Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
File: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft (raw, json)
Hash identifier: 5B/7dRuLR4PDWRxmbGy7pvPviCDPoysa9iTmTIHTYmA=
Subject key identifier: 67:6D:CB:83:75:51:00:44:AC:79:7C:DD:12:6A:EB:9C:09:5B:61:24
Authority key identifier: 97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
Certificate issuer: /CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Certificate serial: 0199FEEBAC9D1E17959E054819EF4DE743F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
Manifest number: 10DE
Signing time: Mon 20 Oct 2025 00:01:22 +0000
Manifest this update: Mon 20 Oct 2025 00:01:22 +0000
Manifest next update: Tue 21 Oct 2025 00:01:22 +0000
Files and hashes: 1: 8lcVMAvDHKFVWpkIvW003vZxmno.roa (hash: b9AoL9a4Iwp34m1O6gUmOqwjFvFHDHYDPCqNWBeuTCY=)
2: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl (hash: weaDe6STpUUYyh4PKHoACGgiShTfzYRW5kF+N9vZbgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:ac:9d:1e:17:95:9e:05:48:19:ef:4d:e7:43:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Validity
Not Before: Oct 20 00:01:22 2025 GMT
Not After : Oct 21 00:01:22 2025 GMT
Subject: CN=676dcb8375510044ac797cdd126aeb9c095b6124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d4:52:dc:34:3b:58:c2:f1:c9:be:0e:9f:79:
a3:8b:ec:36:57:9c:54:81:49:a8:14:5a:be:2e:34:
8a:0f:44:d7:3a:f5:e8:62:fd:45:cc:ee:34:17:84:
db:c4:d9:90:6f:a2:90:ca:a6:12:38:b8:2e:23:33:
88:ad:ac:b8:41:ba:0c:49:3e:8d:49:05:d0:3b:99:
a1:33:0a:e3:89:36:94:65:68:0a:32:34:19:86:46:
5a:fb:0e:fd:10:d6:96:ed:b6:96:12:a1:16:13:52:
fe:6c:df:6f:75:1e:c7:3c:93:a2:0d:2b:71:a9:c3:
2e:60:a0:a4:fe:7e:46:7f:bf:23:88:c1:5d:31:34:
ab:74:6e:b4:40:8a:16:96:be:59:db:d4:73:79:5e:
58:77:0c:c3:c2:8e:ed:2f:ec:7c:54:df:2e:e5:c0:
b9:74:30:5f:4d:da:0c:cc:27:8a:fe:13:2e:d6:54:
ae:34:2d:95:11:03:d3:9c:47:09:33:39:d7:7c:0d:
71:0c:61:2b:d5:9d:b5:06:30:26:e2:b0:50:23:c4:
ad:42:f5:4f:a4:6a:44:40:90:a5:45:b3:18:1b:f1:
8c:35:29:cb:50:9f:6c:ec:5a:fd:80:1d:d3:af:9a:
c6:bb:8c:0e:2e:97:39:f6:cc:92:3e:43:ce:eb:f6:
06:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6D:CB:83:75:51:00:44:AC:79:7C:DD:12:6A:EB:9C:09:5B:61:24
X509v3 Authority Key Identifier:
keyid:97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:f7:47:78:a9:44:e8:d8:56:f8:80:e4:39:bb:94:bf:c6:a2:
23:9c:f8:f2:5b:eb:c4:31:9e:fc:71:f2:3c:17:8a:c1:c9:94:
66:4a:8d:a2:d9:bc:74:7f:42:61:a2:7f:74:65:5a:8e:12:ae:
9e:16:07:a2:e5:ec:e9:e0:64:4e:82:19:03:d4:20:8e:d3:3b:
e7:0c:12:7c:62:75:7c:ff:a6:75:7a:c2:82:10:dc:58:e9:9d:
fe:f9:07:ac:0e:33:c2:37:6e:84:d1:26:a4:49:5e:3b:40:59:
df:35:b7:db:c1:41:42:4d:a8:6b:20:aa:81:1f:64:1c:d0:e0:
57:c8:3b:6f:3e:ec:3a:60:5a:d9:a4:37:8a:c6:0a:4a:23:c7:
1d:36:68:c5:44:e0:65:12:98:ce:ce:8d:d7:c5:29:77:59:fe:
63:58:e6:6a:cc:3c:ec:d7:74:ec:0d:c6:3f:e7:76:d4:f1:c9:
d8:34:a6:e2:92:b7:0d:5d:ca:2f:8c:3f:57:c8:b1:7e:a7:36:
06:b4:f9:03:f3:4b:0a:5a:ce:e0:d1:f6:24:35:64:85:3d:1c:
5d:42:5f:7b:49:1f:d6:87:15:60:4f:66:c7:04:eb:5b:d6:de:
00:ee:6f:a4:b9:27:11:e2:19:ec:ea:40:60:47:39:9c:ab:e9:
d8:a0:3b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 07:31:21 2025 by rpki-client