Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
File: lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft (raw, json)
Hash identifier: ETBht6SEHXUR1aBqdUSKdIcbc6i9fyifUyTkNhB7TQo=
Subject key identifier: 07:9A:C2:42:3B:FC:6B:6C:92:94:56:77:43:E5:97:70:5B:EA:01:B1
Authority key identifier: 96:44:8E:84:0D:27:2A:3E:31:59:19:2D:1D:F1:1F:10:0E:50:6F:6A
Certificate issuer: /CN=96448e840d272a3e3159192d1df11f100e506f6a
Certificate serial: 019A4C611F96F72CAE75B981E1878A10D3FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
Manifest number: 0935
Signing time: Tue 04 Nov 2025 01:00:24 +0000
Manifest this update: Tue 04 Nov 2025 01:00:24 +0000
Manifest next update: Wed 05 Nov 2025 01:00:24 +0000
Files and hashes: 1: HRJaIehlqdUQOZwaPo6dI6mb5MQ.roa (hash: NAZLCo/vu2u7I92Xt0rJZZjC+drQdPYyxSFtuqS2OpE=)
2: lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl (hash: tFnFg/RH0t6LN0xHdjPPHF/FCRAvMQUiqtcUdHiaZxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:1f:96:f7:2c:ae:75:b9:81:e1:87:8a:10:d3:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96448e840d272a3e3159192d1df11f100e506f6a
Validity
Not Before: Nov 4 01:00:24 2025 GMT
Not After : Nov 5 01:00:24 2025 GMT
Subject: CN=079ac2423bfc6b6c9294567743e597705bea01b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:b4:bb:97:a4:8a:9c:61:f1:fc:dd:ad:93:9b:
9e:88:4b:ab:ce:78:4d:f2:2f:fe:37:c2:6e:13:28:
f6:b4:73:f6:51:01:de:4d:88:d5:2c:a1:30:a8:2d:
e1:58:ff:90:85:b0:d0:f2:51:aa:f9:e4:95:27:67:
69:00:15:6d:50:8b:ac:49:52:6e:86:c1:9c:7f:5a:
0b:29:0c:8e:6e:d3:48:8e:4d:b0:d9:f5:a8:d2:ef:
60:b6:ec:7e:49:68:3a:49:9d:16:04:0a:cb:1c:00:
6d:ef:12:12:82:01:5c:cd:55:6f:de:46:2a:15:e4:
6f:7b:4c:56:1e:4d:5b:34:ac:9f:5f:d6:af:11:b9:
51:ea:1f:ec:52:d6:9f:ab:7d:ea:91:d8:c4:60:22:
b7:89:a9:83:c6:05:ca:2d:d1:e3:06:e9:fa:a8:de:
49:95:64:69:00:6a:76:57:61:2c:aa:8d:cf:ec:77:
9e:f4:ae:a0:d0:8a:2f:7d:39:6d:2c:17:62:b0:fe:
1d:3e:51:0b:ba:2c:f0:29:c1:84:75:da:a5:6d:2d:
6b:52:34:bd:f0:c0:ad:1b:39:81:23:7f:5b:2d:b6:
46:4b:d8:b3:da:17:c6:f6:af:1b:f6:3f:26:31:da:
6f:3b:25:7f:4e:6b:7d:07:40:95:b0:38:7b:55:42:
eb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9A:C2:42:3B:FC:6B:6C:92:94:56:77:43:E5:97:70:5B:EA:01:B1
X509v3 Authority Key Identifier:
keyid:96:44:8E:84:0D:27:2A:3E:31:59:19:2D:1D:F1:1F:10:0E:50:6F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:3c:3c:fa:07:7e:34:15:73:ef:01:67:f9:27:bf:4f:34:6e:
