Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
File: lXbbt2mVtJUKhsXwfKjbPrSWePY.mft (raw, json)
Hash identifier: sVE5VaAj3q7Bip30kJ76R9SiAYEVNhfZCV+BtdyVIJQ=
Subject key identifier: 47:4F:3D:35:B5:EE:43:70:99:37:05:BB:67:17:45:62:38:7C:35:0C
Authority key identifier: 95:76:DB:B7:69:95:B4:95:0A:86:C5:F0:7C:A8:DB:3E:B4:96:78:F6
Certificate issuer: /CN=9576dbb76995b4950a86c5f07ca8db3eb49678f6
Certificate serial: 0199FC8FC654EB4EC209BA76D842FDD82BEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
Manifest number: 0422
Signing time: Sun 19 Oct 2025 13:01:44 +0000
Manifest this update: Sun 19 Oct 2025 13:01:44 +0000
Manifest next update: Mon 20 Oct 2025 13:01:44 +0000
Files and hashes: 1: lXbbt2mVtJUKhsXwfKjbPrSWePY.crl (hash: rEct1wiR0fbsCisVZRsZ9lJjIYQSRHM82G0T1aEcPO0=)
2: wOkYAGqpSPBGigfUEv7El852HGA.roa (hash: jGAVgltAX4k1B+fH3k6Z7JMTyuIFNv8n6kIlzZB4Zww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 13:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:c6:54:eb:4e:c2:09:ba:76:d8:42:fd:d8:2b:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9576dbb76995b4950a86c5f07ca8db3eb49678f6
Validity
Not Before: Oct 19 13:01:44 2025 GMT
Not After : Oct 20 13:01:44 2025 GMT
Subject: CN=474f3d35b5ee4370993705bb67174562387c350c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:54:c1:3a:0e:af:86:2f:1f:b1:82:b2:9a:c7:
49:bb:f5:7c:41:a7:c2:58:1c:58:f5:ca:38:1a:63:
79:61:54:82:b0:ae:ac:f5:b5:e6:a8:eb:49:cd:14:
6e:d1:6d:15:9e:a0:12:ba:1c:a7:04:d7:74:1d:62:
57:21:ac:80:a3:44:e3:47:ee:a7:fc:a8:5b:7a:56:
17:b2:26:78:26:aa:d9:e9:75:35:30:d7:78:80:91:
fd:4b:0d:03:ba:75:3a:24:52:83:2a:3b:0d:59:2b:
dc:9d:3b:96:67:0f:fc:12:35:8e:71:37:6b:c8:a4:
a3:0f:e4:89:5f:04:f8:2a:78:f1:fe:bb:13:2a:85:
ec:7c:8d:04:f2:0d:71:87:1c:74:43:f2:64:b2:34:
59:71:c3:bb:99:ae:8d:67:b5:f8:e5:59:b6:fc:82:
e2:d7:20:f2:08:72:aa:ee:70:c6:88:53:80:56:70:
f3:3e:9d:8c:a9:51:39:7a:c4:80:32:c4:a5:b8:0b:
89:de:5e:ea:f0:22:8d:0e:76:18:07:5f:81:df:d4:
2c:4c:cf:60:30:a2:fb:22:c7:0f:1b:bc:97:f7:a8:
ee:d2:4e:a5:1d:dd:f1:f5:ce:6b:20:df:f0:ee:dd:
7f:4d:14:c6:c0:d9:61:73:e1:cb:6e:00:bb:8e:d2:
aa:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:4F:3D:35:B5:EE:43:70:99:37:05:BB:67:17:45:62:38:7C:35:0C
X509v3 Authority Key Identifier:
keyid:95:76:DB:B7:69:95:B4:95:0A:86:C5:F0:7C:A8:DB:3E:B4:96:78:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:44:55:83:e5:77:d6:a8:21:a5:fb:9b:b6:fc:2b:69:c5:4d:
d3:b5:32:ea:d1:a3:a9:84:0b:58:3b:eb:67:5a:3a:35:ca:dd:
21:11:c4:8e:87:ff:e9:92:20:f5:dc:c3:d9:4d:77:4a:8c:b0:
f8:06:16:fc:4e:9a:c6:18:28:4f:9a:6b:39:41:d7:a6:48:35:
71:b5:3a:ad:cf:4c:cf:74:50:ad:d5:e7:02:9c:9e:e8:93:0f:
03:de:5d:f3:37:ac:b3:4e:8a:7a:0c:61:17:d6:a6:4f:b3:69:
7e:65:be:db:56:8e:db:65:58:d9:46:ec:94:94:c3:6f:3f:27:
f5:7a:e7:30:62:37:91:ce:64:85:b7:5c:3e:83:0c:7a:69:58:
46:7c:77:5c:5c:75:a5:73:e1:6c:ea:26:7d:6e:75:fa:d9:1a:
6e:38:e1:de:da:10:fb:4f:40:fd:b9:b2:8c:53:69:e1:91:02:
d7:c0:46:e6:53:71:5b:28:a0:da:07:a6:14:40:57:47:fc:85:
88:67:7d:60:68:86:75:ae:1d:f6:56:ca:6a:b5:f1:c9:be:50:
ff:9d:69:a3:54:94:13:5c:6a:be:db:47:82:34:0e:fa:bf:42:
47:33:14:b2:88:e5:76:5f:21:f2:18:e1:be:7d:1d:15:89:30:
37:a4:da:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:31:24 2025 by rpki-client