Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
File: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft (raw, json)
Hash identifier: IEKMb6zV9cuKvITS6QbkHkNZswKddWp8qsLGuTtFYY0=
Subject key identifier: B2:74:0C:20:AE:CD:3B:F7:15:AD:9C:26:C6:73:D9:BD:A4:F8:1D:5C
Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Certificate serial: 0199FD6B034039E6D2AB3E48023ECB3A3FAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
Manifest number: 07CC
Signing time: Sun 19 Oct 2025 17:01:12 +0000
Manifest this update: Sun 19 Oct 2025 17:01:12 +0000
Manifest next update: Mon 20 Oct 2025 17:01:12 +0000
Files and hashes: 1: cCGgeXQG7w7JJ0VVtoCaqK0Nuk0.roa (hash: OWS86sPN3Xs5u+J3GeHiIwJ0UACEogG9zbUxH/qhnWU=)
2: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl (hash: kCLsPc3m9UicNDqUgZrCepppWAhE8wmGay9iXWA1D04=)
3: x4XI86xuT3wsfzGO7m_2JB-s4p4.roa (hash: Dt7gE1TI/UXgmAj9V+d2Jv58edUR433oJyH6DVwQHcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:03:40:39:e6:d2:ab:3e:48:02:3e:cb:3a:3f:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Validity
Not Before: Oct 19 17:01:12 2025 GMT
Not After : Oct 20 17:01:12 2025 GMT
Subject: CN=b2740c20aecd3bf715ad9c26c673d9bda4f81d5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7d:f0:0e:ee:51:58:5d:81:ac:a6:56:ca:6d:
bc:19:2e:eb:b4:53:bb:37:a0:7f:43:dd:39:c8:67:
d2:b4:7a:89:80:25:14:99:f7:d9:ad:55:b8:9a:75:
7f:a3:91:29:89:4a:35:3b:b3:0e:82:b2:8c:6e:65:
1b:6b:7f:8b:f5:cd:3f:35:bc:71:18:d2:06:5a:06:
5f:b2:dd:27:76:fb:3c:ff:12:86:76:59:e0:7e:01:
7e:41:f4:94:48:f9:01:9f:06:5d:69:0b:20:e3:7d:
49:0f:f6:23:df:fe:5c:16:73:1f:d0:16:7b:db:fa:
68:24:9f:10:5c:5e:a0:2b:74:6a:77:a6:e8:08:4a:
5b:7a:c1:95:c1:f9:d0:c3:db:1d:70:33:8b:bb:cc:
ad:8a:87:ef:48:a8:06:50:f7:4d:5d:c7:97:94:ce:
b5:97:dd:25:65:14:ed:7f:95:19:b4:11:9a:10:f4:
11:33:25:f1:7f:40:8b:5a:71:00:41:92:01:0a:21:
69:10:e1:d8:0c:cb:e7:43:9b:11:8d:30:0e:50:a3:
1f:84:cc:a0:5e:26:b0:98:50:1e:20:91:75:1c:0c:
e4:4a:ee:35:48:76:63:f7:de:2e:ef:5b:f6:81:3a:
62:40:6a:9e:78:a4:8a:4b:a8:39:b9:71:65:97:9f:
85:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:74:0C:20:AE:CD:3B:F7:15:AD:9C:26:C6:73:D9:BD:A4:F8:1D:5C
X509v3 Authority Key Identifier:
keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:2a:eb:e9:a4:cc:b6:91:6d:3d:27:d5:87:52:98:6f:13:7a:
00:18:38:a2:29:28:c1:e5:f7:02:00:c6:a3:0a:38:85:50:f8:
08:8f:09:47:49:da:f0:c7:14:45:6c:dc:0c:9a:12:52:09:8e:
53:7d:5a:3e:9c:8b:a5:98:bd:0d:1c:f6:32:fa:28:44:9a:9a:
b6:e7:18:c0:cc:6c:57:2c:a4:1b:e4:67:ae:20:b3:aa:37:62:
69:01:38:fb:04:ce:41:04:59:38:27:bb:1e:0e:d1:d1:6c:82:
0f:f4:18:5a:e4:a7:39:94:a4:f0:cd:32:67:77:8d:a0:b4:05:
0b:0c:94:c7:78:76:7c:f7:6a:a2:0e:21:8e:ae:f8:e6:4b:d0:
f2:c8:0a:06:a1:c2:f4:62:5c:5c:41:47:7c:66:e1:ec:41:75:
86:ee:7c:07:43:90:4f:96:c3:25:39:af:f7:59:6a:b2:6f:42:
2a:ac:33:96:e6:6c:0e:49:11:c5:23:34:d8:1f:94:89:20:3d:
38:28:20:44:05:b9:bd:a1:78:d3:22:68:de:7e:af:81:ef:ee:
3d:a8:93:08:34:87:ef:ae:19:24:22:bd:3f:50:cd:f5:d9:d2:
07:d3:71:da:dd:51:b9:7b:41:03:a7:1b:1c:6f:92:0b:d0:5a:
76:15:02:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:23:47 2025 by rpki-client