a2:d8:42:7c:a4:ef:86:ea:d8:59:04:34:9a:f8:ea:1a:ae:c4:
21:90:a4:12:e9:76:b8:3e:ea:4c:9f:5a:39:ce:a1:b0:05:94:
b8:3f:17:93:2f:8b:73:0f:7a:ed:5c:3e:47:64:34:af:e2:34:
df:ef:5b:17:f8:48:93:4e:25:13:6c:63:86:a9:a5:a1:ae:14:
79:57:4e:31:ad:95:a6:12:78:3e:b4:9d:52:83:df:cb:31:62:
ba:54:7c:0d:a2:4d:00:5d:b8:93:b2:0e:98:a2:e4:16:5b:96:
16:57:7c:dd:2f:49:bd:0f:c2:8c:59:14:c7:30:d8:b8:33:2c:
7d:8c:17:41:23:7b:e5:0b:4f:b6:73:7b:11:c7:78:d2:9f:c9:
2a:5c:5b:78:04:3a:7a:02:51:a6:3f:71:c6:b3:d2:0b:43:95:
05:24:db:c8:70:dc:45:93:ae:22:96:bb:fb:1d:d0:2d:d1:e9:
a0:b1:86:8f:da:9d:2c:36:21:a2:4b:46:03:4b:5b:f1:ee:fd:
a2:84:ca:89:15:62:b4:ef:bc:77:dc:e9:89:a8:e0:33:3b:7e:
ac:63:40:a2:11:76:ff:d4:c9:41:8f:c6:2b:2a:1f:62:b2:d6:
73:a5:79:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpMYR+W9yyudbmB4YeKENP8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2NDQ4ZTg0MGQyNzJhM2UzMTU5MTkyZDFkZjExZjEwMGU1
MDZmNmEwHhcNMjUxMTA0MDEwMDI0WhcNMjUxMTA1MDEwMDI0WjAzMTEwLwYDVQQD
EygwNzlhYzI0MjNiZmM2YjZjOTI5NDU2Nzc0M2U1OTc3MDViZWEwMWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA57S7l6SKnGHx/N2tk5ueiEurznhN
8i/+N8JuEyj2tHP2UQHeTYjVLKEwqC3hWP+QhbDQ8lGq+eSVJ2dpABVtUIusSVJu
hsGcf1oLKQyObtNIjk2w2fWo0u9gtux+SWg6SZ0WBArLHABt7xISggFczVVv3kYq
FeRve0xWHk1bNKyfX9avEblR6h/sUtafq33qkdjEYCK3iamDxgXKLdHjBun6qN5J
lWRpAGp2V2Esqo3P7Hee9K6g0IovfTltLBdisP4dPlELuizwKcGEddqlbS1rUjS9
8MCtGzmBI39bLbZGS9iz2hfG9q8b9j8mMdpvOyV/Tmt9B0CVsDh7VULrKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAeawkI7/GtskpRWd0Pll3Bb6gGxMB8GA1UdIwQY
MBaAFJZEjoQNJyo+MVkZLR3xHxAOUG9qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGtTT2hBMG5LajR4V1JrdEhmRWZFQTVRYjJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy80ZWU3MzQtZWZlOC00MWExLTgwZGYt
MTZhZmJhOTg3YjA2LzEvbGtTT2hBMG5LajR4V1JrdEhmRWZFQTVRYjJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy80ZWU3MzQtZWZlOC00MWExLTgwZGYtMTZhZmJhOTg3YjA2
LzEvbGtTT2hBMG5LajR4V1JrdEhmRWZFQTVRYjJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgzw8+gd+
NBVz7wFn+Se/TzRuothCfKTvhurYWQQ0mvjqGq7EIZCkEul2uD7qTJ9aOc6hsAWU
uD8Xky+Lcw967Vw+R2Q0r+I03+9bF/hIk04lE2xjhqmloa4UeVdOMa2VphJ4PrSd
UoPfyzFiulR8DaJNAF24k7IOmKLkFluWFld83S9JvQ/CjFkUxzDYuDMsfYwXQSN7
5QtPtnN7Ecd40p/JKlxbeAQ6egJRpj9xxrPSC0OVBSTbyHDcRZOuIpa7+x3QLdHp
oLGGj9qdLDYhoktGA0tb8e79ooTKiRVitO+8d9zpiajgMzt+rGNAohF2/9TJQY/G
KyofYrLWc6V5Aw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:18 2025 by rpki-client