Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
File: lJQumzXZGQbREkXXO9WM3Y7KSdE.mft (raw, json)
Hash identifier: Gp1sbSowcgp7mjs3imYkyMkfe/bcyEOn0UH4n7YgZMs=
Subject key identifier: 9C:A6:20:12:15:BE:EC:96:B7:A4:2C:23:49:78:39:A4:9C:44:DA:41
Authority key identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
Certificate issuer: /CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Certificate serial: 019A4EF4AC1172B399F3616C659EBA0A12B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
Manifest number: 1664
Signing time: Tue 04 Nov 2025 13:00:48 +0000
Manifest this update: Tue 04 Nov 2025 13:00:48 +0000
Manifest next update: Wed 05 Nov 2025 13:00:48 +0000
Files and hashes: 1: V6dzQYTukirsU-gqtCUSWtxmwyw.roa (hash: TAhPxTUSZwI4JsrpdkkvjRG18+wELOBapOWsonm/zpw=)
2: lJQumzXZGQbREkXXO9WM3Y7KSdE.crl (hash: KPVy1g4twaIh7FLFkPI+Y8jm8of9F+fXzXkRJsm2XFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:ac:11:72:b3:99:f3:61:6c:65:9e:ba:0a:12:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Validity
Not Before: Nov 4 13:00:48 2025 GMT
Not After : Nov 5 13:00:48 2025 GMT
Subject: CN=9ca6201215beec96b7a42c23497839a49c44da41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f6:1e:73:18:4c:4d:e5:40:76:47:d7:25:cd:
4b:39:98:a3:55:69:13:75:d0:81:51:78:ca:93:6f:
db:7f:b5:c4:b1:ef:08:88:76:2b:29:fc:88:ff:2d:
c5:08:68:c1:c7:3b:74:e0:8f:e3:10:7b:5d:1b:23:
63:f7:f4:20:66:3b:d9:7f:11:dd:c2:e5:37:f5:1b:
df:b1:f1:bc:a3:fc:cb:d5:c8:19:e8:45:75:00:ca:
c5:49:c3:47:a0:61:46:d7:b2:0a:24:bc:bd:9b:c9:
45:4c:23:ca:ef:56:68:8e:14:48:e9:3f:d8:31:b4:
d1:01:50:99:4c:69:eb:7f:ca:95:d6:6a:77:ea:a5:
25:08:5f:6f:2f:c6:23:6a:06:e9:fd:d6:df:7d:5a:
94:9e:f7:4a:ad:c7:fc:9b:62:dd:5a:4b:a4:9c:d6:
3f:d7:22:5d:8e:e5:5e:5d:04:fd:13:ad:bb:b8:55:
d2:eb:76:52:43:d5:86:43:f1:fe:a6:80:49:f8:93:
0a:4f:b1:30:a8:f1:72:d1:dd:29:a9:f6:dd:77:dc:
51:63:72:a7:56:5f:6c:ed:48:42:dc:5b:d3:89:eb:
67:93:bb:64:6a:7b:83:a1:6e:2a:e6:c7:c0:96:dc:
de:a8:c3:c8:d2:14:f0:09:f7:30:ce:1a:f0:8d:58:
b5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A6:20:12:15:BE:EC:96:B7:A4:2C:23:49:78:39:A4:9C:44:DA:41
X509v3 Authority Key Identifier:
keyid:94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:90:67:62:f5:99:8a:da:62:9d:04:00:87:36:46:4f:1c:57:
09:bc:fe:e5:95:67:f9:dd:26:3c:4f:54:af:f8:eb:a7:0c:a8:
fe:03:f2:c4:e7:78:49:4a:a2:f1:73:76:9f:31:db:3b:32:8d:
37:d9:aa:de:4a:c5:65:c9:e4:b6:b4:bf:ca:ff:51:83:13:c9:
67:b9:78:bb:fe:3c:cb:11:2e:ec:8a:92:b5:9e:ba:5a:ad:c5:
ce:a4:ca:2a:61:94:4e:07:96:10:31:2d:c5:c3:e4:f0:21:ba:
cf:71:8b:56:70:91:77:ca:78:0f:a8:0d:3f:9a:01:46:90:de:
2d:c2:48:e6:62:07:4f:39:90:c9:17:d7:86:d9:17:b5:31:4d:
b1:06:48:42:7a:c0:1f:c6:d7:92:bb:f2:b8:0e:6a:44:70:69:
f4:fc:0f:d5:ab:52:87:db:b7:46:8d:de:68:21:44:20:e0:0e:
4f:f9:e8:69:8d:ec:35:99:e8:e5:07:0f:10:af:54:1a:3f:c2:
f9:82:49:b3:dd:f7:7b:43:31:ef:2e:c0:83:68:56:7e:9c:12:
e1:b0:64:c5:c8:b0:7b:09:7d:93:27:e1:cb:1d:d8:17:b2:4c:
02:be:e1:53:37:dc:be:f8:90:ca:d6:af:46:46:58:01:57:b9:
45:2e:75:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:07:51 2025 by rpki-client