Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft
File: li68oqtiGOHxrgaHwxREVP1dmWs.mft (raw, json)
Hash identifier: 13IiyeoZATIr3BrSC5QR4nW53aYnXS+LnGfwL2GaPkg=
Subject key identifier: B1:FF:6B:A8:36:D5:35:19:B6:F7:31:B5:9D:11:E9:D9:A6:07:95:E0
Authority key identifier: 96:2E:BC:A2:AB:62:18:E1:F1:AE:06:87:C3:14:44:54:FD:5D:99:6B
Certificate issuer: /CN=962ebca2ab6218e1f1ae0687c3144454fd5d996b
Certificate serial: 0199FBEA8745BE425F46E975A34CCAA3A4BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/li68oqtiGOHxrgaHwxREVP1dmWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft
Manifest number: 1673
Signing time: Sun 19 Oct 2025 10:01:15 +0000
Manifest this update: Sun 19 Oct 2025 10:01:15 +0000
Manifest next update: Mon 20 Oct 2025 10:01:15 +0000
Files and hashes: 1: li68oqtiGOHxrgaHwxREVP1dmWs.crl (hash: YZgVJMyxUQVrVyuY0Jhsb25IuINxG3l2pPfV2FaBMI0=)
2: o2GAlRjqrWRT3XBGB9RwTDs_Ew0.roa (hash: HIy6rjCdEt9bpDveV9D2228Lv0B3K1QWnfoHF9Amb5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft
rsync://rpki.ripe.net/repository/DEFAULT/li68oqtiGOHxrgaHwxREVP1dmWs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:87:45:be:42:5f:46:e9:75:a3:4c:ca:a3:a4:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=962ebca2ab6218e1f1ae0687c3144454fd5d996b
Validity
Not Before: Oct 19 10:01:15 2025 GMT
Not After : Oct 20 10:01:15 2025 GMT
Subject: CN=b1ff6ba836d53519b6f731b59d11e9d9a60795e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:aa:af:b5:8c:14:b2:d6:a8:4b:39:80:c0:66:
b5:02:5e:10:d4:57:0d:96:0e:7e:9e:5e:50:f8:2a:
98:8d:65:ab:0e:cf:ac:e7:7f:c3:8f:3b:76:3b:af:
b8:ac:a6:c3:d7:4b:11:d3:1a:de:2d:5b:42:50:9c:
c9:04:08:63:0a:2b:8f:0d:19:68:9c:00:28:6f:a5:
bc:bc:4c:5e:01:a8:41:42:87:f9:62:a6:6e:08:b7:
57:eb:09:43:8d:e1:fd:fa:c5:28:53:da:3a:47:5d:
ef:38:61:fd:f8:ac:82:48:fc:b6:75:03:2a:dd:e3:
c1:8b:ac:45:0a:ac:ed:44:55:72:93:89:2a:cb:b9:
6d:75:c0:d1:55:80:87:c3:86:5f:75:4d:cb:7f:32:
03:40:cf:1b:7b:74:2f:1b:8f:91:05:eb:b1:f0:dc:
47:7d:69:40:65:da:e2:40:e9:c8:91:97:1a:a7:2d:
5a:59:9c:69:02:bf:8b:75:7e:eb:72:c9:3d:3a:81:
5b:48:7a:a1:f8:d2:8c:5c:4a:cc:6e:a4:4d:d1:8e:
c9:6e:7a:cd:a4:42:13:92:19:80:b1:e2:c2:d0:e4:
75:c9:a2:3a:2d:90:6e:ee:e1:3b:06:93:c5:aa:0e:
35:d8:69:ca:e5:fd:78:07:ff:c7:ed:66:f2:84:85:
bf:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:FF:6B:A8:36:D5:35:19:B6:F7:31:B5:9D:11:E9:D9:A6:07:95:E0
X509v3 Authority Key Identifier:
keyid:96:2E:BC:A2:AB:62:18:E1:F1:AE:06:87:C3:14:44:54:FD:5D:99:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/li68oqtiGOHxrgaHwxREVP1dmWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:c4:36:3e:49:f5:44:59:26:7f:dc:8b:d0:c4:4d:2d:3e:4b:
