Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
File: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft (raw, json)
Hash identifier: KC6zangSpEyRAzGQjzX2LWbIZzo8EeGbbGWxpRG6tH8=
Subject key identifier: F5:84:3F:C9:8A:E3:C1:17:97:A4:87:32:14:C8:C7:75:03:0A:71:4A
Authority key identifier: 94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8
Certificate issuer: /CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8
Certificate serial: 0198752B861CD81868322FA88753DF5C31E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 13:00:43 +0000
Manifest this update: Mon 04 Aug 2025 13:00:43 +0000
Manifest next update: Tue 05 Aug 2025 13:00:43 +0000
Files and hashes: 1: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl (hash: d+zW+687Aix2XQJh90KMqvXDUZsqC8jNN9dlcB3yJXI=)
2: q0ApgfDR6MUFo5SmPdczTTS0Xsc.roa (hash: scfCeq11ilCac8clsFq/zmbEUDIqGanHD8OiJk8YEiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:2b:86:1c:d8:18:68:32:2f:a8:87:53:df:5c:31:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8
Validity
Not Before: Aug 4 13:00:43 2025 GMT
Not After : Aug 5 13:00:43 2025 GMT
Subject: CN=f5843fc98ae3c11797a4873214c8c775030a714a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9d:9a:34:40:83:a9:b7:fa:2e:1b:03:29:65:
de:37:3b:14:dd:b5:05:1e:b4:cb:59:1b:71:57:b3:
39:bf:4f:39:d6:3a:be:60:74:da:cd:0d:ec:65:f3:
d8:11:5e:d3:70:b0:63:0e:e9:6f:65:05:73:2c:16:
3a:a4:58:e6:08:5d:c5:da:f9:6a:94:71:1d:02:ca:
b6:5c:5a:85:71:3c:97:e9:5a:38:5d:1f:3e:69:0b:
a9:40:f4:25:c0:65:5b:3b:b4:48:17:8c:61:24:2d:
1d:0a:e1:c2:fe:bf:9e:90:56:ec:0a:e1:3e:fe:8e:
71:d8:1f:d0:c4:bf:28:59:d2:06:81:6c:a0:0d:b7:
57:56:bd:5a:16:60:94:81:76:8b:16:25:19:28:a7:
8d:0a:e6:9b:a2:b3:ba:fd:21:e9:e6:07:86:f1:38:
1f:e1:c5:4f:75:f1:9b:3f:59:b9:a1:af:91:ab:66:
d2:53:34:41:f7:cf:8b:82:ab:e7:9c:91:32:21:80:
1d:e6:f7:a7:f3:74:c4:de:83:e5:5c:87:9d:82:7a:
4d:29:1f:b6:2d:e8:c3:da:4b:de:25:2e:1c:9d:69:
41:8c:9c:01:ca:c7:da:c7:3b:24:ca:3c:fe:6f:a0:
cd:52:ce:6c:25:0b:b2:f5:34:27:2b:fa:75:b6:27:
49:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:84:3F:C9:8A:E3:C1:17:97:A4:87:32:14:C8:C7:75:03:0A:71:4A
X509v3 Authority Key Identifier:
keyid:94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:09:ca:02:e1:7d:91:e2:40:09:7b:76:17:9e:7c:1c:c0:7f:
4d:3a:ab:2f:62:ae:2a:a9:96:07:df:5a:4a:08:a0:43:7a:a5:
98:50:be:af:98:f7:39:90:2c:c0:ad:02:1d:23:4a:ea:d3:57:
e4:68:17:3d:cd:4b:9b:62:42:e2:ce:02:29:5d:f1:93:08:5f:
af:84:60:9f:62:cc:b3:5b:d3:6d:65:e1:8c:28:84:ce:6a:44:
7d:79:0c:3f:93:54:67:6a:91:38:63:10:43:e3:b2:eb:c2:b2:
da:ca:05:ec:ec:9b:12:8f:66:db:c5:7b:7a:6a:5f:ed:9b:b2:
4a:60:00:e7:95:18:05:07:02:ff:82:be:80:10:bf:62:c5:0b:
73:43:0d:18:a5:2a:87:8c:a1:fa:42:ab:9b:00:b8:7e:67:9e:
0f:76:4e:51:94:ab:19:ee:13:32:bd:8b:28:18:6e:16:56:4a:
ab:2b:ea:7f:da:bb:33:ca:99:90:7d:22:e0:55:14:8a:9e:a1:
da:f3:e0:14:ea:bd:4f:b2:39:76:de:0d:ad:65:30:12:8f:ab:
4b:94:d5:05:de:04:78:00:30:a3:a1:c9:09:d9:a4:38:08:8b:
ac:de:cd:44:05:1b:09:12:af:fb:ee:e4:f0:9a:ed:72:c4:df:
c1:14:05:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:03:39 2025 by rpki-client