Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
File: 3LZakO089K4EUlVO40uSqEdtzxA.mft (raw, json)
Hash identifier: 45S/FzUDGXuXg/+N5EOp8+IIP7G9DDcD7pbO++Lmins=
Subject key identifier: 2E:8A:63:32:D6:8C:EA:B2:BF:D9:A7:E4:70:E7:E8:14:E1:D1:A3:39
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 019A5007690956FC2DC68AFB067C5938A165
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
Manifest number: 1722
Signing time: Tue 04 Nov 2025 18:00:54 +0000
Manifest this update: Tue 04 Nov 2025 18:00:54 +0000
Manifest next update: Wed 05 Nov 2025 18:00:54 +0000
Files and hashes: 1: 3LZakO089K4EUlVO40uSqEdtzxA.crl (hash: qgxCD9ZwJwkh9k49+oUMZr+r7ieMv0eSEQg9Dtuzut4=)
2: 4TacCA5fNMvJzrQKHYvZp1FsTCY.roa (hash: PoM3PiM+eiQs0IrTl3gGzaDWCG/B3yTTKS+dLnu4Yd0=)
3: DPsq0OHf8MVPtjf1meByn-PM7Q0.roa (hash: oRmxnthJtArJCnDUTkrTLD5StLSleGnIBmGT013Rl5I=)
4: RMqD4QZBwk_wzHsp1loeMRU2jMk.roa (hash: nCQ5Eq/Er1do1Gz84LWpqzugPw71HtroPiJZlZhFk8k=)
5: naw_j5gKrLLjpLmDjj2VeLVHcW0.roa (hash: 9rsCrKDYxMlNCKWks8aC7H+vNumWPUdz18CO2dwuUHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:07:69:09:56:fc:2d:c6:8a:fb:06:7c:59:38:a1:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Nov 4 18:00:54 2025 GMT
Not After : Nov 5 18:00:54 2025 GMT
Subject: CN=2e8a6332d68ceab2bfd9a7e470e7e814e1d1a339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:03:19:e3:d5:0c:aa:b8:9d:4b:dc:01:97:dd:
e4:67:76:97:f7:8e:5e:a3:57:40:50:fe:e4:73:17:
48:c9:04:7c:11:c8:43:4d:f8:b3:a7:ce:8a:eb:e8:
e3:e9:bb:c1:de:a1:8e:e3:bc:bc:79:f5:a8:bd:e7:
e4:06:3c:9c:f7:19:29:be:76:61:93:bf:2a:fb:75:
03:56:8b:bb:c2:1b:25:8c:f5:31:a0:9b:28:bb:35:
dd:45:db:61:63:52:09:59:42:b1:d7:f0:7b:b7:9d:
d8:aa:23:a9:e2:7b:21:84:33:83:0b:2f:47:dc:74:
60:50:a5:50:8e:b0:5e:0d:69:48:c4:10:e0:18:e5:
6e:c2:60:e7:99:55:40:bb:d7:68:ee:63:df:45:61:
a8:ed:4e:3c:3c:eb:01:a8:22:84:e0:31:21:20:f8:
71:0b:58:e2:e3:40:7a:8b:04:4b:09:1a:14:f1:2e:
f5:83:a9:56:90:a5:bf:b6:91:75:03:b8:53:70:cb:
91:ee:1d:0a:02:ba:b1:a8:b3:57:8f:92:a0:46:e8:
41:31:6c:a8:97:81:a3:4b:8e:d0:7c:d4:e3:5f:d3:
f6:0f:ad:db:c4:6a:bc:0c:cc:06:80:18:0e:16:03:
6f:fe:e1:f9:13:5d:40:38:4f:69:de:47:ba:64:62:
46:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8A:63:32:D6:8C:EA:B2:BF:D9:A7:E4:70:E7:E8:14:E1:D1:A3:39