3f:c1:93:a3:13:4f:45:50:8f:a5:32:2c:32:10:49:66:36:c2:
7a:3d:14:7e:de:4b:f7:83:95:d4:7b:ae:a3:43:1d:cd:f5:ee:
db:a2:68:15:1d:13:0e:27:40:7d:f4:89:06:5f:f3:df:a9:b1:
e2:21:8b:1c:88:52:e2:cb:eb:78:8a:ce:42:0d:2e:45:1f:b3:
08:75:13:59:da:c7:54:0b:0d:5c:8d:33:b9:45:21:9c:d2:79:
fa:30:20:52:06:f5:fa:08:9a:71:71:8d:07:68:fa:16:9c:b2:
0e:82:97:da:7e:06:7b:89:bf:91:1b:5a:06:eb:76:4a:ce:86:
f4:7f:e7:23:0a:91:c5:72:59:f3:fb:8f:93:d7:40:38:93:fd:
dd:47:9e:f0:0d:4a:e5:58:30:1e:70:4d:dd:2a:43:35:91:5a:
1e:5e:da:cd:64:86:48:00:55:a9:ea:42:e4:1d:eb:72:e2:c7:
fa:56:9b:c5:1e:56:fa:ba:62:7b:a0:fc:5b:27:ea:ee:e7:78:
58:ff:6f:5c:7c:34:52:de:23:9d:87:45:06:14:0b:97:82:22:
83:f8:0e:ee:6f:8e:18:40:0c:f2:39:c4:ec:6c:c4:24:ad:21:
e0:a9:90:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76odFvkJfRul1o0zKo6S6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2MmViY2EyYWI2MjE4ZTFmMWFlMDY4N2MzMTQ0NDU0ZmQ1
ZDk5NmIwHhcNMjUxMDE5MTAwMTE1WhcNMjUxMDIwMTAwMTE1WjAzMTEwLwYDVQQD
EyhiMWZmNmJhODM2ZDUzNTE5YjZmNzMxYjU5ZDExZTlkOWE2MDc5NWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqqvtYwUstaoSzmAwGa1Al4Q1FcN
lg5+nl5Q+CqYjWWrDs+s53/Djzt2O6+4rKbD10sR0xreLVtCUJzJBAhjCiuPDRlo
nAAob6W8vExeAahBQof5YqZuCLdX6wlDjeH9+sUoU9o6R13vOGH9+KyCSPy2dQMq
3ePBi6xFCqztRFVyk4kqy7ltdcDRVYCHw4ZfdU3LfzIDQM8be3QvG4+RBeux8NxH
fWlAZdriQOnIkZcapy1aWZxpAr+LdX7rcsk9OoFbSHqh+NKMXErMbqRN0Y7JbnrN
pEITkhmAseLC0OR1yaI6LZBu7uE7BpPFqg412GnK5f14B//H7WbyhIW/MQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLH/a6g21TUZtvcxtZ0R6dmmB5XgMB8GA1UdIwQY
MBaAFJYuvKKrYhjh8a4Gh8MURFT9XZlrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGk2OG9xdGlHT0h4cmdhSHd4UkVWUDFkbVdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy81NjBhYzYtMTk0Zi00YjFiLWI1YWMt
ZmQ4N2I3MzM1OTU1LzEvbGk2OG9xdGlHT0h4cmdhSHd4UkVWUDFkbVdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy81NjBhYzYtMTk0Zi00YjFiLWI1YWMtZmQ4N2I3MzM1OTU1
LzEvbGk2OG9xdGlHT0h4cmdhSHd4UkVWUDFkbVdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUsQ2Pkn1
RFkmf9yL0MRNLT5LP8GToxNPRVCPpTIsMhBJZjbCej0Uft5L94OV1Huuo0MdzfXu
26JoFR0TDidAffSJBl/z36mx4iGLHIhS4svreIrOQg0uRR+zCHUTWdrHVAsNXI0z
uUUhnNJ5+jAgUgb1+giacXGNB2j6FpyyDoKX2n4Ge4m/kRtaBut2Ss6G9H/nIwqR
xXJZ8/uPk9dAOJP93Uee8A1K5VgwHnBN3SpDNZFaHl7azWSGSABVqepC5B3rcuLH
+labxR5W+rpie6D8Wyfq7ud4WP9vXHw0Ut4jnYdFBhQLl4Iig/gO7m+OGEAM8jnE
7GzEJK0h4KmQ9Q==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:13:31 2025 by rpki-client