Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: SJs6BCKzM7wJcD3lRMh5SD+uR8Tdtgo8Zf1AovK4Y0I=
Subject key identifier: 6A:09:00:AA:E3:18:B0:9E:50:F9:C3:54:D2:AC:4F:26:80:CB:36:D8
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 019A239BD0215B733295BC68C816129BCC90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0E56
Signing time: Mon 27 Oct 2025 03:00:05 +0000
Manifest this update: Mon 27 Oct 2025 03:00:05 +0000
Manifest next update: Tue 28 Oct 2025 03:00:05 +0000
Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: rof5Mgm4v6xHhdkNlGPN8/lO1IpeS8RguO0DBsO/qSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:9b:d0:21:5b:73:32:95:bc:68:c8:16:12:9b:cc:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Oct 27 03:00:05 2025 GMT
Not After : Oct 28 03:00:05 2025 GMT
Subject: CN=6a0900aae318b09e50f9c354d2ac4f2680cb36d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c7:da:e9:c8:79:f8:ba:41:86:93:db:82:53:
61:18:e4:81:f9:d4:2b:fe:94:b5:3c:86:c9:a5:67:
db:d6:01:1a:69:da:41:43:4d:ce:f7:92:c5:98:75:
ce:16:5a:4b:99:2e:78:85:f8:0e:7a:bc:49:2d:33:
86:7a:53:05:c7:a4:cb:de:8e:26:f3:0d:97:5b:5f:
54:97:05:ad:b8:05:df:26:49:d6:e6:02:5d:d6:13:
98:97:84:87:c3:f8:20:7d:2d:3d:92:2d:2e:ea:ae:
4d:be:f3:c2:1d:2b:1b:82:5e:46:d8:07:4d:96:ed:
cb:40:3a:55:b6:ee:54:cf:96:0c:ef:bd:8a:b1:8d:
02:45:b5:4c:ec:67:79:23:0f:59:26:f8:e5:30:be:
36:ea:24:75:06:73:22:16:c0:1f:b4:02:b2:48:71:
55:ba:76:fc:ff:4f:1e:70:f3:de:ce:8e:b4:a8:0d:
7b:8c:13:d8:da:4e:65:86:eb:91:86:aa:f3:80:71:
a1:a3:68:0a:fe:70:ea:d8:3b:65:5b:25:1a:63:c1:
fc:2b:9f:91:80:fa:8a:91:de:b3:db:38:7e:2d:4d:
bb:48:b0:1e:78:3f:52:52:6a:5c:2a:1a:a6:88:53:
66:8d:29:32:cd:fc:bf:cd:5c:63:4b:ab:05:c3:e4:
b9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:09:00:AA:E3:18:B0:9E:50:F9:C3:54:D2:AC:4F:26:80:CB:36:D8
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:0d:46:69:b0:d0:98:b9:83:e5:1e:89:19:c0:79:8c:77:9f:
6b:3a:bc:66:72:29:d4:b2:4c:0b:33:86:b0:47:73:3e:20:0b:
30:8b:7a:ff:cb:0d:de:1e:63:99:c0:4e:fb:7b:a7:28:41:fa:
3b:12:8f:80:3c:bd:50:c6:10:52:61:ec:d1:08:11:50:c8:ff:
dc:28:a9:f9:9a:08:82:c8:fe:5f:9d:ad:4a:51:48:f0:df:8f:
b8:47:21:b8:a6:b3:c6:40:2c:44:58:ac:53:73:59:76:62:60:
47:73:b8:b2:1a:cb:37:d1:66:8d:80:52:6d:7e:d9:69:c6:8b:
34:d6:99:fb:59:f2:05:40:41:69:e5:06:a0:0d:f3:54:ff:e5:
18:93:d8:7d:d4:4e:92:03:e9:32:60:cd:99:11:84:71:1d:72:
a4:00:f7:1b:ed:ce:e6:ee:cd:0d:42:d9:1b:f9:cf:07:85:98:
07:87:2d:db:51:57:63:b3:70:de:80:64:3f:d0:7b:5a:0c:1d:
0d:10:ab:3d:65:3a:86:68:bf:59:0f:9f:61:e3:12:10:10:d7:
af:f2:69:9b:dc:1b:e8:2d:b0:ba:f8:b1:f4:6c:ab:98:f7:99:
3b:a8:b6:59:94:a3:1e:fa:a4:0c:cf:d0:fa:85:96:4e:f4:eb:
ce:22:cb:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 06:36:49 2025 by rpki-client