Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json)
Hash identifier: 5hxG4nzaBiDMa/O4mlIkeFJgf68y8Xt/AWmEjRwB4CA=
Subject key identifier: CF:2D:49:13:F1:A5:FA:54:42:38:79:94:B7:39:A4:84:59:E0:57:4F
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 01991764046EB140DDB07FCC77512CA66398
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
Manifest number: 0AED
Signing time: Fri 05 Sep 2025 01:00:54 +0000
Manifest this update: Fri 05 Sep 2025 01:00:54 +0000
Manifest next update: Sat 06 Sep 2025 01:00:54 +0000
Files and hashes: 1: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: MSFbhRtUOoCnvJBJ4v1orJaUpTZn+PUCmnI0ydSTxNo=)
2: r2nr9uHWjEIdTibij9wAoHFt-FM.roa (hash: 9uPtC9m4AAQGXek/5tdGjDekJKVu5XPicOZ4ymE6WZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:64:04:6e:b1:40:dd:b0:7f:cc:77:51:2c:a6:63:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: Sep 5 01:00:54 2025 GMT
Not After : Sep 6 01:00:54 2025 GMT
Subject: CN=cf2d4913f1a5fa5442387994b739a48459e0574f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b3:9b:6a:0c:75:33:46:94:dd:ca:d4:5d:83:
0d:e0:88:b9:fa:dd:9f:85:59:2d:84:31:2a:a3:87:
f9:fe:da:7f:b0:e1:e0:df:04:74:e1:db:47:80:22:
fa:6c:af:28:4f:66:6a:1e:76:05:8b:32:f8:9f:9b:
39:ae:99:1d:c2:17:d1:f7:94:3c:62:20:9b:8e:71:
80:84:53:2f:da:f7:c0:e6:94:a8:19:27:22:c9:3b:
af:0d:8a:87:8f:c5:25:f3:08:21:e6:d5:47:b7:ae:
9d:c8:ea:77:bb:ca:5a:c0:de:1b:c6:77:d3:fc:cf:
63:39:15:4d:fc:73:04:79:00:48:a6:69:07:68:be:
f3:03:9a:51:bb:02:46:47:01:cd:23:07:c2:3e:b1:
f4:b7:e7:19:0e:4b:1b:a9:54:3e:67:5c:4c:a6:4a:
41:a5:37:b1:61:3d:5d:ec:71:4d:19:a4:13:1e:7e:
79:db:86:e8:26:3b:2b:76:c9:11:7c:b4:28:65:26:
16:4f:cc:cc:ad:7e:91:21:c5:4d:aa:06:c2:e4:21:
f5:1f:0d:26:6d:4b:cc:1c:73:de:66:e1:72:88:61:
d6:80:f5:04:3f:1b:43:9e:4d:cb:02:e1:4d:1c:db:
d9:d8:fa:45:2e:e4:36:45:e3:c2:53:e6:7e:28:42:
24:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:2D:49:13:F1:A5:FA:54:42:38:79:94:B7:39:A4:84:59:E0:57:4F
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:90:3e:c3:e1:43:52:1a:c8:de:fe:bd:64:5d:0d:61:53:dd:
28:82:fb:5a:4b:44:37:6d:31:3d:9e:5c:39:47:fe:be:9d:16:
1a:02:2e:d7:3f:e4:47:6a:1f:7e:9c:cf:e3:36:32:f1:02:84:
85:ea:b7:1e:fc:93:c0:5a:fd:97:80:c2:d1:0f:cc:73:4a:e6:
b0:c7:1f:94:42:19:6e:00:5a:0b:4b:b0:56:e4:f3:20:a7:58:
13:c9:95:58:0d:c7:18:90:5b:a0:bf:c0:c9:60:01:a8:da:72:
52:77:8f:0b:12:65:29:d8:2b:a5:65:31:6a:fc:f8:46:77:a2:
d0:d3:f4:51:a5:62:85:3c:81:42:e2:94:f9:50:bb:e8:7c:3f:
ef:b3:6a:b3:4c:6f:47:e7:47:2e:f5:50:5c:21:b4:56:64:ef:
71:73:c7:e5:3b:df:3e:a3:06:d9:a0:06:63:af:60:b1:fd:22:
f4:4a:c1:89:ac:af:41:eb:8e:d2:06:68:24:e4:96:4d:e3:4d:
72:04:5f:39:b5:2a:13:77:9a:ce:8e:c6:2e:d2:ad:bc:8d:b2:
a9:9d:b1:ad:3a:21:f9:e3:37:d6:7f:5f:c0:0e:cf:ca:ac:23:
27:a8:e4:37:8f:ee:59:d9:11:24:9b:1d:0a:d7:34:7a:f2:b4:
8e:b9:9d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:03:19 2025 by rpki-client