Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json)
Hash identifier: DK5LdISAGPPJiGoL/elunxSrejLFPjqDSRi2a9BPiG0=
Subject key identifier: E4:F5:F7:EE:3C:84:07:8D:AA:84:6A:BC:DA:76:A3:B9:C4:D8:BC:F9
Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Certificate serial: 019A51BEF29269BCCB5CEBD3043253D7E5D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
Manifest number: 0BB3
Signing time: Wed 05 Nov 2025 02:00:59 +0000
Manifest this update: Wed 05 Nov 2025 02:00:59 +0000
Manifest next update: Thu 06 Nov 2025 02:00:59 +0000
Files and hashes: 1: BlSKEWV8a0Pu0DQWSBEZ8E6j6Ig.roa (hash: E+fl2IDftOEsy56bvfa1HOBzyBMqnDbK6GEdF9F9KeI=)
2: amBacDdU6Mjk1rJegCvOmhPZCuI.roa (hash: QFuN87Ca0aIv1BOf1cf5zbuSpQPxJlnZXFNDEW5Ik9U=)
3: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: PYoSmHQrDTODZO2zxR2x/+3BY4o4O93dCKZcaD/z5ik=)
4: oQUx3CaetTGOoOfH7R_GIuQC9ZM.roa (hash: QXtVeIAnBIaJbBWzjL0HKxzProdKFi/c2re+3CNcveM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 02:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:f2:92:69:bc:cb:5c:eb:d3:04:32:53:d7:e5:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Validity
Not Before: Nov 5 02:00:59 2025 GMT
Not After : Nov 6 02:00:59 2025 GMT
Subject: CN=e4f5f7ee3c84078daa846abcda76a3b9c4d8bcf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:6b:75:1f:ad:60:34:51:41:00:d3:fe:22:ef:
4a:f6:a2:93:45:e4:78:6b:52:8f:bf:20:9f:f8:4e:
af:5c:c5:50:7a:5e:67:c8:e5:31:ae:3b:49:8f:00:
3a:f3:29:fb:f1:52:d8:fa:0a:88:0d:d8:c5:ef:c4:
20:f1:71:21:5b:a8:2f:01:ae:34:ad:35:cd:f7:79:
88:b3:d1:24:15:ef:78:ef:60:13:bf:72:2d:e2:50:
43:c0:d1:75:23:1c:75:88:1b:c2:06:b5:92:b3:79:
ab:5d:7b:e9:9d:58:c4:1b:6b:ce:b5:ff:2c:e3:36:
eb:f5:d1:74:7f:94:51:df:81:df:56:a6:95:80:ce:
19:5d:e9:5d:f1:65:a0:55:4f:3d:be:87:90:4e:a8:
3b:a7:cf:3f:59:f1:fa:f4:05:5f:f5:16:a6:e2:ba:
4b:e3:5d:ca:32:35:19:1e:9d:a8:3d:25:5c:0e:87:
38:69:af:9f:ee:8f:b0:a4:16:77:84:22:46:cc:da:
63:12:31:79:e4:f8:96:15:76:03:36:3a:16:b8:9e:
fc:d0:41:68:e1:d0:be:68:47:55:d1:e6:ca:6c:77:
8d:7e:6c:0f:16:74:c9:dc:02:de:8d:0b:b4:1c:df:
a4:5c:8e:18:f4:fe:60:bc:52:de:a6:de:40:13:d2:
ed:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F5:F7:EE:3C:84:07:8D:AA:84:6A:BC:DA:76:A3:B9:C4:D8:BC:F9
X509v3 Authority Key Identifier:
keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:86:81:3b:cf:bf:5f:0b:bf:cb:b2:ec:8f:b6:be:cf:4e:6a:
