Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
File: lDyQO00Og7yLLUVDE26c1fOYZPU.mft (raw, json)
Hash identifier: e3mHOBPDMcX4n5DHCL0NAyDuU0timot2wB8fru3AaHE=
Subject key identifier: 4E:A0:42:E5:7C:A3:77:D1:D2:22:64:F0:88:40:52:B3:B6:A7:92:E4
Authority key identifier: 94:3C:90:3B:4D:0E:83:BC:8B:2D:45:43:13:6E:9C:D5:F3:98:64:F5
Certificate issuer: /CN=943c903b4d0e83bc8b2d4543136e9cd5f39864f5
Certificate serial: 019A4EF44949B76E87FC3368F2FBE7777A19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
Manifest number: 083C
Signing time: Tue 04 Nov 2025 13:00:23 +0000
Manifest this update: Tue 04 Nov 2025 13:00:23 +0000
Manifest next update: Wed 05 Nov 2025 13:00:23 +0000
Files and hashes: 1: cj4zWw5xq9EoEtqlLeBFl4S5Tw8.roa (hash: juaSzbzMDJ0sK0T5VgO//FmV7+h5xttoXCzQBonEpPE=)
2: lDyQO00Og7yLLUVDE26c1fOYZPU.crl (hash: 9+SYqk9fO4LCjsQCM+tsdLOrZYGFnnWid1aUgl311mQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:49:49:b7:6e:87:fc:33:68:f2:fb:e7:77:7a:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943c903b4d0e83bc8b2d4543136e9cd5f39864f5
Validity
Not Before: Nov 4 13:00:23 2025 GMT
Not After : Nov 5 13:00:23 2025 GMT
Subject: CN=4ea042e57ca377d1d22264f0884052b3b6a792e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:80:08:22:fe:85:77:94:04:a9:07:e1:ba:0a:
82:ca:eb:d2:8c:99:9f:83:f2:0d:fb:71:8c:b6:07:
4b:00:19:7e:af:e8:16:59:c9:77:0b:e9:d2:d2:e3:
51:13:a2:a9:58:3f:68:d1:3b:c1:c2:ac:c5:75:83:
70:27:c4:8e:0c:86:46:a7:14:a3:1d:c5:cc:e7:2b:
70:50:82:c3:00:e6:2c:b7:06:97:97:ce:77:1e:8e:
2a:84:72:fc:72:03:e0:52:19:60:b6:8c:b2:b6:a9:
91:fc:12:de:21:cc:ae:c8:26:24:7b:47:b1:41:ee:
21:90:c7:c3:95:86:12:cd:ca:97:2e:94:f4:84:25:
79:68:12:61:10:ea:ec:d9:21:e4:d3:0a:62:e1:e9:
3e:8e:e3:cf:6f:cf:68:3f:53:a0:ff:44:b2:e7:b0:
01:85:38:b2:79:16:44:18:35:cf:04:c8:97:5c:15:
25:22:21:99:ca:db:ca:b8:99:05:9a:58:e7:90:48:
68:12:de:c9:0d:5b:70:c1:b4:a5:5b:96:ba:f9:90:
0b:c9:0b:e6:b9:c2:e1:e3:86:7d:c8:3d:73:02:e7:
a0:16:c0:65:4a:eb:ce:1e:de:14:56:ee:07:4b:3c:
ad:5c:53:e8:2a:66:84:01:33:aa:e6:d8:73:da:b0:
53:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A0:42:E5:7C:A3:77:D1:D2:22:64:F0:88:40:52:B3:B6:A7:92:E4
X509v3 Authority Key Identifier:
keyid:94:3C:90:3B:4D:0E:83:BC:8B:2D:45:43:13:6E:9C:D5:F3:98:64:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:61:d1:93:85:4e:60:ce:e9:40:a5:87:e9:ae:cd:a4:ee:4e:
f8:2d:2b:39:12:a8:bf:f0:fb:19:82:ee:8b:d9:bf:af:da:17:
37:8f:d3:9a:56:71:94:77:d2:7d:b3:39:3c:86:5d:3d:95:88:
bc:0a:eb:ca:08:fd:22:42:11:70:6d:57:f0:9b:2e:e9:11:69:
4a:f6:32:8b:e0:6c:4b:c7:f1:6c:f0:cb:8b:e8:01:9a:db:3a:
5b:29:a0:76:0c:32:72:85:58:db:c6:cf:fb:3e:10:a1:76:32:
5d:b1:65:24:95:95:66:70:06:83:05:99:2d:d5:05:66:f5:5f:
d7:f4:74:0a:56:94:c8:7b:48:e7:be:73:b1:b2:97:e9:8e:22:
64:64:16:09:f9:a5:89:a5:a5:63:d3:dc:57:77:5d:e1:59:bb:
dc:40:b9:53:de:bc:50:f1:8e:b7:c2:c6:84:fd:66:a2:da:cf:
04:24:02:7d:d3:30:6d:d5:39:07:d8:cd:43:84:98:41:ed:03:
da:b7:43:dc:cf:be:2f:45:1d:07:e7:bd:56:d4:9c:fe:05:bc:
86:17:44:ab:83:b4:cf:01:99:de:53:59:7e:bd:d9:fd:4a:28:
5a:eb:d0:e5:0b:55:5d:50:0e:f9:0d:88:4f:c1:a9:75:c4:b0:
3c:ad:82:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:47:06 2025 by rpki-client