Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
File: lJgy8CXL76HqG8oMOQtjwXaUjNI.mft (raw, json)
Hash identifier: w9YAgyTf2HUFuBeWxUQ3CKpJjP+kGjzIVUGzD+ofN1o=
Subject key identifier: 64:92:21:19:7A:2F:96:91:B9:DB:5E:2E:F5:CA:B9:52:77:18:1E:B3
Authority key identifier: 94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
Certificate issuer: /CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Certificate serial: 019A25C152D61D885C4722D151ADB0BD017C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
Manifest number: 0572
Signing time: Mon 27 Oct 2025 13:00:17 +0000
Manifest this update: Mon 27 Oct 2025 13:00:17 +0000
Manifest next update: Tue 28 Oct 2025 13:00:17 +0000
Files and hashes: 1: euJQQHPXaEEafjtTEpsACoT0UO8.roa (hash: LMr9+ppvHgb0CfRsIuadMwP8K1TTGxo74gFD8Bmp2bs=)
2: lJgy8CXL76HqG8oMOQtjwXaUjNI.crl (hash: FdDyE3piMgRrUIjf+tSDjN4krCRatTwLz79IItVleGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:c1:52:d6:1d:88:5c:47:22:d1:51:ad:b0:bd:01:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Validity
Not Before: Oct 27 13:00:17 2025 GMT
Not After : Oct 28 13:00:17 2025 GMT
Subject: CN=649221197a2f9691b9db5e2ef5cab95277181eb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a7:1e:bc:50:51:17:85:4e:a3:9f:6c:d3:c9:
d4:0b:c3:d8:c7:97:a3:34:3e:6e:e3:2b:bf:bd:77:
88:0b:13:85:34:0c:1f:ea:26:a5:5c:3e:29:c4:ba:
6b:d5:bc:14:6d:c8:6f:8e:8f:7c:f8:72:03:ac:f2:
69:5c:79:60:b5:62:9f:1e:04:2b:5a:15:04:7d:3a:
d9:96:18:79:ad:fd:f5:31:55:7a:4a:b3:a6:dc:98:
72:31:40:b3:99:1b:7a:ca:ad:8f:a0:eb:b2:34:44:
66:53:f2:cb:82:3c:f1:01:ea:e5:6e:c9:ef:de:55:
ed:63:6f:79:38:50:bd:2f:50:66:ea:41:65:7b:3b:
42:fa:3c:9f:fa:4d:4e:18:80:bc:5c:95:ce:42:9b:
e0:81:7d:fc:92:a5:30:03:ce:9e:de:08:48:53:77:
ed:0e:7a:3a:51:63:d2:fd:cf:a3:ea:98:a3:a0:2d:
e8:44:3a:dc:15:e3:95:0c:6f:59:05:b0:33:b1:36:
e5:e8:8a:0e:71:fe:98:96:eb:f0:b7:ea:6c:30:73:
8f:7c:b7:57:3b:22:4e:4a:7f:4e:aa:30:60:35:98:
5b:1c:a3:0f:e3:af:13:35:fe:19:d5:73:87:2e:46:
00:2e:7c:ac:92:61:b6:8e:11:26:2b:d7:4d:40:22:
c3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:92:21:19:7A:2F:96:91:B9:DB:5E:2E:F5:CA:B9:52:77:18:1E:B3
X509v3 Authority Key Identifier:
keyid:94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:58:b9:82:ef:81:ca:9a:73:ab:72:7d:cf:8a:69:00:73:96:
eb:f0:86:c6:ca:31:fe:e0:0d:ab:5d:33:8b:b4:31:ec:aa:50:
d4:ab:fc:e1:77:1b:e5:e3:81:8c:c2:3b:65:0d:bf:0b:d1:da:
4c:a0:92:44:53:e9:78:f3:95:d7:14:b4:b5:b7:cc:e3:3d:27:
96:8c:a8:84:53:0d:82:a4:a4:73:bd:bc:90:42:e2:68:5c:fa:
e3:32:f8:34:11:39:05:f7:33:b1:fb:5d:ad:32:29:fd:8a:9f:
3c:f7:66:9a:66:d4:c7:15:93:22:a4:b3:da:4c:e5:14:96:99:
51:8f:07:06:02:c7:46:72:9e:c6:58:c3:07:43:94:fd:b9:61:
2e:a4:79:ea:ae:ac:e0:d5:fd:bd:0e:5a:23:96:53:3b:c0:f0:
61:1b:ca:8a:dc:81:c3:57:03:53:5e:7f:7a:f9:ec:c3:e4:b8:
a9:df:88:2c:48:a5:91:6e:bf:56:29:41:fa:5d:68:db:a5:40:
87:3d:19:df:6d:d3:a7:c0:9d:42:56:c3:7d:d8:9c:d3:a5:eb:
b5:2b:3c:78:42:3e:b3:d2:b8:2f:96:c5:98:05:9d:77:c4:bf:
79:02:8f:41:c6:67:58:83:aa:f8:f6:aa:4d:b8:bb:e8:68:05:
bb:a8:b9:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 20:06:43 2025 by rpki-client