Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
File: lRTVqEAEnUQt83dEU5TfcZIBp3M.mft (raw, json)
Hash identifier: 3Wtu3phr02AwjKhUfbud72qH5d1hoWN4M1ancjC4fUc=
Subject key identifier: 17:54:51:09:22:E0:65:6A:79:7E:AB:15:C2:2A:7C:CD:1C:1D:72:38
Authority key identifier: 95:14:D5:A8:40:04:9D:44:2D:F3:77:44:53:94:DF:71:92:01:A7:73
Certificate issuer: /CN=9514d5a840049d442df377445394df719201a773
Certificate serial: 019922FA55B4980AE3C5D94481B608767077
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
Manifest number: 04B8
Signing time: Sun 07 Sep 2025 07:00:55 +0000
Manifest this update: Sun 07 Sep 2025 07:00:55 +0000
Manifest next update: Mon 08 Sep 2025 07:00:55 +0000
Files and hashes: 1: h0vy9KP5l8xr8yJ-2ncCcO3rvZU.roa (hash: WW+DmP6TLxBJVPgyfFOFc50eb4JwhFwUi3K7+OUSV3A=)
2: lRTVqEAEnUQt83dEU5TfcZIBp3M.crl (hash: fKMFWifeFKt4UsIhHRNaD8ANUQjDFZs1U+9RcKj5WpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:55:b4:98:0a:e3:c5:d9:44:81:b6:08:76:70:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514d5a840049d442df377445394df719201a773
Validity
Not Before: Sep 7 07:00:55 2025 GMT
Not After : Sep 8 07:00:55 2025 GMT
Subject: CN=1754510922e0656a797eab15c22a7ccd1c1d7238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:15:35:0b:65:0c:5f:a7:8c:72:e0:7f:d6:b2:
bf:3e:0b:b6:2a:63:4c:7f:98:48:34:65:f4:a3:f7:
88:e2:1c:a5:02:60:d6:e5:41:74:f6:54:b1:19:37:
40:ff:2a:83:2f:9c:ce:a0:9a:ac:44:f2:67:17:5f:
45:2a:52:bd:11:31:b7:bf:5e:e2:7b:f8:0f:df:18:
0a:5c:40:a9:68:d6:07:66:72:0a:c9:cd:1a:5c:2b:
9e:62:f5:0d:e9:a9:bc:00:63:c3:5c:57:fb:40:9c:
61:4e:08:89:73:bc:e3:d3:59:e6:bb:b7:3b:33:34:
b7:c9:d2:f1:7a:57:a5:47:e4:cf:c7:80:4e:9a:ea:
fa:79:45:e9:47:30:18:85:b4:05:d3:2e:9a:60:07:
8d:10:5e:68:14:0f:c4:a0:6c:e1:e1:0f:26:7e:2d:
8a:c9:a9:fd:11:d5:18:00:4e:6e:61:a4:6d:97:c5:
47:67:90:d4:1a:07:f4:12:24:83:ea:4d:f0:04:ed:
7e:fc:c2:31:31:50:ca:5d:24:a7:e6:25:d2:11:4d:
65:bc:c1:80:5f:d1:49:45:80:4b:ac:85:d2:43:38:
b7:10:79:74:b2:d2:ea:bb:56:c8:82:98:7e:8f:63:
c7:34:15:0a:7d:85:aa:72:35:ae:68:3f:77:6a:02:
69:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:54:51:09:22:E0:65:6A:79:7E:AB:15:C2:2A:7C:CD:1C:1D:72:38
X509v3 Authority Key Identifier:
keyid:95:14:D5:A8:40:04:9D:44:2D:F3:77:44:53:94:DF:71:92:01:A7:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:f8:dd:a7:f3:1e:af:77:f8:5c:72:18:15:ed:d4:e7:df:96:
44:d9:ba:92:09:9a:25:9d:cd:ef:5f:88:68:74:f5:ef:cc:22:
46:40:c3:ab:f1:c9:66:1a:b1:3d:26:05:fd:d6:9f:06:bf:cc:
3b:98:ef:cc:80:26:42:9a:52:da:6f:b3:3d:46:e9:2f:05:c0:
f2:b2:8e:02:52:1b:2b:9a:f0:68:51:54:78:04:2b:e7:ac:46:
08:f1:62:fe:c7:75:e1:66:cb:d4:bf:db:90:30:74:59:d6:db:
ef:e0:60:59:45:a2:9c:1d:ee:5a:11:71:73:92:a7:a4:6e:6e:
45:91:b6:0d:40:de:95:13:c5:22:6d:61:dd:34:26:64:7d:4b:
ed:c0:a7:3b:c1:95:83:58:c4:82:6e:7b:68:f4:6b:5e:2c:f7:
1f:90:fd:61:65:f2:a2:9c:06:21:04:d4:de:93:47:48:5c:db:
90:b1:92:50:66:13:c3:ce:5f:4f:d6:f0:b3:8d:ac:89:a7:59:
fa:07:a3:9b:6f:a9:3a:48:4e:f3:ca:dd:bd:77:21:2d:72:80:
95:e0:d1:3c:43:6e:d7:fd:f9:79:e3:0d:dd:c9:14:b7:a6:78:
93:07:90:71:47:f4:ea:a5:95:21:50:f4:65:87:a4:0a:d3:e2:
5c:5a:eb:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:56:15 2025 by rpki-client