Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
File: _lNCbiNhumZdjyW9PPrvwg69pIg.mft (raw, json)
Hash identifier: BwtZu+F0LyCh+CvrjCXm/S983th/uxFGWHFIOlSmXro=
Subject key identifier: A9:4B:76:D7:6D:D5:B6:05:21:B2:80:A9:95:99:6B:19:64:E0:7F:32
Authority key identifier: FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
Certificate issuer: /CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Certificate serial: 019A4C988F826D27DAE48341C276F4D7EBD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
Manifest number: 141E
Signing time: Tue 04 Nov 2025 02:00:57 +0000
Manifest this update: Tue 04 Nov 2025 02:00:57 +0000
Manifest next update: Wed 05 Nov 2025 02:00:57 +0000
Files and hashes: 1: _lNCbiNhumZdjyW9PPrvwg69pIg.crl (hash: 4lQ5TH51+RYULknal66ZJKu3qDlCJCAsVHJJUwwZBk4=)
2: haHKJrHUqbm5DebtyDYhDiGIt7A.roa (hash: Cz3j+Dv+gBqpFYF7WEnyvYZy+IRYW0vriwmXpF2DtvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 02:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:98:8f:82:6d:27:da:e4:83:41:c2:76:f4:d7:eb:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Validity
Not Before: Nov 4 02:00:57 2025 GMT
Not After : Nov 5 02:00:57 2025 GMT
Subject: CN=a94b76d76dd5b60521b280a995996b1964e07f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fa:94:3b:0b:34:ad:4a:4e:18:c4:80:48:3c:
55:55:53:c0:e2:27:0d:85:6d:10:dd:a2:2b:81:a9:
88:b8:4e:82:b0:11:b4:4e:7b:67:5d:e2:7b:7f:51:
87:cd:51:9f:53:34:2f:86:32:06:c2:d2:e0:bc:d1:
22:49:b8:83:ad:be:bb:79:d1:35:9f:af:16:6d:0d:
8d:a3:98:f3:b7:f5:d7:b4:02:cd:53:24:be:f4:5b:
21:de:04:68:0a:9a:c0:09:15:dc:5e:29:e7:cf:76:
46:09:57:4f:74:aa:9e:77:4c:58:d0:87:c9:c2:8d:
1b:42:2b:ab:3a:5a:ab:5d:07:9f:37:c3:17:dd:ea:
9c:1c:84:b0:17:74:4a:62:84:b1:f5:e0:a0:2c:bf:
cc:a6:18:a6:7b:3c:e4:a3:c2:b2:1d:e2:f2:10:f4:
4c:e7:88:74:17:14:07:54:46:74:43:8d:5c:93:ca:
cb:02:3a:48:82:91:46:08:8a:25:9d:17:b4:0d:75:
ff:bc:13:4e:c1:42:4d:30:3a:ec:3a:e4:0a:04:33:
fb:77:24:a0:7c:8a:ae:00:47:a7:76:cd:c2:3a:d1:
01:96:21:a3:46:4d:96:c8:38:c1:e5:7d:88:60:41:
45:15:65:48:08:7d:69:7a:89:f1:be:b8:c3:c2:7d:
d5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:4B:76:D7:6D:D5:B6:05:21:B2:80:A9:95:99:6B:19:64:E0:7F:32
X509v3 Authority Key Identifier:
keyid:FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:7e:60:b6:7f:55:b4:5a:da:73:bf:0a:a7:61:11:35:cf:26:
f1:2b:a2:e7:e0:60:22:80:a7:0a:15:b7:2e:fc:8d:55:cc:42:
a4:e2:06:2c:e8:26:ef:00:86:5e:5c:c5:fc:36:07:0d:34:de:
e4:e6:c8:67:05:5a:42:6c:6b:89:cb:39:a6:cf:0b:6b:f6:6b:
44:56:db:a2:8e:b5:a7:b8:ee:59:30:83:e1:90:38:49:bd:19:
80:34:ed:e7:a3:ec:39:05:53:f3:5c:e1:2e:03:2c:e8:bb:3c:
df:b7:0d:74:81:0a:53:40:9a:b4:01:7e:52:32:11:48:f3:6d:
55:ab:09:56:cf:2b:51:0d:a1:64:b5:fa:21:25:3c:35:bc:0c:
00:7a:6b:5c:27:40:2c:ba:5b:8f:a7:31:9f:3e:47:32:da:01:
12:5b:b0:cb:d8:9a:dd:93:03:69:47:3e:7d:78:25:3c:1a:f1:
93:b2:b5:7f:a5:b4:85:46:fe:af:b3:3a:98:0e:cd:ed:f2:6c:
77:01:03:e7:b9:24:3d:26:1d:64:19:bb:23:f6:5a:c4:29:a8:
a9:3d:59:81:c4:8d:b8:48:c6:83:e0:cd:a9:92:2f:0c:70:28:
1d:0b:e4:2b:a5:d8:cf:fa:1c:99:50:c3:4d:ac:b8:e3:6e:4a:
c7:f7:2c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:45:22 2025 by rpki-client