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:7d:3f:74:2c:13:35:a9:78:c0:04:69:c6:d3:1f:2e:23:fb:
19:61:e3:55:2a:dd:2b:94:f4:d2:08:f1:be:a3:84:ec:e7:34:
a5:b8:03:0e:89:96:85:20:96:fb:7d:57:dd:1a:f9:a9:c9:e2:
46:f8:5f:00:46:f4:93:26:b0:ff:e6:14:9b:89:a3:ac:b3:82:
ee:10:59:70:89:a3:19:91:41:6d:4c:bc:23:1c:04:cf:8c:70:
35:92:03:d5:9a:15:10:b7:72:1b:05:d9:a3:cc:76:52:a2:21:
eb:90:0d:a5:12:e8:29:17:1f:14:57:f0:05:01:15:6d:4f:a2:
1a:27:d9:95:c4:89:3a:6f:57:6e:52:51:61:8c:ab:fa:29:f5:
e5:a6:35:b3:31:2f:2e:46:63:14:87:27:aa:76:e9:be:d3:57:
a0:04:ed:86:17:2d:28:e4:c2:44:54:ad:cd:d8:d7:ac:15:c0:
87:9a:5c:9a:ff:72:b4:ac:1e:0b:a8:f1:d8:8e:f1:49:58:df:
db:bb:20:5a:1f:75:2a:3e:5d:fc:aa:81:a1:a3:a5:b3:7e:87:
5c:4a:bf:22:21:b5:3d:be:ec:b5:5a:38:20:ae:1f:41:ce:9d:
5e:1e:ea:62:2d:8e:20:c4:59:6c:d0:f5:08:67:7d:5f:a8:e5:
dd:1d:ca:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQB2kJVvwtxor7BnxZOKFlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjYjY1YTkwZWQzY2Y0YWUwNDUyNTU0ZWUzNGI5MmE4NDc2
ZGNmMTAwHhcNMjUxMTA0MTgwMDU0WhcNMjUxMTA1MTgwMDU0WjAzMTEwLwYDVQQD
EygyZThhNjMzMmQ2OGNlYWIyYmZkOWE3ZTQ3MGU3ZTgxNGUxZDFhMzM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgMZ49UMqridS9wBl93kZ3aX945e
o1dAUP7kcxdIyQR8EchDTfizp86K6+jj6bvB3qGO47y8efWovefkBjyc9xkpvnZh
k78q+3UDVou7whsljPUxoJsouzXdRdthY1IJWUKx1/B7t53YqiOp4nshhDODCy9H
3HRgUKVQjrBeDWlIxBDgGOVuwmDnmVVAu9do7mPfRWGo7U48POsBqCKE4DEhIPhx
C1ji40B6iwRLCRoU8S71g6lWkKW/tpF1A7hTcMuR7h0KArqxqLNXj5KgRuhBMWyo
l4GjS47QfNTjX9P2D63bxGq8DMwGgBgOFgNv/uH5E11AOE9p3ke6ZGJGvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC6KYzLWjOqyv9mn5HDn6BTh0aM5MB8GA1UdIwQY
MBaAFNy2WpDtPPSuBFJVTuNLkqhHbc8QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEt
ODVhOTU1ZjIxNjNiLzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEtODVhOTU1ZjIxNjNi
LzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl30/dCwT
Nal4wARpxtMfLiP7GWHjVSrdK5T00gjxvqOE7Oc0pbgDDomWhSCW+31X3Rr5qcni
RvhfAEb0kyaw/+YUm4mjrLOC7hBZcImjGZFBbUy8IxwEz4xwNZID1ZoVELdyGwXZ
o8x2UqIh65ANpRLoKRcfFFfwBQEVbU+iGifZlcSJOm9XblJRYYyr+in15aY1szEv
LkZjFIcnqnbpvtNXoATthhctKOTCRFStzdjXrBXAh5pcmv9ytKweC6jx2I7xSVjf
27sgWh91Kj5d/KqBoaOls36HXEq/IiG1Pb7stVo4IK4fQc6dXh7qYi2OIMRZbND1
CGd9X6jl3R3K9Q==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:19:39 2025 by rpki-client