Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
File: rnLkfVZpJJmnJr-ADqg4A2Letr4.mft (raw, json)
Hash identifier: 2SzHjzfAKGShWLs+MwlH6xjSckJOJlDg3uUxOdX7LEc=
Subject key identifier: EF:4E:5D:8B:5B:71:7C:CC:05:FA:BF:33:D9:D0:1F:30:DD:B8:30:68
Authority key identifier: AE:72:E4:7D:56:69:24:99:A7:26:BF:80:0E:A8:38:03:62:DE:B6:BE
Certificate issuer: /CN=ae72e47d56692499a726bf800ea8380362deb6be
Certificate serial: 0199FBEC01E62C97470E901157CBE92E9DCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
Manifest number: 16F2
Signing time: Sun 19 Oct 2025 10:02:52 +0000
Manifest this update: Sun 19 Oct 2025 10:02:52 +0000
Manifest next update: Mon 20 Oct 2025 10:02:52 +0000
Files and hashes: 1: ETv26zxQcsr8JhZ4MeGRkRkjDDY.roa (hash: V/KbOS0vpdDJobu1pDGY/r9sUVjvdSgLOWgc2BMLZzY=)
2: jNjUfwqgx7FxjC22ZM2tNJxUovE.roa (hash: CYjABvddLBiX5OMQlguXfrahjaGdNxRrjgGTFThsYz4=)
3: rnLkfVZpJJmnJr-ADqg4A2Letr4.crl (hash: tRExyV74c3ECDs0mSRU6X8yW7vtczJY4jL234DRAm7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:01:e6:2c:97:47:0e:90:11:57:cb:e9:2e:9d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae72e47d56692499a726bf800ea8380362deb6be
Validity
Not Before: Oct 19 10:02:52 2025 GMT
Not After : Oct 20 10:02:52 2025 GMT
Subject: CN=ef4e5d8b5b717ccc05fabf33d9d01f30ddb83068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4d:4a:d0:8b:22:4c:a3:99:33:70:c4:75:9b:
59:f1:19:7a:d7:b2:e9:88:f0:29:24:95:c4:be:81:
e0:11:e9:2d:86:c9:3b:24:ed:44:13:42:a9:75:25:
cf:fe:cd:93:2a:ce:27:5b:7d:6a:0a:80:4f:f9:fd:
18:37:50:a5:55:6f:a6:96:e4:3f:24:08:8b:8a:a9:
8c:88:83:ed:b4:fa:84:ee:8c:4a:eb:bc:2f:6a:60:
6b:1a:c0:12:a3:40:2d:21:56:53:67:09:c0:08:80:
7d:f0:e2:8a:de:07:71:ea:70:da:0f:d7:46:2a:27:
4b:1d:c1:3d:b7:ed:a0:7b:c4:af:46:c1:5a:79:8e:
42:b9:99:c5:92:2f:9e:e1:b3:0d:c9:b9:9a:5d:e0:
44:4c:d1:b4:60:1c:76:29:f7:a4:8b:ac:6e:3d:e8:
0d:46:5d:dc:97:61:4e:68:9f:09:22:d5:86:e1:d0:
28:f5:15:2f:fe:07:8b:6a:a0:14:f3:10:e4:0e:b0:
00:86:9c:e2:3b:8b:a0:24:fe:a8:7e:8d:04:4a:67:
f6:5f:95:00:21:b3:54:b5:89:c8:50:29:0b:e5:02:
68:48:ad:61:36:0c:f6:78:93:1b:63:b7:de:2e:50:
dc:6b:86:e7:e8:05:f9:7f:4e:46:eb:db:7d:ec:15:
f1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4E:5D:8B:5B:71:7C:CC:05:FA:BF:33:D9:D0:1F:30:DD:B8:30:68
X509v3 Authority Key Identifier:
keyid:AE:72:E4:7D:56:69:24:99:A7:26:BF:80:0E:A8:38:03:62:DE:B6:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:1f:3c:6c:c4:7e:9e:ff:07:0b:0f:c5:09:9d:5e:7f:c6:a6:
28:2b:46:7d:83:57:9b:5b:aa:c7:17:d9:ac:d2:6d:5b:4e:6e:
0b:16:3e:a5:16:de:8e:a4:6c:c0:4f:9a:c9:0d:96:2b:5f:4f:
81:16:30:0d:73:4e:ad:cf:ae:1a:44:c5:6a:22:16:c7:79:14:
c3:d0:da:df:b4:72:9b:41:3a:ca:f0:24:fc:c2:73:23:f8:26:
72:a5:e2:14:68:c1:c6:1b:e8:c0:65:a3:5a:5d:ba:e4:77:c6:
09:f9:a3:8a:ae:12:28:0e:ed:42:db:f0:3b:a0:2c:c2:51:82:
96:ee:64:9b:c7:af:9b:7a:e5:b3:ba:31:c2:5a:f1:67:78:fa:
6d:da:ad:9a:fd:b6:63:82:59:67:69:b6:a1:85:2c:f6:60:c8:
f4:97:3f:35:61:bc:3a:d5:12:d6:9c:b2:49:56:21:5d:9d:fd:
25:fa:81:c8:6f:5e:ef:1d:2c:cf:6c:5e:58:b9:f6:9c:84:95:
e3:22:64:b7:9a:3d:4b:b2:45:8e:28:48:2d:6d:9a:0a:0a:fe:
8b:99:dd:14:c0:24:38:97:19:69:c5:8b:31:6e:53:61:d1:62:
bd:17:51:f9:c3:19:23:91:9c:a8:32:7a:dc:7a:cc:ca:85:67:
a6:73:6a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:37:54 2025 by rpki-client