Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json)
Hash identifier: vD5OeSCD/HXpWtaDIW2aZfbeWIBkazjAkPJrWSjeBeM=
Subject key identifier: C5:FA:00:AB:49:51:2E:4D:C0:57:04:9B:FA:35:25:09:3C:4C:1B:00
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 019A0110CCBC0CC54977F9A90AD020C1C33D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
Manifest number: 0B66
Signing time: Mon 20 Oct 2025 10:01:09 +0000
Manifest this update: Mon 20 Oct 2025 10:01:09 +0000
Manifest next update: Tue 21 Oct 2025 10:01:09 +0000
Files and hashes: 1: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: +cBGN7zD8Ea/InXKZfMBhqYa5CPxvGjWJxQzFD61Ahc=)
2: r2nr9uHWjEIdTibij9wAoHFt-FM.roa (hash: 9uPtC9m4AAQGXek/5tdGjDekJKVu5XPicOZ4ymE6WZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 10:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:10:cc:bc:0c:c5:49:77:f9:a9:0a:d0:20:c1:c3:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: Oct 20 10:01:09 2025 GMT
Not After : Oct 21 10:01:09 2025 GMT
Subject: CN=c5fa00ab49512e4dc057049bfa3525093c4c1b00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:34:b5:77:f0:c8:42:ac:0a:3b:35:64:38:
7c:11:ba:8e:70:51:a4:76:12:7f:5a:92:16:b1:ed:
90:24:4a:29:58:c2:bc:c2:47:56:22:44:07:44:73:
55:d9:44:b7:89:e0:e0:bb:dc:9c:86:6f:cf:02:cf:
ab:a5:72:da:83:9b:91:35:ab:34:7b:f0:08:ba:5b:
c9:af:27:9d:0b:f9:17:dd:dc:72:7c:43:55:a2:bf:
fe:de:d1:49:ce:41:13:79:da:1f:da:81:54:16:61:
af:6e:70:f7:9e:93:c5:58:a5:47:29:4c:3a:4c:aa:
0d:11:43:79:29:13:a7:24:92:9a:1d:01:62:23:1e:
2b:b3:af:d4:8a:a6:4e:ba:0f:6f:3b:a1:8e:12:ca:
69:16:17:e3:d3:0f:d7:ca:02:86:f7:33:72:0f:1e:
77:84:06:20:2e:d3:45:dc:08:76:e4:e0:b8:20:9b:
60:cf:cb:ad:7a:37:1b:e2:1f:cd:01:c4:ec:7a:6d:
9e:14:ef:16:48:26:b7:6e:fc:22:95:a3:5f:b9:de:
25:0e:11:12:ca:b1:f5:06:98:f4:2b:6c:29:2c:81:
68:37:66:8c:96:a6:c9:eb:2a:ed:f5:07:15:82:b5:
21:48:58:45:bb:b3:0a:83:a3:a7:6f:da:bb:35:65:
ac:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:FA:00:AB:49:51:2E:4D:C0:57:04:9B:FA:35:25:09:3C:4C:1B:00
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:3c:70:5d:62:c1:ea:a3:f5:60:79:d2:27:d7:b5:a7:94:55:
90:05:17:73:ac:15:57:e2:68:99:19:95:f5:f9:4b:eb:79:38:
f0:6b:79:2a:be:51:c8:d9:04:c2:f8:7c:df:f2:e5:0d:40:1c:
53:fe:8d:4b:4b:aa:37:a3:f9:b0:ed:03:cf:26:79:a4:f1:24:
f7:cc:20:e2:e3:01:67:25:0c:d9:d9:a0:fb:56:dc:b2:b3:97:
52:55:55:3c:e8:96:47:f5:e5:50:d5:8d:80:2e:a5:0e:4a:4d:
57:4a:a1:c4:71:d1:71:4e:00:d3:fb:fc:70:52:6f:1a:3a:c5:
13:0e:10:3e:7e:3d:1b:fd:89:64:96:cf:6b:61:94:3c:e1:33:
20:a6:5b:ed:e4:7a:69:e9:07:ca:b9:c9:5f:58:66:f7:2a:39:
25:e0:c9:52:b9:8c:21:34:1c:0b:b8:a2:40:2e:ef:48:cb:f4:
60:cb:a5:d3:cb:7d:43:a9:3e:2d:33:9e:f1:4c:d8:49:b5:5c:
50:2c:63:fd:53:9d:5a:eb:6f:2f:fe:1e:a0:62:58:36:a9:d8:
35:27:54:70:3b:cc:de:92:c6:21:31:6f:a3:d4:38:bd:c2:14:
ea:7a:c5:46:5c:ec:21:6a:f5:1a:63:d1:b8:f5:89:56:d1:d5:
66:90:06:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoBEMy8DMVJd/mpCtAgwcM9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MWJiNDkwZTA5ZGYxNDY3ZTRlZWM0M2Q4ZjIwNDg0Y2Vl
ODM5ZmUwHhcNMjUxMDIwMTAwMTA5WhcNMjUxMDIxMTAwMTA5WjAzMTEwLwYDVQQD
EyhjNWZhMDBhYjQ5NTEyZTRkYzA1NzA0OWJmYTM1MjUwOTNjNGMxYjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsMA0tXfwyEKsCjs1ZDh8EbqOcFGk
dhJ/WpIWse2QJEopWMK8wkdWIkQHRHNV2US3ieDgu9ychm/PAs+rpXLag5uRNas0
e/AIulvJryedC/kX3dxyfENVor/+3tFJzkETedof2oFUFmGvbnD3npPFWKVHKUw6
TKoNEUN5KROnJJKaHQFiIx4rs6/UiqZOug9vO6GOEsppFhfj0w/XygKG9zNyDx53
hAYgLtNF3Ah25OC4IJtgz8utejcb4h/NAcTsem2eFO8WSCa3bvwilaNfud4lDhES
yrH1Bpj0K2wpLIFoN2aMlqbJ6yrt9QcVgrUhSFhFu7MKg6Onb9q7NWWspQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMX6AKtJUS5NwFcEm/o1JQk8TBsAMB8GA1UdIwQY
MBaAFJUbtJDgnfFGfk7sQ9jyBITO6Dn+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTct
MWRiNGVkMTMxYmMzLzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTctMWRiNGVkMTMxYmMz
LzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALjxwXWLB
6qP1YHnSJ9e1p5RVkAUXc6wVV+JomRmV9flL63k48Gt5Kr5RyNkEwvh83/LlDUAc
U/6NS0uqN6P5sO0DzyZ5pPEk98wg4uMBZyUM2dmg+1bcsrOXUlVVPOiWR/XlUNWN
gC6lDkpNV0qhxHHRcU4A0/v8cFJvGjrFEw4QPn49G/2JZJbPa2GUPOEzIKZb7eR6
aekHyrnJX1hm9yo5JeDJUrmMITQcC7iiQC7vSMv0YMul08t9Q6k+LTOe8UzYSbVc
UCxj/VOdWutvL/4eoGJYNqnYNSdUcDvM3pLGITFvo9Q4vcIU6nrFRlzsIWr1GmPR
uPWJVtHVZpAGHw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 18:05:07 2025 by rpki-client