Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
File: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft (raw, json)
Hash identifier: 7phKVV+oS4j/BNi+HUHrEJ0ATfFBoXAOfUL0ePtELWA=
Subject key identifier: 02:CF:FC:DB:C9:22:AE:B7:D1:35:98:31:9B:BB:82:AA:7F:C1:34:CA
Authority key identifier: 94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
Certificate issuer: /CN=94d161593da815cac58d3479652d048480d26713
Certificate serial: 01987C7812A5C80625C1AF9FEB0577BA0BBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
Manifest number: 161C
Signing time: Tue 05 Aug 2025 23:01:40 +0000
Manifest this update: Tue 05 Aug 2025 23:01:40 +0000
Manifest next update: Wed 06 Aug 2025 23:01:40 +0000
Files and hashes: 1: bdAF9viIHB5V5FhTALS-owQhcks.roa (hash: lPv9YsuyVHwxqfP/RRJpZeMDZjwRG/d34AhteS5V7Ew=)
2: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl (hash: e7MzmlEvIdNvDI8Pup4by9xu5NL44GSuZkV8DrLBuxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:78:12:a5:c8:06:25:c1:af:9f:eb:05:77:ba:0b:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d161593da815cac58d3479652d048480d26713
Validity
Not Before: Aug 5 23:01:40 2025 GMT
Not After : Aug 6 23:01:40 2025 GMT
Subject: CN=02cffcdbc922aeb7d13598319bbb82aa7fc134ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:30:d6:4b:f4:de:45:30:33:f2:e1:d5:3a:a4:
df:a5:53:d7:17:fc:2f:ef:a0:f5:04:57:af:7b:c7:
28:ba:e3:a6:f5:84:58:52:09:db:4c:31:08:4d:fc:
68:ef:30:77:a0:6d:94:11:8c:7a:06:c7:d7:fd:96:
11:46:d2:ea:b2:3b:88:17:31:cc:62:c6:ff:64:98:
05:33:26:d1:f2:8d:f3:d5:66:7f:34:0a:be:f4:49:
c5:7b:8a:44:0f:8c:ef:eb:77:6d:2c:91:7e:b8:b1:
09:31:fe:04:07:3f:18:36:24:1c:2d:cb:d1:34:60:
e1:13:15:d0:6f:a4:91:70:0d:62:bc:06:5e:d1:65:
fb:98:a4:eb:89:77:a2:76:78:78:97:30:c2:76:e9:
71:68:20:1d:f6:12:57:15:ec:89:8d:87:3f:ff:3c:
57:9b:da:96:2e:0f:9a:ee:ad:b3:69:c6:66:73:c1:
94:c8:3c:d8:b1:59:43:1a:fb:19:e3:b3:25:9d:d2:
1f:51:cf:09:2e:e1:a6:c2:b0:04:a0:0c:34:d4:68:
7a:d7:3c:d8:0b:f5:4c:21:ea:e2:11:21:f0:b6:40:
f6:30:08:6c:8a:c0:1d:cd:53:4c:1f:6e:be:7d:c7:
97:eb:f5:0b:cb:1e:c2:52:46:71:5e:3b:60:aa:e8:
4e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:CF:FC:DB:C9:22:AE:B7:D1:35:98:31:9B:BB:82:AA:7F:C1:34:CA
X509v3 Authority Key Identifier:
keyid:94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:05:a9:f7:58:85:16:ec:1c:43:1a:f4:ca:83:4f:db:29:c5:
a9:13:d9:dc:1a:d1:6b:ec:42:67:ad:ae:52:17:df:0f:3a:67:
e7:99:0c:32:d6:44:c3:cf:c0:50:83:29:78:75:c0:e2:67:57:
c6:3e:f0:ac:e9:97:45:3c:52:33:f0:21:b7:46:fe:7e:9f:7b:
21:48:c4:6e:cd:0d:59:0e:e2:47:3b:63:51:8f:ff:58:13:b7:
fb:dc:74:cd:19:06:0b:b6:e2:a2:a2:27:bf:63:47:a2:63:cd:
ba:89:29:d5:93:f1:48:4d:91:de:55:49:68:33:77:21:6a:dd:
91:15:de:8e:9f:c9:77:8d:3c:b1:4f:ed:96:15:d2:dc:07:fa:
7d:92:cf:8c:24:88:2d:f2:00:6e:03:72:33:c1:dc:21:91:53:
07:f3:08:af:35:91:3a:a1:e2:80:8f:21:39:9c:a8:a2:ff:7f:
c0:2d:d8:ce:41:7b:0c:94:1b:65:31:c0:69:b0:b0:ce:1d:f1:
08:45:33:8b:24:8b:0d:36:88:8d:77:99:60:0c:2a:d4:ee:01:
0c:40:ce:5b:27:a0:e2:0a:40:79:43:50:dc:23:ef:e0:20:30:
1e:42:e3:02:c1:d4:63:0e:5c:8a:1d:56:58:78:f1:9f:c1:4d:
1a:2b:d6:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:23:22 2025 by rpki-client