Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
File: lQSgmkWW2BV9pp3DNGxavOTOThM.mft (raw, json)
Hash identifier: SHzneGPh/jrlVCb4QnRp5/aVCvbk/zhnC5rqiaD42gs=
Subject key identifier: 90:B5:DF:5A:49:76:34:82:D3:4E:3B:5A:B6:42:18:45:AA:22:7B:B8
Authority key identifier: 95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
Certificate issuer: /CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Certificate serial: 0199FE47600BE5912E222A9C6F857A3C55CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
Manifest number: 0341
Signing time: Sun 19 Oct 2025 21:01:54 +0000
Manifest this update: Sun 19 Oct 2025 21:01:54 +0000
Manifest next update: Mon 20 Oct 2025 21:01:54 +0000
Files and hashes: 1: Pe2NALGIvmCuJSlPZ20SuZ-M9hg.roa (hash: OtaghSGRDvDf2NYLRv+GOjbFhhiw6EZBcNNwCgYOYjA=)
2: lQSgmkWW2BV9pp3DNGxavOTOThM.crl (hash: zIYtMqRkVbs5xRLvBjpL8Cf07JvHeycvB/63Mb/34EU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:60:0b:e5:91:2e:22:2a:9c:6f:85:7a:3c:55:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Validity
Not Before: Oct 19 21:01:54 2025 GMT
Not After : Oct 20 21:01:54 2025 GMT
Subject: CN=90b5df5a49763482d34e3b5ab6421845aa227bb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d0:9b:0c:08:0c:ee:b3:7c:1d:e8:98:a1:b7:
7c:e5:d8:66:06:aa:60:c9:dc:92:68:5d:45:6f:3b:
4c:d5:89:5d:69:91:7e:5e:df:ed:5f:c7:4f:8b:4b:
a3:b6:03:4f:83:86:fc:cf:18:dd:54:69:55:a1:b8:
df:63:b6:81:b0:49:62:2a:72:ea:e5:7d:0d:ca:41:
07:9f:41:78:82:0b:01:bb:15:e4:0e:e0:8c:6a:ff:
b0:b6:2c:32:38:96:69:ec:7b:eb:e0:28:36:a8:0f:
c7:e8:c5:36:3a:d1:27:bd:a9:9e:06:fe:7a:4a:24:
f7:4f:90:b8:4b:d4:d8:1d:63:10:da:b9:18:f1:29:
a0:0e:9f:42:94:59:b9:1a:77:bb:00:47:4a:24:6e:
3e:4d:6f:09:a4:54:1e:f5:b2:79:3c:03:ee:0c:91:
45:4b:ff:c4:8d:16:04:16:09:3e:24:98:e9:2c:7c:
de:fc:28:51:7c:4f:30:a4:66:c2:6e:c6:12:dc:ea:
04:20:a4:94:66:f2:aa:47:6f:7d:fa:bb:f7:95:3b:
71:81:6b:31:ef:12:ee:21:2d:3f:04:8c:40:ec:2c:
1b:d8:20:4b:3f:f9:89:72:87:8b:9f:02:4b:db:d5:
51:ec:aa:e5:e6:ec:a0:2c:e4:35:f3:66:be:3b:dc:
06:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B5:DF:5A:49:76:34:82:D3:4E:3B:5A:B6:42:18:45:AA:22:7B:B8
X509v3 Authority Key Identifier:
keyid:95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:a1:fb:5e:5c:48:9e:f5:e5:23:9f:d3:37:8e:b9:3a:68:28:
4e:66:38:94:25:97:61:a8:fd:43:d0:85:ec:00:1d:32:b0:32:
45:93:b9:22:a8:cf:24:77:51:7e:b1:18:ea:27:1a:15:11:2d:
5e:c0:24:19:fa:69:58:9f:3b:4f:6b:a6:78:8d:2b:a8:71:12:
af:f5:a8:e1:c7:19:2b:25:b4:23:3f:b2:5d:73:ab:a6:b4:27:
67:49:bd:88:2d:86:5c:55:c8:cc:e4:f3:57:0d:5d:34:7a:0c:
c7:76:0e:ea:07:60:d5:eb:d5:cd:17:4f:f5:98:6b:a5:60:85:
5d:85:26:74:ba:d9:cd:b8:ff:1e:32:91:27:dd:30:98:fe:28:
84:4b:f7:e0:11:1b:a4:d1:3e:4a:d9:01:54:d2:da:8e:2b:3a:
6a:b6:67:a2:98:90:10:d9:79:ac:bc:0f:94:e7:3a:fd:01:42:
26:ef:95:32:08:aa:22:18:83:57:32:9d:8d:5c:0c:39:5d:b9:
80:a6:22:39:28:ca:50:d7:8d:d3:1b:7b:1e:7a:1a:03:6f:de:
68:6a:38:10:e1:84:b9:ff:e1:d1:03:21:a0:b2:ee:c3:37:46:
1d:2d:c6:36:46:9e:f4:d7:24:54:9b:d9:2e:04:38:07:18:ae:
5f:82:bf:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:08:22 2025 by rpki-client