2f:61:45:ed:6f:1c:ff:1e:e1:
bf:22:07:ab:16:21:37:c7:02:45:01:b5:8c:fb:ea:
60:a0:0f:6c:a6:dd:02:76:f3:7f:ce:c7:65:61:dc:
87:0f:bb:5b:5f:d9:28:c6:ab:c8:70:38:3e:79:6c:
eb:1c:cb:56:75:f2:09:9d:28:26:ea:63:15:4b:93:
ce:c4:50:5d:c5:d6:64:e6:25:6d:a0:d6:51:aa:e3:
7c:81:d8:c4:20:92:60:80:40:d7:13:76:83:75:5f:
d2:d2:5f:a3:3d:0b:0b:4b:08:6f:d0:83:62:16:9b:
d6:3a:f0:06:d9:a6:26:b1:b4:15:70:1a:3a:55:6a:
4a:ed:69:88:fa:1b:e3:18:72:02:97:27:a5:53:ff:
5e:75:d2:bc:e2:8b:e7:ee:c6:3a:84:9e:c1:b7:77:
b7:ba:f3:09:36:ab:c4:47:16:52:e4:00:8a:c9:46:
88:fb:e0:47:28:e9:d9:b1:04:ec:ab:4f:c5:f5:0b:
d4:00:4b:b2:88:0e:e1:31:ac:72:43:af:eb:d7:25:
18:57:97:a4:fe:62:a6:32:01:62:bc:15:b5:a5:8c:
a2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:15:B2:66:77:92:0B:02:C9:11:68:F2:0F:96:75:BD:7A:80:D9:43
X509v3 Authority Key Identifier:
keyid:95:16:64:52:1D:50:39:59:21:2F:55:B2:A5:9A:EC:6D:20:7B:0A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRZkUh1QOVkhL1WypZrsbSB7Cig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2c3619-2c59-46d2-aaae-ef7453ad099f/1/lRZkUh1QOVkhL1WypZrsbSB7Cig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:48:04:fc:90:10:c2:59:d1:1f:a2:6c:ae:5e:cc:4c:74:d0:
b5:b5:5e:c9:db:ac:42:e0:e3:50:96:b3:2b:b6:e0:f7:11:bd:
ab:55:3c:2f:0f:b1:03:27:f2:4a:93:9e:f3:0d:59:42:0f:dd:
78:bd:58:d2:1c:5e:a2:fa:0d:84:2a:68:90:31:bf:4e:8d:6b:
92:1d:49:6b:6f:44:c0:0c:22:76:cc:95:76:1b:a8:78:de:c1:
2b:14:bc:c3:c1:c1:75:af:e8:53:d8:1d:53:5e:91:e5:8f:66:
fc:7c:c0:c7:97:91:e2:0e:b5:b0:f6:ce:e3:e0:61:91:4d:43:
f8:2e:6a:b2:de:89:77:34:af:93:d5:92:5e:55:c6:ea:df:1e:
51:71:c4:14:9c:0a:42:67:de:86:95:6b:32:d6:0a:7a:f4:41:
ee:f2:a0:c9:02:ba:3d:10:8b:1f:6d:b5:dc:f1:4a:81:f5:fc:
09:e0:93:ab:27:22:51:cd:be:92:2c:83:9e:53:eb:e9:60:c5:
63:05:e5:ce:12:b1:d7:f2:72:3b:d3:c2:1c:3c:e9:80:df:a6:
12:ed:81:3c:cb:0c:ed:0c:d5:90:98:00:19:81:9a:83:d8:00:
3f:47:9e:5d:25:f6:e2:2f:db:12:d1:15:b0:fd:92:91:4d:37:
2a:d5:6e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:42:33 2025 by rpki-client