Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
File: lJQumzXZGQbREkXXO9WM3Y7KSdE.mft (raw, json)
Hash identifier: yOelTLfxafAcMDmFkwwmCtdj9ti705HTNVdC5fpefL8=
Subject key identifier: E3:DD:F5:95:2C:AC:17:0B:40:D2:A7:61:C1:F3:78:C2:10:74:1F:C4
Authority key identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
Certificate issuer: /CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Certificate serial: 019896A66DA0C6AC5016338745872A74E718
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
Manifest number: 1580
Signing time: Mon 11 Aug 2025 01:02:26 +0000
Manifest this update: Mon 11 Aug 2025 01:02:26 +0000
Manifest next update: Tue 12 Aug 2025 01:02:26 +0000
Files and hashes: 1: V6dzQYTukirsU-gqtCUSWtxmwyw.roa (hash: TAhPxTUSZwI4JsrpdkkvjRG18+wELOBapOWsonm/zpw=)
2: lJQumzXZGQbREkXXO9WM3Y7KSdE.crl (hash: 7l18oE0doeGfPgyflHubAfMFRmfzN71EhQJdGi37pnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:6d:a0:c6:ac:50:16:33:87:45:87:2a:74:e7:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Validity
Not Before: Aug 11 01:02:26 2025 GMT
Not After : Aug 12 01:02:26 2025 GMT
Subject: CN=e3ddf5952cac170b40d2a761c1f378c210741fc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:da:e6:0d:6f:00:b9:f0:47:6f:ab:8d:1f:c6:
bf:f6:3d:4b:5c:88:33:e6:c2:cb:7a:ea:85:2c:1a:
2c:31:9d:69:ca:b3:3c:5a:b2:7b:cc:e1:cc:9f:ed:
d0:cb:9b:02:f4:b5:ca:02:41:b6:03:70:38:81:76:
7a:51:33:bd:61:8f:f0:b6:7a:3a:09:40:e8:54:b6:
13:eb:1a:e1:e1:7a:25:b5:f0:b8:fb:ce:a7:a1:0e:
93:fd:2a:f1:60:c9:00:7c:df:29:33:db:da:b6:e9:
fa:04:27:11:c3:3f:7e:67:d8:54:39:14:24:a3:d7:
5d:be:4e:9a:a9:8b:aa:11:9b:91:a0:28:18:34:42:
c4:a7:95:79:4e:68:d8:81:df:40:d5:2d:19:48:f3:
e5:a2:73:50:57:53:f8:11:ea:92:23:be:ce:18:29:
15:5a:9a:86:b4:78:34:ab:5f:94:f4:ca:01:f8:cc:
05:2f:bd:10:13:42:98:b4:1c:a8:34:f4:4b:fb:9b:
66:28:de:af:3f:5d:92:c8:70:78:e2:0a:94:c1:c6:
9e:db:7a:88:cf:1a:d2:82:8a:a5:49:74:ab:75:e5:
c5:09:97:fb:54:ff:a6:3e:4b:b1:ee:f2:bc:17:f6:
c5:67:13:5a:27:ab:4f:10:9e:84:30:0e:70:7e:6a:
9b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:DD:F5:95:2C:AC:17:0B:40:D2:A7:61:C1:F3:78:C2:10:74:1F:C4
X509v3 Authority Key Identifier:
keyid:94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:49:9f:dd:58:cd:3f:23:0f:5e:fb:aa:be:f7:7f:b5:d2:b6:
31:50:d9:7d:b4:01:77:1f:31:fd:f3:23:44:72:5e:1e:ce:60:
e6:1b:21:ff:8b:b9:d5:14:21:d1:ff:6a:6f:d6:c2:23:97:97:
b9:ea:fc:43:ed:bb:21:4a:3b:4c:20:35:ec:a4:c9:f2:9c:73:
eb:e4:cc:9c:c9:f5:91:c9:83:43:d5:48:ea:62:87:f1:79:b2:
ae:3a:32:de:81:58:9d:02:43:a0:36:68:c2:24:14:94:92:d3:
36:f0:14:ce:7e:49:1f:49:93:47:42:49:40:1f:4a:47:f2:67:
b2:87:d7:15:f6:32:e2:88:b6:b1:10:0c:b6:63:f0:60:a1:dc:
f9:bb:7a:6d:2b:83:1d:8b:7a:75:09:ec:55:54:ac:44:08:bd:
36:bf:d9:da:6f:fd:98:05:fa:0d:fe:19:8d:89:b4:86:66:2b:
ec:2f:75:cc:18:0a:c2:9f:85:c2:75:26:e8:aa:43:1f:cf:14:
41:45:01:d5:66:1e:23:0b:03:6a:b2:e7:ca:e0:59:a9:c9:87:
90:fe:5c:8f:2c:77:f4:2d:c1:e5:35:d2:c4:e6:fe:97:ae:ea:
2a:64:08:ea:2a:eb:d4:01:e1:df:da:49:5e:bf:9c:d0:fb:44:
38:ae:f8:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:47:08 2025 by rpki-client