Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
File: 0luQuJgbWR11p-k14TBKdAdWAv0.mft (raw, json)
Hash identifier: XKX4TaeVfos5JaxwWiuUQ9jV5wiLHPOdrL5b037xlrY=
Subject key identifier: 94:C5:8B:14:0F:39:A9:4E:9E:17:73:5F:ED:4B:80:C8:29:0A:14:FE
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 019A4DE23E222AAA58BABC1C5247878AA257
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
Manifest number: 15E6
Signing time: Tue 04 Nov 2025 08:01:03 +0000
Manifest this update: Tue 04 Nov 2025 08:01:03 +0000
Manifest next update: Wed 05 Nov 2025 08:01:03 +0000
Files and hashes: 1: 0luQuJgbWR11p-k14TBKdAdWAv0.crl (hash: OMttCqYhp+4SfZQ9Gb3/cXhAlbeY7HfDPvIPwna4hnE=)
2: n6mO0jwfMCGtBTJz4z0BBFhaaaw.roa (hash: depvn6FAlXY00NO5eAYz1KXbUInLhBp+Jz+PGCqafeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e2:3e:22:2a:aa:58:ba:bc:1c:52:47:87:8a:a2:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Nov 4 08:01:03 2025 GMT
Not After : Nov 5 08:01:03 2025 GMT
Subject: CN=94c58b140f39a94e9e17735fed4b80c8290a14fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6a:69:1f:d2:af:3e:40:c8:5a:3f:a2:0a:32:
ca:aa:6b:83:ea:f2:d5:54:d2:31:4c:8b:6b:ee:ee:
c5:ee:e8:11:1d:d9:a5:22:1f:f1:88:17:93:38:e2:
22:65:07:84:39:9a:91:85:ee:07:02:45:2a:30:d7:
d6:24:1d:2a:25:b9:89:7c:b0:bb:45:56:75:7c:0b:
c0:91:7b:b0:97:34:03:07:75:66:5f:c6:38:d0:c9:
4a:fc:28:96:41:66:3f:77:f4:24:87:31:69:35:04:
fa:e2:6d:63:68:8f:0e:d4:2d:74:9e:4a:a4:bd:c7:
d3:28:39:a6:f0:a9:5d:a5:e0:a4:d9:60:46:0d:bf:
ad:d6:88:cb:18:e3:cb:fb:3f:27:b9:f7:c2:e5:53:
ef:90:7e:e8:d6:76:01:34:ee:ba:27:1e:2b:6d:7c:
fe:05:ed:65:03:ca:77:60:81:14:c8:42:69:48:b8:
75:17:28:8d:ef:02:41:eb:48:76:45:07:69:97:ad:
42:21:33:22:5e:2f:53:b8:62:51:c8:d2:79:3e:92:
7d:95:58:8d:07:4d:2f:f5:55:66:26:e2:cc:c4:dd:
99:e5:c2:ac:a8:78:70:21:f2:a7:e7:aa:94:d0:eb:
47:05:3d:d5:5b:1d:1a:5d:a3:3a:55:7e:94:96:3d:
a9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C5:8B:14:0F:39:A9:4E:9E:17:73:5F:ED:4B:80:C8:29:0A:14:FE
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:07:f5:8d:de:c6:93:26:e1:f1:98:cd:ae:c7:79:88:50:ae:
42:9b:98:1e:e6:a1:ca:c6:b3:80:26:c5:55:b5:61:66:db:49:
bd:f9:24:28:0b:b4:fe:b5:8a:ca:6c:76:96:a2:33:da:70:fd:
5b:02:f9:33:70:51:c4:b0:d0:b1:25:4b:70:f4:49:f7:55:7f:
13:16:e4:03:9d:7e:d5:1d:cf:f5:70:94:71:1c:7c:ac:27:e2:
c0:b1:b8:10:c4:c4:e3:7e:e9:39:67:0a:05:c3:35:a5:42:8a:
b2:70:07:90:2e:23:cf:71:9d:ce:ed:77:84:55:4c:c8:54:66:
36:59:5a:74:95:48:7e:0e:98:26:22:35:fc:0e:f0:50:a2:94:
42:06:b1:5f:0d:21:78:be:62:14:92:3a:87:88:c3:60:ac:e7:
e1:70:22:e3:aa:e5:8d:75:bf:7c:ee:a7:8a:a2:e7:e0:91:38:
34:1d:86:fe:34:50:2d:d4:65:5c:77:bf:b5:4c:19:31:5e:fa:
75:69:93:33:7d:cd:b9:f1:bc:ea:38:00:e3:3a:cc:28:9d:fc:
5e:78:3a:3a:d2:a0:0c:04:5f:13:1e:4b:66:f8:7f:70:db:ca:
b2:64:e9:a9:6d:6f:ae:bb:ba:77:f6:5a:87:47:d5:f7:26:fb:
e7:44:0e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:56:47 2025 by rpki-client