Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
File: lUoq7ghhdLAScvrnea1DHrCSrrc.mft (raw, json)
Hash identifier: /zWhG8Na01d22MDmNXeH56iew48Ie70IAtRdVOCu8nM=
Subject key identifier: 24:04:95:72:57:A6:F2:39:D6:9A:F9:1C:E8:DF:9F:20:9F:02:F9:A0
Authority key identifier: 95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7
Certificate issuer: /CN=954a2aee086174b01272fae779ad431eb092aeb7
Certificate serial: 0199FBB35C1917993FC1DC377C71547E100C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
Manifest number: 16ED
Signing time: Sun 19 Oct 2025 09:00:59 +0000
Manifest this update: Sun 19 Oct 2025 09:00:59 +0000
Manifest next update: Mon 20 Oct 2025 09:00:59 +0000
Files and hashes: 1: H3J9vQn6K2WpcdcY5HgOFWtNqro.roa (hash: xKCbCFvdaEaZUoBRTwlz8wWkQD7E1NB3Xk+GOW8NOkg=)
2: LOAmRNgz3AR78bC-CKjKBqCJY3M.roa (hash: xld+cbw2oRdP1v3iddUMoK+GuqeXMoAOXkKfJjjcrk8=)
3: SHnk_yFs5TSkbtqQ5cCS3qWVobY.roa (hash: Ajdz5jpsdOUtu+sq17fM1dWOMUvOtdvwwcm7jylQXUs=)
4: lUoq7ghhdLAScvrnea1DHrCSrrc.crl (hash: OI41s7kl6c2+7Xore9esEpWxToHOTo0sTtX/mkjenqc=)
5: pczhsUKGHELIQkg7tKT9igyRi-A.roa (hash: Y7SOjOUl6Opwe6kgzkQEfHKGoUu9pf1pYRSzuMhv1S4=)
6: zQSqcApOIlR6_yHJBYuZ2ciPt3Q.roa (hash: 5DPAi2kks5u9Bus3Asxn5EjHBrdWHv0pv/j5caKoCFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:b3:5c:19:17:99:3f:c1:dc:37:7c:71:54:7e:10:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=954a2aee086174b01272fae779ad431eb092aeb7
Validity
Not Before: Oct 19 09:00:59 2025 GMT
Not After : Oct 20 09:00:59 2025 GMT
Subject: CN=2404957257a6f239d69af91ce8df9f209f02f9a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cb:21:6f:7b:cb:3e:aa:38:58:e4:dd:10:6f:
f4:97:97:7b:63:56:d9:da:41:b8:d7:b0:6b:75:5a:
95:8b:bb:1d:d6:a4:97:97:06:69:43:85:b8:b4:6f:
a3:60:35:ac:96:77:ee:2c:18:76:f2:b2:2f:62:ea:
77:84:76:b4:3f:a6:68:85:de:3a:0b:b6:4e:52:02:
12:d6:7e:e4:cf:f5:f3:11:cb:0b:b3:93:ef:a1:41:
35:39:9e:0e:b8:6a:2d:1a:27:01:54:10:db:dd:39:
db:05:a6:0d:af:58:f5:a6:ad:2f:25:6c:38:4c:03:
4e:40:e7:ba:1c:d1:62:57:87:6e:11:e4:6c:fb:bb:
e3:f6:7a:05:1d:ed:2f:65:69:fc:41:f8:a1:4e:62:
ab:29:ba:34:50:27:4c:4c:d9:2a:12:8e:da:ae:d4:
d0:99:b7:be:08:a2:29:cf:93:09:0e:92:c0:63:df:
47:e0:0b:41:07:7a:3e:fa:cc:28:41:03:35:89:58:
57:9e:74:98:bc:43:02:21:ef:14:e4:9f:35:72:8a:
fe:6f:e7:82:04:8b:cb:c3:18:dd:96:be:b8:46:7e:
ae:d1:c1:c1:20:25:2e:72:f3:76:05:8d:1c:ef:89:
cc:9c:28:33:8a:67:d6:24:b3:46:f0:67:2a:4f:4f:
83:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:04:95:72:57:A6:F2:39:D6:9A:F9:1C:E8:DF:9F:20:9F:02:F9:A0
X509v3 Authority Key Identifier:
keyid:95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:1a:0c:08:1b:80:4f:ab:12:ef:76:96:fc:77:4a:10:b5:69:
40:b0:3d:81:b3:f1:fd:61:b7:4b:b3:7a:88:5d:40:e4:2b:d2:
05:d7:d6:ab:04:57:93:d4:6b:fd:60:6a:21:53:06:1a:e5:0b:
38:cd:5b:1a:f1:10:c9:87:88:19:c0:56:52:df:57:4e:5e:7b:
60:34:03:be:24:94:5c:66:8d:c5:29:47:49:64:1f:cd:06:8c:
f4:77:e6:91:c3:42:5b:35:7b:c2:9c:cc:0d:21:c8:ee:9c:9f:
bb:bf:0c:6a:fb:f7:b1:5e:61:b1:af:ae:f6:b5:fe:3d:e5:27:
0e:37:be:09:42:9c:88:ec:6d:e6:75:6a:c4:fe:26:6c:54:df:
ff:f4:8b:da:c7:df:6c:a6:1b:70:36:c2:61:98:13:60:6b:1b:
18:af:c7:70:1a:96:ad:9a:bc:6a:0e:f3:b4:aa:c3:d9:cd:47:
bf:c0:5c:98:93:2c:b2:f2:0f:d9:0a:e1:a8:a6:63:5e:e4:7f:
e2:ed:12:ef:c8:f8:b3:6c:07:7c:05:97:97:e5:bc:c6:02:ba:
eb:54:f5:8b:b9:f5:12:28:62:d8:a8:13:10:6f:2b:0a:37:c0:
4f:8e:ec:f6:3d:fe:3f:17:ed:d6:78:e7:cc:1d:e8:1d:5f:a5:
c6:c0:5f:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:34 2025 by rpki-client