Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
File: lQPIUJD5zC4inTj96rrmJlCL3rg.mft (raw, json)
Hash identifier: +spU96LevClbVvLOC6/5Lq6Sy68GZItOCqoU5fCJLEs=
Subject key identifier: 9F:8C:23:92:4E:CD:6B:FB:CF:43:C1:8D:28:27:35:5C:2E:24:D2:50
Authority key identifier: 95:03:C8:50:90:F9:CC:2E:22:9D:38:FD:EA:BA:E6:26:50:8B:DE:B8
Certificate issuer: /CN=9503c85090f9cc2e229d38fdeabae626508bdeb8
Certificate serial: 0199FB7CD81A3284ED02A6FEF36FC6FCF374
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQPIUJD5zC4inTj96rrmJlCL3rg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
Manifest number: 0403
Signing time: Sun 19 Oct 2025 08:01:26 +0000
Manifest this update: Sun 19 Oct 2025 08:01:26 +0000
Manifest next update: Mon 20 Oct 2025 08:01:26 +0000
Files and hashes: 1: lQPIUJD5zC4inTj96rrmJlCL3rg.crl (hash: lkNJ8iUxBUNCZbr4w8uaT+xXgBT18O9NBixbLReirTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQPIUJD5zC4inTj96rrmJlCL3rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:d8:1a:32:84:ed:02:a6:fe:f3:6f:c6:fc:f3:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9503c85090f9cc2e229d38fdeabae626508bdeb8
Validity
Not Before: Oct 19 08:01:26 2025 GMT
Not After : Oct 20 08:01:26 2025 GMT
Subject: CN=9f8c23924ecd6bfbcf43c18d2827355c2e24d250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:69:b3:a8:b3:11:e0:ba:50:71:92:05:84:
2c:3d:85:c0:d5:e8:8f:d3:66:24:99:2c:89:4d:ee:
97:c1:0e:eb:46:a2:33:51:a5:59:fd:82:4e:2d:59:
a9:1e:51:ff:ed:8a:ff:94:bc:d6:c1:5a:62:4b:c2:
0d:95:4f:ae:83:bd:cb:0c:f7:5a:08:25:57:8e:ec:
74:7c:5c:7b:0e:f0:0f:2a:76:75:28:dc:f7:c1:b8:
0e:16:e3:7b:af:bb:5c:cf:7e:e1:bf:90:fb:24:aa:
f8:9a:f1:ee:52:4e:2c:c9:79:94:39:71:08:1d:7d:
75:e7:7c:3d:a8:10:4c:4b:ea:ec:cc:36:7a:7a:09:
ac:72:a7:5a:38:80:49:fa:9d:e7:7c:32:6f:23:9b:
0e:87:f0:fb:d3:9d:e2:b2:55:23:db:3b:81:57:f0:
27:84:b3:5a:73:61:38:bf:06:f6:bf:cb:36:8b:d7:
2d:d1:2f:39:7d:4a:17:81:df:31:2e:33:ed:9f:e6:
63:86:cf:7e:93:e2:3b:06:42:e8:52:e9:70:b2:88:
35:c8:6c:bd:39:14:65:29:42:17:7d:16:d3:7f:4c:
e6:fb:10:d6:d1:d6:68:19:d2:ae:6d:4a:13:fc:1f:
63:b0:24:76:7f:fe:fc:56:55:ec:d1:e2:0a:eb:f2:
2b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8C:23:92:4E:CD:6B:FB:CF:43:C1:8D:28:27:35:5C:2E:24:D2:50
X509v3 Authority Key Identifier:
keyid:95:03:C8:50:90:F9:CC:2E:22:9D:38:FD:EA:BA:E6:26:50:8B:DE:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQPIUJD5zC4inTj96rrmJlCL3rg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:99:f8:58:f7:93:e2:ea:d5:a9:4f:16:04:1a:34:e6:7e:e6:
58:af:3d:f4:bb:00:8d:62:98:90:9a:a4:51:92:8a:f4:91:43:
87:2f:7a:9d:f0:20:44:79:8b:21:fd:bc:5b:8d:82:f8:9e:7b:
19:0b:c4:31:d5:ff:7d:84:cf:8a:89:11:9b:ec:46:13:c0:4e:
50:00:51:0a:4c:c6:23:e6:19:34:05:40:3d:7f:7a:d7:0c:19:
25:76:dd:ca:14:e3:d8:a7:97:6c:fa:cf:aa:7e:f2:d2:90:9b:
98:07:f9:12:e6:f5:b6:c7:87:bb:ec:4a:d2:f2:0e:7e:bb:6b:
00:a4:04:aa:46:1f:fc:76:49:87:65:80:f9:e5:c8:6c:a5:b1:
8e:29:8f:a2:54:69:9f:a3:a0:9a:3f:04:1d:f7:56:77:15:42:
20:6c:79:1a:b4:98:13:dd:71:47:ab:3e:c7:0f:81:ee:95:be:
0c:cb:92:7f:65:c0:28:58:5a:f0:b9:db:b3:b5:b1:d9:11:b2:
c4:d4:c2:6e:14:2b:51:a5:8c:49:23:9a:d1:fc:3b:e7:94:18:
de:dd:5b:63:b3:dd:e0:ff:47:4c:34:39:0f:62:72:c8:ee:b6:
3b:9b:32:21:58:a5:2f:e3:a9:07:3e:32:32:e0:9d:9c:da:71:
24:0c:ba:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:03 2025 by rpki-client