Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
File: lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft (raw, json)
Hash identifier: nrhLN5hkMkUwYR+o8CtiGdSpjNPpokSRMlo8+kJZptA=
Subject key identifier: 39:B5:11:D1:9C:E6:5D:D6:24:B1:99:EF:AE:A1:92:DC:50:70:56:77
Authority key identifier: 94:F8:BF:9F:30:55:27:52:15:08:69:7E:2E:AA:3B:E1:C7:A1:84:54
Certificate issuer: /CN=94f8bf9f305527521508697e2eaa3be1c7a18454
Certificate serial: 019A5299E58419FB2F5A92E315D7831FFBF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
Manifest number: 019A
Signing time: Wed 05 Nov 2025 06:00:08 +0000
Manifest this update: Wed 05 Nov 2025 06:00:08 +0000
Manifest next update: Thu 06 Nov 2025 06:00:08 +0000
Files and hashes: 1: gpSFuAfs-49fboUul0as1hNOe7s.roa (hash: a1c1k2V4AvypPkcspZ9MdLob1wApcJ4k2MzGZWzvoow=)
2: lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl (hash: +BJMifHZdH5pYoyjW7MwO34BdgOLsLSxKgnbb3QlM/A=)
3: vaMAEqjcMkvH6y-5OvFOz1w_mU4.roa (hash: keZjBn73pIW4PKlhodbog2eBUEbjStbSn55ErmksOpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 06:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:99:e5:84:19:fb:2f:5a:92:e3:15:d7:83:1f:fb:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94f8bf9f305527521508697e2eaa3be1c7a18454
Validity
Not Before: Nov 5 06:00:08 2025 GMT
Not After : Nov 6 06:00:08 2025 GMT
Subject: CN=39b511d19ce65dd624b199efaea192dc50705677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:52:82:0a:89:25:c6:38:d9:1b:a8:b1:71:70:
9e:f2:b3:22:26:17:18:1c:3d:4f:11:cf:91:a2:c3:
3e:2f:0f:19:5f:37:91:10:f1:e9:07:1e:1a:a2:07:
2f:0a:d5:58:e6:26:ab:e0:bd:99:7a:c8:95:db:d5:
8b:6a:a2:51:bd:33:84:ef:ab:6f:b0:9f:94:60:10:
d7:39:4d:3e:b7:06:5e:dc:b5:b3:62:3b:ac:3e:ce:
c0:2c:85:34:47:b3:b3:8a:4e:2f:3a:cd:7c:8d:92:
0e:59:16:53:d4:28:9c:9d:b2:7a:75:99:a8:47:0f:
6f:0a:9f:b6:b4:0e:3e:d6:c6:ed:a8:5f:4b:ff:2f:
c0:48:c2:c3:bc:f7:b5:c9:4d:7c:34:0a:7c:81:e4:
5e:54:69:83:64:4d:4b:27:a6:27:f0:13:4a:4b:9e:
8f:a9:4c:cc:de:f5:fc:42:56:a8:a4:83:e5:65:f6:
34:f9:41:9d:2d:4c:c9:91:a4:aa:91:64:76:42:bd:
b6:ab:81:fe:a6:1d:16:3e:cd:73:40:51:d4:d9:46:
b1:bf:30:ab:dd:01:16:f5:0e:80:1b:38:b8:dd:03:
af:d6:6a:42:81:f8:43:98:79:37:c7:c3:18:64:10:
f0:ec:42:d3:aa:9c:2c:56:fa:53:85:20:a0:6c:ed:
12:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B5:11:D1:9C:E6:5D:D6:24:B1:99:EF:AE:A1:92:DC:50:70:56:77
X509v3 Authority Key Identifier:
keyid:94:F8:BF:9F:30:55:27:52:15:08:69:7E:2E:AA:3B:E1:C7:A1:84:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:57:67:6f:62:56:8f:71:b4:78:b0:1b:d8:11:67:ff:16:d2:
c0:a1:42:f7:b2:d5:b5:0e:b8:4b:60:b7:57:30:a0:77:4e:d1:
c9:33:ca:af:46:d0:5f:fb:70:96:13:ae:7b:22:ea:34:e8:bd:
4a:3c:61:b0:5f:13:46:13:7e:b8:7c:85:f8:21:0b:52:b4:a3:
f2:87:fa:0a:00:55:f1:ef:de:e9:76:28:0d:47:2e:a1:2c:48:
f0:49:a3:5f:c4:41:48:f5:cc:4a:9e:90:2e:ea:d0:50:a8:2e:
60:40:70:a8:d4:05:dc:1a:6f:27:73:dd:f4:9b:6c:a3:ee:d2:
fc:95:1a:00:9a:e5:5e:31:32:f0:b5:a9:58:e4:a7:7f:2d:bd:
87:22:b0:ec:fe:76:cd:cb:65:ab:ce:73:a2:41:10:00:3b:74:
d0:12:a4:e6:2e:82:f8:b8:7c:96:2d:2c:ae:eb:55:2b:db:04:
dd:28:9b:cc:46:ea:08:df:85:02:9f:95:b7:28:87:72:a3:0a:
e1:46:3f:07:f5:60:63:2f:f4:c1:ce:81:12:89:32:03:f4:2a:
19:cd:57:ce:87:da:36:9d:8e:32:89:9c:a4:4e:27:a3:c3:84:
60:8f:1a:ff:2d:28:0d:9d:50:c1:7e:99:ef:7d:c6:d5:80:71:
9e:e6:85:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 14:56:40 2025 by rpki-client