Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json)
Hash identifier: Qz7gJzTdB37dZv3x2Lw8Pzz2qg1Krg72gpBX/AsVFho=
Subject key identifier: FE:E7:A5:97:50:F4:B1:03:48:CD:4C:CB:67:C6:CB:1F:05:CF:F0:2D
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 019A02FEC08DD9438C1E942FE1FF75AEC2F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
Manifest number: 0B67
Signing time: Mon 20 Oct 2025 19:00:41 +0000
Manifest this update: Mon 20 Oct 2025 19:00:41 +0000
Manifest next update: Tue 21 Oct 2025 19:00:41 +0000
Files and hashes: 1: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: x1MXmrZi5WxobaXeEdmrXbzF4C7ElM9T8i2TeIx+P7w=)
2: r2nr9uHWjEIdTibij9wAoHFt-FM.roa (hash: 9uPtC9m4AAQGXek/5tdGjDekJKVu5XPicOZ4ymE6WZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:fe:c0:8d:d9:43:8c:1e:94:2f:e1:ff:75:ae:c2:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: Oct 20 19:00:41 2025 GMT
Not After : Oct 21 19:00:41 2025 GMT
Subject: CN=fee7a59750f4b10348cd4ccb67c6cb1f05cff02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b0:b5:d7:fb:c4:52:8c:36:58:25:89:41:90:
6a:2c:03:5d:e0:f5:c7:45:d9:60:23:e5:6f:ef:f9:
b3:5a:87:80:3c:48:1c:21:cd:79:6e:b9:2f:f7:8d:
01:7c:46:a9:17:04:39:11:cb:c4:5f:7d:1b:26:1e:
a0:a4:e5:b3:4c:cd:de:4f:c7:1d:7d:91:4b:b1:e4:
43:ee:be:b3:3a:d8:09:2c:6b:4b:5f:38:23:88:2c:
be:a8:f5:4b:99:a9:58:8c:6d:9e:c8:17:41:74:06:
b3:ad:ec:91:18:8f:21:ce:46:df:0c:00:0a:2a:c6:
85:9e:18:1f:f4:15:cc:92:c0:52:db:d1:34:ac:28:
bf:96:0f:18:9f:46:2c:cc:e0:0a:f1:6b:21:c6:d0:
20:55:cc:8a:e8:b5:58:74:1f:21:a2:30:ce:c9:ae:
e4:22:2c:7d:dc:89:b7:5e:ab:b9:fb:7c:07:c1:1b:
bd:40:4a:87:30:e0:c3:c5:b4:b5:aa:f1:c4:37:72:
e9:c0:04:1b:b5:f6:02:05:0c:33:f5:c1:ae:cd:51:
9c:9d:ca:c4:4e:70:e2:ac:0b:24:6f:c8:32:0e:3b:
f0:83:0c:65:42:bc:09:46:2b:9d:e9:73:89:72:cf:
fc:d1:ce:23:43:32:a8:ec:ee:92:cd:53:56:b1:42:
d1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E7:A5:97:50:F4:B1:03:48:CD:4C:CB:67:C6:CB:1F:05:CF:F0:2D
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:10:73:82:2e:a0:63:f3:c6:e4:be:23:7b:37:6e:58:f0:da:
8b:71:a4:db:08:6a:21:d0:2d:d3:54:c6:77:7e:22:22:ea:83:
f4:5a:46:69:b1:ad:67:48:92:7f:2b:1d:d9:6f:c3:57:c0:35:
b7:d3:17:a5:1b:20:44:1f:2c:5d:4f:d1:2d:44:f4:90:5f:08:
5b:4f:a6:6b:bf:c9:80:d3:48:e4:65:2f:2c:c5:b8:b6:22:00:
1d:b1:9f:e0:2b:5c:fa:f1:de:80:d7:ee:f8:10:85:cb:3f:75:
32:ce:9a:2c:49:a2:c5:58:d8:53:e6:57:3d:a6:c9:65:a7:cc:
70:22:b2:6b:5c:e3:4d:6a:50:36:9c:0c:5c:b6:7a:52:0d:0b:
d2:cf:c1:0b:59:5d:54:f8:d1:77:78:56:3d:cc:33:cf:ad:54:
b3:18:c6:dd:82:1a:30:99:4d:b0:60:98:e2:31:c5:46:31:9c:
b6:99:4d:e1:b9:d5:d0:86:f0:0a:54:de:e3:ad:9c:08:41:43:
9a:2e:36:ca:e3:22:03:f8:7b:20:95:74:91:c7:45:79:e5:fd:
44:95:c2:e3:00:ca:b8:1b:99:87:c1:58:5d:f0:c9:cd:73:7d:
f1:ff:a2:72:be:9c:e0:bb:5b:23:dc:e5:a4:36:1e:53:0d:72:
11:d6:51:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:34:03 2025 by rpki-client