Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft
File: lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft (raw, json)
Hash identifier: /BP+AparWybMoBtbNDvpIaBizT5Fzk2m+xJHaCGJYXo=
Subject key identifier: 9F:B5:6D:E2:2B:50:13:90:EF:39:D2:E8:40:10:00:34:22:10:A3:88
Authority key identifier: 95:6E:31:6C:98:38:04:C2:50:1E:CC:5A:BE:A5:3A:2A:83:B5:73:24
Certificate issuer: /CN=956e316c983804c2501ecc5abea53a2a83b57324
Certificate serial: 0199FBEC4396E22699F7BDC54B5300EE8603
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lW4xbJg4BMJQHsxavqU6KoO1cyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft
Manifest number: 16B2
Signing time: Sun 19 Oct 2025 10:03:08 +0000
Manifest this update: Sun 19 Oct 2025 10:03:08 +0000
Manifest next update: Mon 20 Oct 2025 10:03:08 +0000
Files and hashes: 1: lW4xbJg4BMJQHsxavqU6KoO1cyQ.crl (hash: BjKwz+p+kEZCZanLvRo123weiyyx/2LkM2iPLGSYm/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lW4xbJg4BMJQHsxavqU6KoO1cyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:43:96:e2:26:99:f7:bd:c5:4b:53:00:ee:86:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=956e316c983804c2501ecc5abea53a2a83b57324
Validity
Not Before: Oct 19 10:03:08 2025 GMT
Not After : Oct 20 10:03:08 2025 GMT
Subject: CN=9fb56de22b501390ef39d2e8401000342210a388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6d:30:35:b6:f8:56:1f:9f:e0:91:ff:c7:f8:
1d:2e:17:10:44:44:4d:90:ae:35:92:8f:06:65:b1:
9e:ae:5a:e3:66:45:53:2f:40:31:a6:bd:68:5b:db:
6f:46:7c:f9:99:39:61:e6:2a:b3:09:56:4c:eb:62:
d9:6e:e9:6d:ce:28:b5:85:e8:d7:de:40:72:9e:54:
82:a1:53:69:29:7e:b4:73:ef:9b:e5:93:b8:83:a6:
b9:18:1e:aa:eb:d3:32:5e:46:5b:38:0e:a7:2a:ea:
a3:5d:74:a6:01:95:f6:83:4b:d1:6b:08:07:56:06:
8d:70:22:1b:0e:e0:80:c0:ef:2f:92:66:f3:b5:97:
b0:bb:28:91:c1:8c:35:c5:98:d2:02:b1:80:ac:3e:
0c:95:b0:b7:38:a1:88:53:a1:7e:02:ec:8b:30:01:
52:58:59:67:b9:cd:d2:03:a3:78:7f:a6:66:bb:90:
34:68:02:20:57:53:3a:3a:12:6d:b5:c2:ff:0b:ce:
f0:00:fd:f0:26:01:34:95:c6:2f:6f:41:0b:58:3c:
00:8d:62:6a:c5:c0:61:0d:95:dc:c9:17:5e:f0:ae:
12:07:39:32:58:df:4d:d9:e0:24:26:b1:46:dc:b2:
85:0c:ba:70:9b:63:fd:5f:c6:13:38:94:c5:75:c5:
5a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:B5:6D:E2:2B:50:13:90:EF:39:D2:E8:40:10:00:34:22:10:A3:88
X509v3 Authority Key Identifier:
keyid:95:6E:31:6C:98:38:04:C2:50:1E:CC:5A:BE:A5:3A:2A:83:B5:73:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lW4xbJg4BMJQHsxavqU6KoO1cyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/02240f-e080-4be9-93c4-396fcda6490c/1/lW4xbJg4BMJQHsxavqU6KoO1cyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:b4:89:65:5d:a3:ac:b0:10:64:c4:50:9f:95:38:17:a1:bd:
a7:c1:0e:61:ae:12:d3:77:f9:a2:95:98:cd:f8:f1:c9:4a:6e:
51:2e:30:32:8a:eb:ba:13:df:5b:09:69:01:46:0f:b7:df:4e:
e1:d8:08:ea:d9:9f:0f:ac:0e:5a:e5:d2:07:09:58:af:8d:bb:
8f:ce:57:b2:13:77:11:a1:8a:cc:5d:81:53:60:5d:03:a4:1f:
b2:67:fb:b9:1c:2a:8c:a4:c2:5c:b4:1c:20:af:5c:1c:09:2c:
de:55:a1:81:bc:9c:55:8f:ca:65:f3:6c:09:86:58:b7:a2:8d:
1f:ba:fa:36:31:ef:b0:7f:68:3f:55:b6:39:fa:01:b0:0f:07:
1c:a9:b9:cf:aa:88:c5:f4:03:67:f0:f3:43:6f:1a:81:01:f9:
85:96:ba:2d:4c:68:ed:89:07:ed:01:bc:de:05:0e:88:2c:29:
2e:dc:3f:34:da:bd:10:7b:71:6c:bd:d6:34:8e:ee:0e:dd:af:
86:bc:98:8c:d1:df:1e:55:ee:d3:5d:b8:35:46:d4:cd:db:ef:
b9:58:78:41:e2:64:66:1d:c8:c0:73:cc:8c:1f:37:2a:be:94:
15:75:0c:83:b4:76:26:f5:07:aa:8a:b3:7f:18:86:da:2a:3c:
42:7e:ad:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:28 2025 by rpki-client