Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
File: lQ8oTPXDnybd0jUufyrfeo3GD44.mft (raw, json)
Hash identifier: iIdlo5ZVVbHedWX05P1Elngff0ZGqD/hhjjDljUaRSg=
Subject key identifier: 10:0D:93:AB:D1:46:11:0F:AD:2C:9B:21:C0:15:54:58:52:73:6F:8B
Authority key identifier: 95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
Certificate issuer: /CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Certificate serial: 0198A19692D59A45C9E93D0EFF05F5C045E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
Manifest number: 0C2A
Signing time: Wed 13 Aug 2025 04:00:56 +0000
Manifest this update: Wed 13 Aug 2025 04:00:56 +0000
Manifest next update: Thu 14 Aug 2025 04:00:56 +0000
Files and hashes: 1: CIXcSM8wlZUJc9_olM2z-Sxe_fI.roa (hash: mDiY7MPNQSCh1DaHA5s1SG/E+/9GUkWw11IjIEdP7WU=)
2: lQ8oTPXDnybd0jUufyrfeo3GD44.crl (hash: ijvDT1Gl/IznTpGskhj7VyULF1u96+evPR+B6uWPnwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a1:96:92:d5:9a:45:c9:e9:3d:0e:ff:05:f5:c0:45:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Validity
Not Before: Aug 13 04:00:56 2025 GMT
Not After : Aug 14 04:00:56 2025 GMT
Subject: CN=100d93abd146110fad2c9b21c015545852736f8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:12:b8:9f:98:df:14:98:3e:74:d9:08:27:cb:
6a:8f:45:95:01:7d:cd:43:a2:2a:f4:1f:2d:4c:96:
a5:a4:27:93:35:b1:e4:45:d8:8b:35:4f:ee:3d:a3:
c9:23:20:a7:90:63:84:73:6e:c6:4b:da:ef:5b:5c:
0c:a4:6a:70:75:34:91:76:d4:84:a2:4c:eb:31:23:
1c:b5:2d:fc:82:6a:66:6c:a9:6b:b3:92:2c:6c:aa:
fc:00:a6:f5:e9:d7:fe:06:48:3c:f4:bf:31:a6:cf:
01:ae:99:fb:23:3e:84:91:1d:41:09:9f:b9:4d:32:
b6:c2:76:4a:50:7f:b2:dd:90:f1:0d:1e:0b:0d:56:
28:2a:e2:4c:d2:2d:20:25:32:29:96:c2:46:e9:bc:
76:ba:c2:7e:5f:ff:72:5f:f1:97:3f:9e:58:4e:64:
fa:88:36:b8:cb:f7:a5:de:fe:f4:ed:02:e2:98:26:
44:84:bc:59:e3:4b:08:7a:b8:a6:3a:49:c0:7e:c8:
9b:14:8a:77:b1:ee:3e:51:ca:84:32:6c:dc:26:b6:
5c:19:c2:68:10:74:c0:0b:cf:ef:60:04:0d:06:1c:
87:39:a1:cd:2e:25:a6:b8:96:07:d9:d3:73:13:c9:
a5:4f:1c:ad:cc:dc:ca:e0:c3:d0:ee:2d:05:46:a2:
08:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0D:93:AB:D1:46:11:0F:AD:2C:9B:21:C0:15:54:58:52:73:6F:8B
X509v3 Authority Key Identifier:
keyid:95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:86:89:b7:0e:4b:43:26:80:5f:7d:fc:64:5a:86:20:5a:fd:
6a:6b:4f:74:e9:3b:a9:cd:c2:ff:c4:5f:e1:e5:bc:b2:af:20:
8d:27:36:9d:6f:21:d4:76:93:e9:72:c6:85:0d:71:3f:b6:cf:
9b:f7:4e:f6:dd:08:13:ab:24:53:15:4e:74:3b:cb:3b:be:74:
a0:6e:93:f4:3d:1a:52:0a:a5:21:25:a5:e0:d5:da:00:39:2a:
b4:5b:10:b5:a7:0b:69:ca:1e:2f:29:a0:08:f6:12:f0:c7:9c:
75:33:bc:af:7b:e5:f8:02:6e:e7:fd:28:60:d1:16:d4:64:71:
80:da:b8:ef:e0:a4:2c:0f:a3:82:cd:d8:77:73:cb:5e:62:83:
f3:0f:99:a2:22:6c:9f:0e:35:18:72:75:3f:62:dd:b6:e2:94:
bf:cc:bd:c3:75:bb:38:2d:9d:a8:4c:ee:53:13:78:2a:c1:aa:
f0:8b:8b:6d:2a:68:f1:b7:10:a0:7d:18:78:23:dd:ab:70:e6:
fb:be:bb:c9:09:1d:f7:f8:f4:2f:62:21:ef:46:8e:da:15:f9:
27:3c:b4:8e:10:0c:d2:c6:28:24:e2:a1:c0:3f:ae:07:a3:95:
b0:dd:1a:06:c9:1d:13:d4:47:84:ab:97:fe:01:0e:8a:4e:66:
6f:7d:5b:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:28:41 2025 by rpki-client