Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json)
Hash identifier: qb0M9NlOOpLoKIIzyZTHZ8wWYsMJl1F6esnEnvMlAsY=
Subject key identifier: 89:F4:52:BC:B3:0A:E4:EB:4C:6C:79:EB:9D:F2:AB:9E:62:B4:6D:EE
Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066
Certificate serial: 0199FC5911C75F44A634B2AA989E7921CD6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 12:01:59 +0000
Manifest this update: Sun 19 Oct 2025 12:01:59 +0000
Manifest next update: Mon 20 Oct 2025 12:01:59 +0000
Files and hashes: 1: alfL1bRTQjOY-E2KjHP8N4Ulue0.roa (hash: ybSj2AdhAA+9tbRInXwXzkVBfMf3WHllqssGw6/wFUI=)
2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: BaUNuG2LyEmvIhxGKK3M+s4NRoyVHBgllAoVJe8Vmhw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:59:11:c7:5f:44:a6:34:b2:aa:98:9e:79:21:cd:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066
Validity
Not Before: Oct 19 12:01:59 2025 GMT
Not After : Oct 20 12:01:59 2025 GMT
Subject: CN=89f452bcb30ae4eb4c6c79eb9df2ab9e62b46dee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:39:02:16:7f:ea:2c:94:c1:a1:99:1c:e2:21:
fc:23:2d:17:0b:fa:33:3c:fe:b8:36:4f:71:bf:bd:
77:ec:87:bb:81:d6:52:60:d6:0e:eb:42:e4:51:58:
1e:94:ea:99:99:51:87:73:80:70:81:82:dc:13:ab:
12:c8:e3:25:c2:e6:38:1a:1a:f9:a7:b8:30:dd:7c:
c2:f8:1b:42:3d:6c:5f:43:5f:37:ae:de:ad:83:f9:
1d:db:db:3f:a4:58:73:81:cb:35:5f:fc:8a:95:7c:
86:ef:9b:e9:8a:5a:c5:54:c1:72:e9:e5:48:8a:e7:
24:8d:4f:5f:f2:52:19:b7:61:3a:29:a0:1e:da:1c:
2f:bd:81:14:30:b1:5e:02:e0:6b:6d:92:46:ac:0f:
cc:0d:b2:c7:6a:e1:4b:d2:34:65:da:8b:52:67:0b:
f9:42:3b:14:79:ae:19:77:fa:d7:40:05:96:e6:ca:
ad:f6:58:be:4d:bc:60:17:13:9e:01:53:1b:47:53:
56:71:12:09:ae:9b:3d:88:d1:47:03:4b:08:af:c1:
df:c4:59:47:3f:a5:7a:77:e3:2c:ff:80:7c:85:b6:
ee:41:72:19:6d:b3:bb:a4:e9:89:18:46:71:ee:50:
a7:8a:1a:41:c2:22:1f:36:ad:45:cd:79:d9:08:93:
c7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F4:52:BC:B3:0A:E4:EB:4C:6C:79:EB:9D:F2:AB:9E:62:B4:6D:EE
X509v3 Authority Key Identifier:
keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:6c:3a:e8:f3:6e:2c:ae:4d:b2:bb:83:98:cb:85:9e:1a:47:
ef:0a:50:35:27:d4:81:d3:d7:b7:cd:43:97:c8:35:4f:30:14:
23:cb:b0:a2:89:f5:90:76:7f:b0:03:a9:da:c0:64:96:f6:91:
19:f5:3e:6f:16:e5:c3:ae:b4:68:cd:10:76:67:17:fc:1f:b7:
55:d9:76:8f:28:6f:1a:be:19:d5:2c:ae:9a:83:d1:a4:f6:d7:
37:b8:b7:6c:9d:8a:32:73:f9:e3:ee:cc:6e:bf:4d:43:9e:ec:
cd:28:0c:34:44:3e:38:10:f1:3c:3b:58:6b:e2:1b:c7:f4:dc:
8a:25:83:26:01:d3:0e:ef:75:1e:85:58:ef:dc:dd:9a:fc:6b:
37:62:0c:0c:a2:4d:57:ed:60:24:16:34:2f:d4:bc:3b:db:05:
c2:96:65:7b:79:de:aa:5a:f4:0a:e7:9f:9b:6a:54:ff:4a:3a:
1d:c4:12:14:a0:8e:65:c6:0b:df:bc:94:4e:2f:1c:fe:51:94:
5d:e9:f8:ed:5b:e0:09:42:9b:45:13:59:40:0b:ea:30:c1:7b:
44:b6:f7:90:95:de:9f:88:2e:58:5e:78:ad:14:50:6b:f3:e9:
03:db:30:ed:10:48:b3:68:1c:36:57:d3:ff:39:f4:00:61:d7:
9a:48:2d:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:07:17 2025 by rpki-client