Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
File: l8AN4AfUqkpAMdR2ELObd0kIv0k.mft (raw, json)
Hash identifier: B89xVo2wIammRWTNH5Oknm2o/xrJlyOAAIPVdh/xEfs=
Subject key identifier: 12:02:3A:33:1F:2F:59:70:0E:5B:A5:DF:5F:5E:9B:61:86:FD:17:81
Authority key identifier: 97:C0:0D:E0:07:D4:AA:4A:40:31:D4:76:10:B3:9B:77:49:08:BF:49
Certificate issuer: /CN=97c00de007d4aa4a4031d47610b39b774908bf49
Certificate serial: 019A50E2BFC279B665D34C223BD6961F4F4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
Manifest number: 02F3
Signing time: Tue 04 Nov 2025 22:00:28 +0000
Manifest this update: Tue 04 Nov 2025 22:00:28 +0000
Manifest next update: Wed 05 Nov 2025 22:00:28 +0000
Files and hashes: 1: 6v3xaZ7YrvMvQdKxxjWwKZ-HZN4.roa (hash: hWUPq5N6t+RwJdEvOikw63sUGiZaD6rAh+UZM/+TLZM=)
2: l8AN4AfUqkpAMdR2ELObd0kIv0k.crl (hash: B+Qk2Jr3Er2pH15OdnO94NOLWdO5E7lC7iVHmeOwJoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e2:bf:c2:79:b6:65:d3:4c:22:3b:d6:96:1f:4f:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97c00de007d4aa4a4031d47610b39b774908bf49
Validity
Not Before: Nov 4 22:00:28 2025 GMT
Not After : Nov 5 22:00:28 2025 GMT
Subject: CN=12023a331f2f59700e5ba5df5f5e9b6186fd1781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bc:1f:1a:e0:05:08:77:60:05:fa:0d:4b:53:
bb:48:2f:a4:ac:f3:52:5a:68:47:1f:0e:fd:64:d5:
7a:1c:58:4e:e9:af:dd:da:64:46:8c:23:78:24:52:
52:2d:a5:73:e9:c7:3a:9c:86:6f:c9:bf:2b:2b:0d:
85:5a:75:bc:be:99:2e:17:9d:da:d9:7d:c0:c6:e6:
72:10:b1:17:4d:66:95:be:cd:f0:40:ed:71:ef:6a:
f8:0d:b8:fc:b4:33:70:fd:71:8f:d4:21:71:b1:15:
09:1e:68:d7:46:30:5f:8d:7a:86:af:d3:7c:03:8f:
7a:c1:fc:5b:ba:01:a0:2b:8e:eb:e7:e1:1b:44:2a:
4c:c1:c9:56:bc:23:40:15:1d:8d:b0:c0:7d:b5:03:
51:b9:70:05:d4:4a:93:74:02:b8:8a:6b:f8:1b:a5:
9e:3a:2d:44:e4:bd:10:16:78:08:e7:38:e1:21:4e:
d4:31:a1:8a:64:fe:96:73:92:12:30:91:b6:a8:1b:
b1:2b:5d:6e:bb:45:22:ba:f9:25:42:d2:9d:e8:50:
98:fd:41:37:12:d0:4a:37:f9:e2:32:fd:6f:c2:4b:
16:cd:5b:95:c1:8a:17:83:f2:1c:72:16:0d:17:9e:
8a:6c:89:48:3d:1c:2e:84:24:bd:bd:74:99:c4:88:
9f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:02:3A:33:1F:2F:59:70:0E:5B:A5:DF:5F:5E:9B:61:86:FD:17:81
X509v3 Authority Key Identifier:
keyid:97:C0:0D:E0:07:D4:AA:4A:40:31:D4:76:10:B3:9B:77:49:08:BF:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:7f:46:2c:d3:bc:22:0d:04:ec:da:c8:8d:84:43:2c:39:d0:
09:7f:21:cf:58:f2:e7:1d:a0:29:66:5a:da:e8:ab:41:a7:1a:
e9:a2:50:03:e6:aa:3c:07:e9:3f:5a:74:23:12:99:40:b9:e8:
85:46:0b:66:72:2f:cb:97:6d:53:fe:79:7a:1b:02:46:42:14:
50:ba:c7:34:83:a0:62:82:28:fd:cd:4a:ff:83:93:6b:61:45:
96:e2:d5:57:84:eb:f7:e0:c6:05:f7:d0:0e:ff:25:b3:e9:64:
0e:fe:19:aa:fc:89:46:23:28:54:9c:9d:77:2c:2e:42:c8:13:
38:13:1e:dd:42:48:f4:88:7c:6c:bc:4e:d9:ad:39:1b:18:2f:
ec:9e:1b:83:76:b3:81:7d:37:a9:bb:41:63:99:2d:93:2b:7e:
fc:a8:d8:30:03:61:92:c0:49:e0:0b:1c:2d:3a:09:37:2f:86:
3c:e5:9f:81:35:68:5d:5d:dc:b7:d9:6e:b8:e4:cd:7f:da:60:
59:1f:5a:66:1d:42:87:a2:32:f6:bc:98:99:e7:da:ad:e8:aa:
59:c8:8e:a8:90:9a:58:e9:50:de:e8:db:cb:2b:7a:5a:55:ae:
d8:76:3b:1e:9c:a7:b5:a7:ef:5e:54:e3:26:8e:7f:cc:e3:fa:
4e:e3:c3:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:52:38 2025 by rpki-client