
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: +ojcW0g2QrPOEetji0deJ+iy7f6VXSwAi4ijf9zmjWc=
Subject key identifier: AA:B0:FF:EC:32:F5:48:51:BE:A2:62:79:E7:99:2C:C1:43:BC:F3:30
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 0199FAA0B65EF9EE4C374481B087D77315A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 145E
Signing time: Sun 19 Oct 2025 04:01:00 +0000
Manifest this update: Sun 19 Oct 2025 04:01:00 +0000
Manifest next update: Mon 20 Oct 2025 04:01:00 +0000
Files and hashes: 1: cpaYv-AQ-t9zhgKKXsvKBzFcSaQ.roa (hash: QH8X2hDISDdQVFPt9W1N705nATkeCHCrQhlKJMRWx8A=)
2: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: eXx53JTHqX0Y+OttQ0dBY2wXiKnwqk+dk20jXsyDpSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a0:b6:5e:f9:ee:4c:37:44:81:b0:87:d7:73:15:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Oct 19 04:01:00 2025 GMT
Not After : Oct 20 04:01:00 2025 GMT
Subject: CN=aab0ffec32f54851bea26279e7992cc143bcf330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a0:15:6d:86:6f:e5:1a:a0:59:37:16:ec:f7:
4f:81:e2:11:38:ad:91:04:53:e0:cc:b1:49:a9:31:
98:78:f4:6e:c0:43:94:fd:1a:ba:43:83:10:80:4e:
e1:fa:48:89:6a:1a:ce:d2:32:80:3b:82:8c:fe:85:
ce:dc:7b:7e:e0:49:e7:c1:4e:fe:de:de:4e:4f:6a:
f4:92:f3:30:4c:86:91:e1:13:d8:03:b7:6f:f7:89:
fc:8b:14:e0:09:e2:34:52:cd:22:34:10:67:88:ad:
8f:56:d0:15:5f:46:29:f5:6a:4c:62:99:99:6d:44:
cd:7d:0a:44:19:8c:51:b9:23:7a:6c:06:4b:69:01:
db:db:bd:a4:a0:ee:fa:ad:8c:1c:44:0d:16:02:bc:
22:c5:99:84:ed:38:d6:3f:06:62:b1:ae:3c:77:c9:
10:e6:dd:be:6b:39:99:19:18:65:88:c3:aa:9a:a6:
5f:25:1f:49:b9:b2:2a:20:41:a1:93:ec:1e:1c:3d:
4b:53:14:48:78:fa:68:77:73:d3:8e:f3:e2:fd:47:
6c:80:da:7c:39:97:d8:df:20:f4:d0:77:4f:d7:9e:
3a:47:e6:9d:f4:d9:87:d8:27:96:a1:94:49:d8:f4:
9a:9f:c2:17:85:14:01:18:b2:a9:73:a1:f9:b6:a7:
74:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B0:FF:EC:32:F5:48:51:BE:A2:62:79:E7:99:2C:C1:43:BC:F3:30
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:e3:21:b1:d3:e0:bd:c9:8a:36:b6:92:d1:ac:eb:60:ca:fb:
8d:0a:ea:52:e6:fc:f4:ff:3b:9b:e8:0d:d7:75:8f:5a:40:11:
85:f9:7d:57:80:71:41:a0:04:bc:6d:7c:8e:db:73:d5:5f:38:
87:5f:87:ef:41:2f:21:c1:09:15:da:f5:e2:c8:2d:cf:0f:77:
93:ed:e5:d9:f7:6e:47:07:98:2d:f7:98:01:37:a4:b0:15:19:
3a:57:8b:08:5b:ef:7c:26:97:10:28:02:71:29:91:6d:5b:70:
cc:ff:03:eb:b2:cd:87:a7:88:51:08:b7:b7:b7:d1:77:82:e8:
20:d5:1d:45:ce:dc:5d:5a:84:22:f5:93:6c:e5:71:bf:74:01:
2b:66:a9:d9:7f:4e:cc:a2:f6:27:b3:53:78:41:12:c9:e1:c7:
d5:80:7d:be:da:06:09:7b:2c:bc:05:3b:33:f9:ee:14:32:bf:
90:78:cb:3e:7d:85:34:67:e5:3d:13:15:7d:7d:bb:6c:5e:2a:
41:11:3c:3b:b3:67:11:a5:be:7a:f5:75:79:ec:72:36:15:ac:
2e:a6:e5:8d:51:6f:50:6d:ab:ec:3f:9e:7b:79:46:dc:a0:c7:
b5:39:76:88:93:08:5a:d2:b9:af:03:74:f0:40:03:64:d3:cb:
2e:17:85:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:06:07 2025 by rpki-client