Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: B3NqKme35jSKkeuq174b7LG3z2+56oY73927uqAgHy4=
Subject key identifier: F3:3C:B2:54:79:6A:87:FE:D1:6E:09:1D:EA:1E:B5:C3:78:CB:87:1A
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 0199FB0F22ABD1A67403182EB99A42B51F7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0E41
Signing time: Sun 19 Oct 2025 06:01:37 +0000
Manifest this update: Sun 19 Oct 2025 06:01:37 +0000
Manifest next update: Mon 20 Oct 2025 06:01:37 +0000
Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: L2kTRkqV7WbPYr9pfa6P2V2N0knmA0FZhi6dzYMTmCU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:22:ab:d1:a6:74:03:18:2e:b9:9a:42:b5:1f:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Oct 19 06:01:37 2025 GMT
Not After : Oct 20 06:01:37 2025 GMT
Subject: CN=f33cb254796a87fed16e091dea1eb5c378cb871a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:71:49:f4:92:9c:b5:81:1f:d9:84:f9:03:eb:
ac:51:2e:70:b1:3c:26:c5:20:04:9b:a3:8f:44:3e:
c9:6c:c0:d0:79:fd:84:3d:53:a9:27:5a:c9:44:1d:
c5:75:53:ac:3f:79:87:ad:d8:8e:3d:87:4a:e9:83:
87:2a:86:f3:88:d6:39:08:6b:16:83:21:9f:0e:61:
c5:a8:cb:a8:89:07:dc:fe:17:77:ea:99:fa:67:46:
e8:aa:98:65:b4:99:e4:36:3d:63:0a:6e:3f:b8:8a:
de:eb:46:77:b1:52:d7:42:2a:9b:d7:77:1c:8a:aa:
72:31:23:7b:ec:05:13:a1:ba:77:55:3a:b6:22:a7:
6e:aa:41:a8:4a:ab:1f:7d:a4:39:d0:50:fd:48:60:
00:20:40:6a:51:ba:23:0b:b5:08:f0:33:4e:6a:88:
5b:f4:ab:63:2d:70:4a:37:47:3a:7b:58:2d:17:b5:
c6:dd:72:c8:c5:94:76:cf:35:33:75:54:08:87:ce:
a7:30:7c:e2:af:c4:37:a3:cc:93:0d:59:ff:cd:d9:
81:c3:db:b2:72:f7:1f:87:7d:dc:c0:23:bc:e0:18:
e4:e5:a4:4f:d3:02:21:0e:92:08:25:4b:7b:1f:72:
40:07:67:f7:55:9b:ae:3d:c5:dc:74:53:85:83:9f:
d6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:3C:B2:54:79:6A:87:FE:D1:6E:09:1D:EA:1E:B5:C3:78:CB:87:1A
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:b5:ae:50:18:e5:ec:71:60:30:ec:0e:44:4d:e7:54:19:72:
d1:44:9b:29:e5:d2:10:b7:a6:bf:a1:44:1e:c5:57:0a:55:df:
58:57:92:05:f0:bb:19:0a:e7:5a:31:da:de:3d:9d:5e:bd:de:
af:c1:2b:f0:ba:2b:98:c9:2a:01:da:c6:dc:10:33:13:5b:9c:
2d:83:d9:d2:1a:b9:af:93:32:43:fd:f5:23:4d:a1:83:e8:d4:
e7:c5:ac:d5:34:ba:27:4a:d1:27:40:49:3b:f2:d6:c9:0f:99:
c9:c6:56:79:05:0c:2f:cc:df:cd:c6:b4:25:85:68:99:93:96:
30:67:e7:d6:86:85:29:72:fb:44:fb:73:5e:95:94:7c:bd:92:
14:88:48:3e:18:e4:09:b5:47:64:6d:57:b7:df:b5:66:4c:f8:
48:61:ab:1d:ac:66:5f:d6:8d:e8:5a:1f:d0:65:2f:68:c7:ae:
8a:c3:27:e4:ac:f5:8a:76:ae:ae:3f:79:2d:01:f2:c4:51:85:
bb:bb:69:94:85:44:23:5c:8a:42:94:0d:8b:6b:ee:66:6f:43:
a6:e9:03:89:19:47:78:fb:da:e9:aa:ad:02:bd:58:ab:14:c8:
bb:80:55:8c:01:01:0c:76:ee:9f:b8:7f:25:37:6c:c6:e5:39:
27:e7:75:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:39:59 2025 by rpki-client