Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: jZj6Hor68WGU/Mx1jIb+o9BtDqzblDU0WUasmQJjNh8=
Subject key identifier: BF:DE:CA:3D:9F:65:C1:6A:1E:AF:05:83:0E:70:4E:C7:EE:17:7E:90
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 01992255D7D7E23D2437C262D01C2E13BDCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 13EE
Signing time: Sun 07 Sep 2025 04:01:15 +0000
Manifest this update: Sun 07 Sep 2025 04:01:15 +0000
Manifest next update: Mon 08 Sep 2025 04:01:15 +0000
Files and hashes: 1: cpaYv-AQ-t9zhgKKXsvKBzFcSaQ.roa (hash: QH8X2hDISDdQVFPt9W1N705nATkeCHCrQhlKJMRWx8A=)
2: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: ppzC7qc7DYl/c60kpm2+GQNpQ0/Zxt7RNjqt1Z6YfWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:d7:d7:e2:3d:24:37:c2:62:d0:1c:2e:13:bd:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Sep 7 04:01:15 2025 GMT
Not After : Sep 8 04:01:15 2025 GMT
Subject: CN=bfdeca3d9f65c16a1eaf05830e704ec7ee177e90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:65:5f:cb:50:20:c5:72:ab:a3:fd:18:9a:e1:
82:28:22:4d:ee:f2:6a:ad:c0:95:1c:39:14:2e:ca:
d6:14:a7:a7:c4:2b:7a:22:2e:6f:c3:b1:e9:e4:f4:
e9:3c:a3:7d:4d:f1:08:dd:bc:d6:35:71:a4:ad:05:
0b:4c:71:58:fb:3a:82:8b:cd:fc:bd:96:d0:d0:f4:
08:2e:6a:d7:28:c6:68:5e:c6:d6:1f:9c:87:b8:e4:
8c:d4:a3:94:37:7f:0a:f4:a4:58:12:a1:57:28:04:
5f:43:8c:25:76:fe:82:f5:c2:ca:59:37:23:db:4c:
14:bc:0a:06:38:4a:da:7b:67:00:68:d1:a9:0a:1c:
fc:00:16:f6:8d:61:05:75:4f:70:c1:96:95:a8:ad:
f7:36:62:65:06:6a:55:4f:d2:d1:f4:4f:21:07:e1:
6a:4e:39:53:41:64:1f:47:a4:32:81:43:8b:31:8f:
e9:26:b6:71:a5:18:6a:3f:4e:5a:0b:8d:0d:90:d7:
c2:7e:5c:0e:3e:20:d8:43:6e:04:6c:bd:d5:b4:23:
51:86:a9:0b:20:42:69:e4:47:41:7e:e6:c4:82:e6:
1f:0f:aa:1e:a9:34:4d:79:5d:b6:a0:8a:79:12:89:
6b:ad:ab:34:12:9c:c9:5f:d0:a2:dd:ac:d3:bc:73:
f5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:DE:CA:3D:9F:65:C1:6A:1E:AF:05:83:0E:70:4E:C7:EE:17:7E:90
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:af:d6:4b:58:48:20:e0:cb:12:96:f9:6e:f1:ec:c3:57:86:
55:7e:d4:67:1e:e1:9d:ce:85:0d:57:0e:fb:04:5f:59:e8:e0:
b5:68:d8:2e:7b:51:7f:6b:67:28:06:7c:de:0c:54:15:5c:a0:
ac:26:7f:7b:77:61:7f:c9:fe:5b:8a:3c:ef:80:93:33:28:e0:
ae:c9:03:c1:1e:62:c0:c4:67:71:e1:84:e0:c5:f8:64:d8:43:
98:84:e9:94:02:d5:b4:7a:50:66:bb:a5:97:db:e8:d9:4d:2a:
8e:3a:78:95:f5:8d:f8:7f:94:f6:e7:c9:43:2e:ee:3e:af:8d:
24:b8:c3:73:77:58:b9:0a:54:61:c2:4d:96:75:f9:57:ec:86:
a0:d8:9f:64:01:31:ca:ed:0c:43:52:19:ff:6f:10:21:a6:06:
ad:9f:a8:c0:33:d9:a3:f6:8d:86:1f:ce:31:25:b0:f1:cd:43:
93:db:b6:4c:da:a8:ee:e1:10:00:80:68:a0:ac:32:79:9b:aa:
94:23:41:54:64:73:9d:0c:3c:ca:dc:62:cd:7d:cb:e6:80:1b:
e3:b1:31:b2:1c:e4:32:c5:5e:04:51:46:ec:b3:51:9b:e1:34:
f2:de:8c:ea:d0:4f:a8:c9:d7:ff:b9:84:1d:e5:74:f8:f5:84:
4a:cd:ae:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:20:19 2025 by rpki-client