Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
File: Cga2XLuXZnq9_5uGGiL50B0dRss.mft (raw, json)
Hash identifier: lu+FnE3zgtig2C3lmzUEe/zh67nJRGeBL6cvFtbIea0=
Subject key identifier: F6:0D:25:FA:53:0D:C9:22:17:46:B3:AD:71:93:3A:68:C5:F9:3C:03
Authority key identifier: 0A:06:B6:5C:BB:97:66:7A:BD:FF:9B:86:1A:22:F9:D0:1D:1D:46:CB
Certificate issuer: /CN=0a06b65cbb97667abdff9b861a22f9d01d1d46cb
Certificate serial: 0199FCC66B81F1683C065C88B09B1AAEBB49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 14:01:25 +0000
Manifest this update: Sun 19 Oct 2025 14:01:25 +0000
Manifest next update: Mon 20 Oct 2025 14:01:25 +0000
Files and hashes: 1: Cga2XLuXZnq9_5uGGiL50B0dRss.crl (hash: 0QtWBQQc2lSinS8XsAmi5OdIQEX6KtbpSWMatgWbnzs=)
2: xnuUEnVXaSzz9cF5USCrsyD97so.roa (hash: j10VBwI4MUaDD8l8nXJ3vdwJpNrClSEXJCQ84BCSTro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:6b:81:f1:68:3c:06:5c:88:b0:9b:1a:ae:bb:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a06b65cbb97667abdff9b861a22f9d01d1d46cb
Validity
Not Before: Oct 19 14:01:25 2025 GMT
Not After : Oct 20 14:01:25 2025 GMT
Subject: CN=f60d25fa530dc9221746b3ad71933a68c5f93c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:72:9d:64:53:88:1e:2f:b2:e1:94:30:2f:02:
10:20:aa:83:ab:20:e2:53:90:eb:0c:a2:6e:37:39:
7c:c2:d9:0d:58:5a:22:3a:e2:90:1d:ad:23:d4:6a:
33:2e:9e:c9:08:47:96:d4:bb:24:ae:83:ed:08:01:
5a:df:11:36:43:44:4a:83:87:b2:ed:82:48:2e:ee:
9c:c7:47:6c:65:56:d9:eb:a3:78:06:18:47:96:8b:
7c:47:91:68:7f:9a:59:7a:6f:85:e5:df:6c:d5:b1:
d0:51:b8:fe:49:35:fd:b9:06:65:cb:67:c3:1b:37:
b7:54:db:49:82:f4:90:6f:98:5c:7f:42:14:19:a3:
42:0c:b4:bb:3f:77:12:9c:b0:32:bb:65:81:b9:1c:
4b:4e:be:dc:31:95:a9:ef:30:50:c1:01:dd:24:ba:
ad:27:4e:b0:fe:6c:ba:ca:93:26:54:14:f1:b1:b7:
e7:4c:21:8b:91:58:52:d9:c9:30:7d:81:c9:ac:48:
ea:c7:70:1c:90:c4:bc:fd:fa:dc:7a:e3:29:a5:f4:
19:68:e1:d3:98:7e:e4:57:25:59:9a:42:2d:ee:95:
e1:25:47:e0:15:18:63:66:f3:e0:92:d3:13:d9:ee:
54:bf:cb:e9:3c:90:3c:79:9b:8e:1e:74:45:e9:98:
39:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:0D:25:FA:53:0D:C9:22:17:46:B3:AD:71:93:3A:68:C5:F9:3C:03
X509v3 Authority Key Identifier:
keyid:0A:06:B6:5C:BB:97:66:7A:BD:FF:9B:86:1A:22:F9:D0:1D:1D:46:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:51:6a:23:89:a7:d3:b6:80:e8:06:85:16:51:7e:8e:6b:bc:
76:6a:66:c7:2e:2f:fb:47:ba:e1:18:39:32:98:b1:44:99:cc:
6a:4d:19:3d:69:41:16:27:7e:84:b6:16:f9:e4:7b:82:8f:c4:
9e:6f:cb:19:7f:66:be:74:f5:9d:44:27:a8:29:49:5b:4e:aa:
22:1e:0c:db:a6:ab:9a:83:74:30:45:67:10:6b:28:33:f1:b2:
86:b3:3d:2f:e0:24:d8:87:70:db:7a:b8:81:0a:96:e8:3d:c8:
63:6b:77:d7:93:36:d3:f3:03:9c:7b:b3:97:db:a9:12:78:2b:
5c:b3:c9:6f:1f:5e:a1:d7:0f:b7:53:3e:d3:e4:71:c3:76:6b:
60:b7:03:9a:de:72:52:6d:e0:42:1a:5a:28:b6:be:d4:c9:bb:
ed:89:19:f8:11:c7:00:7b:d1:4a:98:88:64:a9:7e:fb:9e:ac:
e4:20:dc:26:55:98:3f:5a:28:b9:ee:6c:2a:45:81:48:3f:e9:
0e:54:46:79:be:8b:38:ed:8f:dd:89:6e:6d:58:99:4e:19:d9:
84:ec:fe:e4:3a:b5:9d:9f:1f:5f:91:09:49:96:91:53:35:76:
4b:56:d7:dd:af:3a:8b:ad:16:ba:cf:f3:13:ed:8a:22:75:4f:
26:c6:51:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 19:51:32 2025 by rpki-client