e2:5e:15:5b:12:78:72:c0:08:1d:55:0b:21:56:15:27:c0:fb:
9c:45:88:5a:95:b6:52:92:03:40:27:10:6d:39:1e:21:4c:09:
dd:89:96:9e:26:cd:82:ee:20:71:57:2f:4f:1a:ed:0b:2d:7c:
b5:8a:92:f8:34:24:9a:09:ef:70:f2:ee:8b:2e:f2:f8:73:3a:
6e:21:bd:8f:b2:22:7b:d4:3e:8e:b0:be:ab:d2:9a:11:ad:2f:
05:5b:ec:3f:79:70:45:67:14:70:b5:f1:d2:ec:6d:e7:46:c5:
3b:35:47:3c:a4:fd:2f:c8:0b:5e:aa:50:9b:7e:d9:71:8d:13:
3b:74:8b:ab:51:34:2f:71:92:2f:c8:43:f9:a0:87:2a:4e:60:
69:c5:d8:58:53:8f:91:96:77:11:c0:76:8d:b5:74:2b:50:38:
d0:a2:f4:f6:43:cb:3f:ca:5c:27:68:af:18:e5:a6:f4:e7:89:
ae:cc:85:e8:33:a9:96:17:37:80:76:66:55:95:3e:97:3e:b1:
c5:8b:4a:43:cd:7b:14:27:08:6c:a0:70:0e:42:2c:4e:60:e9:
0d:8b:b7:bd:40:5b:b1:24:3a:9d:77:42:3c:e0:dd:ee:51:26:
32:f8:66:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpRvvKSabzLXOvTBDJT1+XUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2OWNlZGE1YmYzNzkwMWZlOWU0NGY3M2I1YmY4MmI2ODdi
MzQ1NzIwHhcNMjUxMTA1MDIwMDU5WhcNMjUxMTA2MDIwMDU5WjAzMTEwLwYDVQQD
EyhlNGY1ZjdlZTNjODQwNzhkYWE4NDZhYmNkYTc2YTNiOWM0ZDhiY2Y5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3mt1H61gNFFBANP+Iu9K9qKTReR4
a1KPvyCf+E6vXMVQel5nyOUxrjtJjwA68yn78VLY+gqIDdjF78Qg8XEhW6gvAa40
rTXN93mIs9EkFe9472ATv3It4lBDwNF1Ixx1iBvCBrWSs3mrXXvpnVjEG2vOtf8s
4zbr9dF0f5RR34HfVqaVgM4ZXeld8WWgVU89voeQTqg7p88/WfH69AVf9Ram4rpL
413KMjUZHp2oPSVcDoc4aa+f7o+wpBZ3hCJGzNpjEjF55PiWFXYDNjoWuJ780EFo
4dC+aEdV0ebKbHeNfmwPFnTJ3ALejQu0HN+kXI4Y9P5gvFLept5AE9LtBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOT19+48hAeNqoRqvNp2o7nE2Lz5MB8GA1UdIwQY
MBaAFJac7aW/N5Af6eRPc7W/graHs0VyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS81Y2ZmZDItYjU2OC00ZDU1LWExMjQt
MjFmYzlhZmM4YWMxLzEvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS81Y2ZmZDItYjU2OC00ZDU1LWExMjQtMjFmYzlhZmM4YWMx
LzEvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHoaBO8+/
Xwu/y7Lsj7a+z05q4l4VWxJ4csAIHVULIVYVJ8D7nEWIWpW2UpIDQCcQbTkeIUwJ
3YmWnibNgu4gcVcvTxrtCy18tYqS+DQkmgnvcPLuiy7y+HM6biG9j7Iie9Q+jrC+
q9KaEa0vBVvsP3lwRWcUcLXx0uxt50bFOzVHPKT9L8gLXqpQm37ZcY0TO3SLq1E0
L3GSL8hD+aCHKk5gacXYWFOPkZZ3EcB2jbV0K1A40KL09kPLP8pcJ2ivGOWm9OeJ
rsyF6DOplhc3gHZmVZU+lz6xxYtKQ817FCcIbKBwDkIsTmDpDYu3vUBbsSQ6nXdC
PODd7lEmMvhmLg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 11:54:14 2025 by rpki-client