Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
File: lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft (raw, json)
Hash identifier: 0XJ3GaiYOIwz03/5rgORbAx6tcD/pK5IvHitOsS0PS8=
Subject key identifier: F6:AF:53:95:E5:93:DE:04:C9:C3:C1:9E:A1:85:25:1C:15:38:C7:3A
Authority key identifier: 94:F8:BF:9F:30:55:27:52:15:08:69:7E:2E:AA:3B:E1:C7:A1:84:54
Certificate issuer: /CN=94f8bf9f305527521508697e2eaa3be1c7a18454
Certificate serial: 019A548859204ECD72FD74B7E1C8CE2F2683
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
Manifest number: 019B
Signing time: Wed 05 Nov 2025 15:00:13 +0000
Manifest this update: Wed 05 Nov 2025 15:00:13 +0000
Manifest next update: Thu 06 Nov 2025 15:00:13 +0000
Files and hashes: 1: gpSFuAfs-49fboUul0as1hNOe7s.roa (hash: a1c1k2V4AvypPkcspZ9MdLob1wApcJ4k2MzGZWzvoow=)
2: lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl (hash: eI4rD5cSmDnUFbDMiBVUUqzSaZFildDMPJUvXtr9hSE=)
3: vaMAEqjcMkvH6y-5OvFOz1w_mU4.roa (hash: keZjBn73pIW4PKlhodbog2eBUEbjStbSn55ErmksOpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:88:59:20:4e:cd:72:fd:74:b7:e1:c8:ce:2f:26:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94f8bf9f305527521508697e2eaa3be1c7a18454
Validity
Not Before: Nov 5 15:00:13 2025 GMT
Not After : Nov 6 15:00:13 2025 GMT
Subject: CN=f6af5395e593de04c9c3c19ea185251c1538c73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9e:6e:2b:6b:2b:7c:e3:5d:66:7b:89:6b:2c:
1d:e6:1f:69:01:84:e5:2b:9e:bb:31:91:30:22:c4:
ab:6b:af:60:e6:88:ae:86:71:2a:a5:46:9b:13:d7:
ae:51:38:fe:9b:90:56:a8:03:97:16:3f:82:1a:2b:
4c:3a:9f:99:76:e8:92:90:4c:a4:72:1b:7d:35:f6:
43:a3:a7:30:0d:b3:dc:f6:9a:c2:4f:36:0a:b1:4f:
a2:c7:bb:c8:79:03:2b:e6:4f:f0:d3:78:b7:c4:f9:
7d:fd:ca:77:f6:15:74:5a:21:e2:85:6c:0e:91:63:
18:9a:c8:25:17:63:60:ac:51:cd:12:7f:0a:5d:2c:
91:c8:90:2f:16:75:4d:71:8e:fd:80:c3:5d:a9:f2:
8a:21:6d:6a:a7:67:e4:70:aa:49:7c:74:00:d6:51:
b1:f9:7e:07:dd:e2:2a:a5:83:ba:22:83:67:8b:53:
29:7d:be:ff:a4:2e:24:ee:df:fd:2e:51:95:5b:1b:
90:82:f7:ed:58:35:8c:64:b8:57:c5:84:0a:9c:f7:
27:3d:6a:cc:4f:39:ff:85:9a:57:78:83:36:b3:94:
a7:7c:6e:ed:3c:cd:26:ba:28:bd:ec:f3:a8:90:79:
f9:0f:99:41:64:c4:ed:45:86:ba:79:6a:c6:8d:d4:
b8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:AF:53:95:E5:93:DE:04:C9:C3:C1:9E:A1:85:25:1C:15:38:C7:3A
X509v3 Authority Key Identifier:
keyid:94:F8:BF:9F:30:55:27:52:15:08:69:7E:2E:AA:3B:E1:C7:A1:84:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:80:b1:3a:8e:dc:7e:ab:df:b2:0f:31:32:49:be:ba:d9:ca:
93:f3:30:68:d3:c0:8d:9f:8f:ee:e7:d9:b7:2e:73:d1:c4:80:
92:32:53:a8:da:77:d8:c3:15:86:db:aa:d8:ea:e1:e4:6f:05:
09:c6:c2:e8:11:3a:b5:61:36:c9:0d:0c:00:bc:0b:78:49:34:
14:47:a2:7d:81:4d:1f:ac:86:1d:ea:d0:c1:30:75:e0:30:3a:
f8:65:32:79:13:a9:1a:6a:c1:b3:1d:5e:fb:f2:11:56:47:3b:
c3:da:76:e9:d9:5f:49:20:d3:10:99:b0:c0:27:f9:8f:f2:42:
bd:c8:4e:74:47:3b:0c:74:0b:45:29:27:b8:89:8f:bb:ab:d9:
8b:1a:84:d7:0f:a5:e3:db:b0:6f:8c:b4:6c:e1:c5:f4:5e:a0:
c8:00:75:4f:12:73:80:6d:26:df:0a:60:b6:96:c8:e4:cb:90:
70:01:b2:31:70:06:10:fe:f2:1a:0c:49:f3:b8:26:c7:46:fa:
31:d0:4f:8e:76:eb:64:0f:b7:95:75:76:ea:da:25:fb:14:11:
1f:6b:11:5e:af:07:46:e5:aa:95:22:18:15:06:ea:51:31:da:
8c:ad:ba:ba:df:bb:8b:99:43:55:7f:3d:c3:6e:7f:19:d2:23:
af:05:8b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 20:48:43 2025 by rpki-client