Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
File: lKpBiudwvajvBRax0cYzpn6R84s.mft (raw, json)
Hash identifier: MU7P55voChHtoiIMyGw+F3Wrcd9/g7bbPR36b+uAaQI=
Subject key identifier: 6C:24:0F:1D:30:0D:51:3B:CE:52:84:3A:F9:42:E7:F0:73:FF:96:D4
Authority key identifier: 94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
Certificate issuer: /CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Certificate serial: 0199FBEC62735FDCD622F8FD00C44D406F88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
Manifest number: 10AA
Signing time: Sun 19 Oct 2025 10:03:16 +0000
Manifest this update: Sun 19 Oct 2025 10:03:16 +0000
Manifest next update: Mon 20 Oct 2025 10:03:16 +0000
Files and hashes: 1: JDbsNRiv_WMTlViBQXQ3g59gK5M.roa (hash: 5BHapuXzcbpJhpfOa/evo44J0f0F6BTnvXfMcpPhdEU=)
2: lKpBiudwvajvBRax0cYzpn6R84s.crl (hash: PrU/EcX41opXNc6sJo/8nycHDqkgH2lGGedKf8mbgiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:62:73:5f:dc:d6:22:f8:fd:00:c4:4d:40:6f:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Validity
Not Before: Oct 19 10:03:16 2025 GMT
Not After : Oct 20 10:03:16 2025 GMT
Subject: CN=6c240f1d300d513bce52843af942e7f073ff96d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:eb:89:4d:14:e5:b0:e7:37:55:58:53:2b:6c:
12:c2:2d:8d:ac:74:f5:92:d6:04:52:f9:01:87:be:
60:fc:af:e3:63:06:33:b1:8d:6d:08:0b:2d:c9:dd:
ce:4f:e6:5a:fc:ea:91:ed:d8:2e:a2:c4:8c:ce:0e:
82:bf:2e:17:e6:97:2d:d1:66:c1:62:be:08:5a:e7:
d4:9e:c0:3e:78:7b:66:2d:8e:23:b5:94:8b:0e:95:
d2:d2:a3:4c:4a:f7:e2:da:45:86:f7:e1:82:aa:03:
d9:42:8e:d6:c2:ef:30:3c:9f:57:3d:16:15:82:8b:
11:d8:9f:fc:c1:c4:8f:87:c5:39:2b:ee:51:eb:39:
96:2d:7c:41:8c:c5:11:7d:da:57:6e:e9:1a:66:38:
e7:9b:4c:19:3c:cb:3f:5f:82:c8:84:33:11:50:7d:
1d:e8:ae:d3:47:a0:60:1a:9e:4e:29:0d:8e:a2:99:
24:22:8b:71:05:a7:b8:5b:e5:99:c3:c1:15:2d:38:
5f:93:62:57:5e:df:fc:b8:f2:a3:cf:1c:49:57:b9:
09:cf:bc:60:fe:38:53:92:8f:1b:d6:b6:28:9e:79:
33:f7:69:07:7d:2a:81:d9:e8:45:0f:7c:c2:55:d3:
0d:d2:97:f8:de:ab:f4:bc:f1:46:39:2b:2c:f8:5f:
c4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:24:0F:1D:30:0D:51:3B:CE:52:84:3A:F9:42:E7:F0:73:FF:96:D4
X509v3 Authority Key Identifier:
keyid:94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:72:02:6f:5a:7b:74:d3:d2:8a:93:38:b8:b4:c6:36:48:6d:
33:a7:15:03:99:48:07:af:5e:46:41:46:2b:4a:96:5d:7c:ce:
d4:52:38:36:38:88:85:2e:8c:d0:69:36:6c:45:12:cb:27:34:
93:e4:b4:13:dc:c5:da:db:09:60:ac:19:e5:e8:40:a4:03:fb:
59:a8:14:38:07:f1:f0:90:ca:df:38:86:47:ac:7f:42:46:eb:
2e:94:ad:6a:30:20:41:48:b0:f2:27:06:96:ed:9e:14:45:51:
93:68:67:37:09:94:84:9b:12:53:ab:5d:c8:77:4a:06:6d:4e:
fc:2e:ef:a6:37:93:74:04:80:04:72:3b:08:6a:65:5d:43:18:
7f:a0:77:5c:7c:ab:e5:f3:67:2c:89:f3:a7:82:8d:31:93:dd:
e7:a2:84:d4:a5:f8:59:77:3a:85:f7:4f:67:08:a9:7a:6b:e0:
ec:01:02:8d:83:ae:e7:7e:92:c8:97:89:a2:c2:da:c5:2d:b3:
a8:3a:58:53:b8:2c:96:18:22:cd:2a:f8:bc:01:77:7b:2d:8c:
05:28:df:cd:f0:7a:b4:47:d2:4a:c3:5a:c1:3d:2a:d6:c4:a8:
ec:c8:9d:34:4e:fe:0b:8d:23:a4:da:01:4d:cb:e7:ea:b2:6d:
3b:6f:d3:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:07 2025 by rpki-client