Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
File: cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft (raw, json)
Hash identifier: aZeebNGOrMhXAuuyKiiQUoDEvR4rBkUihQAHedyRG9k=
Subject key identifier: FA:C7:03:B8:A3:FF:65:9B:AB:50:30:12:C7:AE:BF:85:D7:72:06:D9
Authority key identifier: 70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
Certificate issuer: /CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Certificate serial: 0199FBEAE57CDB652E1C5E737C7CF75F61C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
Manifest number: 132B
Signing time: Sun 19 Oct 2025 10:01:39 +0000
Manifest this update: Sun 19 Oct 2025 10:01:39 +0000
Manifest next update: Mon 20 Oct 2025 10:01:39 +0000
Files and hashes: 1: Pmv8pM8XqssRTrBIwYfMIrBu2co.roa (hash: v4JQsWfqUQF/aizb6/kkH5lzSW7tzkWIy4FJVzppxAI=)
2: RQjHthweEF9-820WAQ_PQzmnlEM.roa (hash: nBMPnR4O6VvmGYLIOUpQxt7mk0o9gXGO9uw/qf7b94A=)
3: Wwvcf_CdHRy8gkrOQZUQURuseiI.roa (hash: xkPyebxyoo94+1+QeBv80ewSsDDTwjJTGd/zo7NXJ5g=)
4: cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl (hash: szsKQ5eNxcPF66TSDPl21FAEuTKICODCKPgfSt7mlZE=)
5: lVsIvIm2siK76Iwlc1JEpwaFSPI.roa (hash: TUnieu9UOgS3hw0oaMGHMZ2FiYRQqrhlAMNc6BYERoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:e5:7c:db:65:2e:1c:5e:73:7c:7c:f7:5f:61:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Validity
Not Before: Oct 19 10:01:39 2025 GMT
Not After : Oct 20 10:01:39 2025 GMT
Subject: CN=fac703b8a3ff659bab503012c7aebf85d77206d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:dc:60:14:1e:25:ca:2a:d2:f3:77:bc:6c:fa:
05:4d:aa:c5:49:ec:26:84:db:ad:a7:11:1c:22:a5:
59:48:bf:9b:55:20:33:2f:89:55:ff:19:41:fa:d2:
35:ae:4c:cf:3f:98:c2:58:3f:f9:6c:5e:7f:94:26:
6c:69:53:a2:11:80:e9:44:3c:d5:fb:74:25:d6:23:
81:f9:49:50:4f:71:63:f0:07:59:77:90:b9:0a:5e:
d8:ad:8d:7f:2a:1e:55:f4:91:f7:a7:3b:d3:7c:50:
03:f5:ec:62:6a:dc:0e:58:d7:cd:f4:ef:c2:d9:ff:
45:e3:9e:e1:bc:33:3a:b2:c0:0f:05:a8:7a:1e:9e:
2d:f3:ea:32:a4:45:43:a1:ee:a9:c1:08:30:4c:80:
0e:52:4a:fb:b7:93:c8:a3:62:c9:64:94:ce:8f:29:
f5:41:62:b6:5f:26:3c:79:9c:89:32:d8:20:2a:ef:
98:7e:4b:84:12:f9:b4:a4:0c:76:72:f6:9f:d5:1d:
db:5f:a4:67:a7:5b:07:aa:15:06:47:3d:99:59:cf:
12:62:ca:a1:51:6c:3e:b9:dc:38:e9:e8:f9:95:f7:
7d:82:95:f0:8e:95:dc:af:60:72:85:b0:bf:38:89:
a0:84:8e:6f:62:f2:67:ba:95:fb:db:22:aa:e7:3b:
cb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C7:03:B8:A3:FF:65:9B:AB:50:30:12:C7:AE:BF:85:D7:72:06:D9
X509v3 Authority Key Identifier:
keyid:70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:79:c0:d2:aa:b4:cb:5f:13:cd:7a:94:88:14:4d:93:1f:2c:
e9:cc:4f:9f:41:72:97:29:db:69:5e:57:5f:1c:9d:ca:6b:cc:
08:cc:e7:a0:64:c5:4a:43:6d:aa:95:88:4b:68:f2:58:8b:f4:
2d:24:4a:e7:b1:75:80:f5:73:e8:fc:1b:6b:fb:9e:eb:5e:fa:
e5:34:97:24:5f:6f:03:c6:ac:2b:c2:91:69:28:4c:60:41:68:
78:b8:94:e9:66:97:4f:77:14:72:44:bc:b5:97:be:20:e2:f0:
f8:ee:98:c0:4b:71:8d:56:6b:a3:7c:ff:cc:bb:8d:be:d3:d0:
72:b5:01:09:d9:32:3a:47:fa:78:b6:7d:93:ec:ba:40:31:d0:
71:8b:5e:79:dc:40:11:5e:fd:2b:95:ca:0c:5b:ac:85:94:d5:
a2:f8:fd:dd:5a:58:d7:8d:06:fe:bb:01:cf:00:0d:a3:06:e2:
72:ee:d9:8d:df:ae:f3:51:43:9a:a2:c8:12:56:18:ba:03:de:
f9:6e:ff:eb:6b:48:0a:37:65:12:00:6d:60:0e:8a:4a:2f:2a:
c1:67:8b:44:8a:ca:a1:3f:d9:b7:c1:4c:6e:dc:0f:15:ad:81:
33:4a:08:63:67:b0:47:3c:1b:c9:e3:e0:93:ac:b6:16:b9:99:
dc:a9:62:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:08:13 2025 by rpki-client