Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: RVQVjyVe9LfVA36He7bif7PGHRMjsqECj4POpRfy2YY=
Subject key identifier: 0D:38:07:F1:4B:3A:5E:50:81:FF:C1:D7:5B:4C:DA:22:AA:6F:90:E8
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 019A4BBC5EB6F5F48D70F3A23C81A9115BA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 1488
Signing time: Mon 03 Nov 2025 22:00:27 +0000
Manifest this update: Mon 03 Nov 2025 22:00:27 +0000
Manifest next update: Tue 04 Nov 2025 22:00:27 +0000
Files and hashes: 1: cpaYv-AQ-t9zhgKKXsvKBzFcSaQ.roa (hash: QH8X2hDISDdQVFPt9W1N705nATkeCHCrQhlKJMRWx8A=)
2: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: lelHk9sUsKI89XyApwwe85zpo8Lp2XqSAl1nnhsba3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Nov 2025 20:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4b:bc:5e:b6:f5:f4:8d:70:f3:a2:3c:81:a9:11:5b:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Nov 3 22:00:27 2025 GMT
Not After : Nov 4 22:00:27 2025 GMT
Subject: CN=0d3807f14b3a5e5081ffc1d75b4cda22aa6f90e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cb:bf:34:29:03:70:3d:64:7e:e0:7f:15:33:
d9:97:b8:b3:37:d3:e2:c5:28:45:b9:7c:f5:24:06:
0b:34:c5:ae:56:a8:45:26:ba:b3:3f:6d:42:8a:84:
64:ac:f9:71:77:81:dd:cd:09:69:8e:07:dd:c2:82:
c2:39:0c:6f:0e:8a:55:6d:fd:fb:2c:2e:8b:2d:da:
42:cf:43:d6:d5:50:83:59:98:15:dc:93:72:d8:76:
21:83:9c:32:b8:7b:e6:a6:81:31:8f:9a:cf:7b:e4:
a8:47:62:06:7d:92:ec:24:cf:fa:60:fa:d2:65:d6:
86:cd:60:c5:46:f7:b6:b2:ff:85:8f:c0:4f:87:04:
85:a7:c0:b3:7b:6c:0c:1b:6b:de:f8:f7:30:58:17:
95:25:3a:54:08:14:40:2b:a1:b0:6a:9e:1a:e8:9b:
b4:bb:5b:ba:e4:0d:c4:a0:37:fd:27:40:3f:80:b7:
f0:08:b2:b9:b2:79:d2:ca:50:ff:1f:2a:3c:fa:25:
e2:ff:5e:00:96:94:0a:8b:bf:55:9e:53:54:2b:4b:
98:d2:05:c3:9a:65:45:59:06:8f:c1:1c:40:8e:80:
94:67:3c:79:b7:4b:a2:ed:70:bc:e4:96:d5:24:dc:
69:13:1b:a5:77:3a:60:46:28:b5:87:c3:00:51:dd:
7e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:38:07:F1:4B:3A:5E:50:81:FF:C1:D7:5B:4C:DA:22:AA:6F:90:E8
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:24:0b:7c:0e:2c:f9:1c:c4:bf:4f:74:bf:20:39:ae:a3:64:
0b:e1:4b:e6:55:08:3b:08:7f:c2:a5:3a:0e:9b:07:8c:9d:ce:
79:b3:4b:df:fc:cc:da:8c:19:56:2d:5d:a9:ad:cb:a2:7a:5c:
92:98:60:35:cc:54:4e:f9:48:10:14:ca:af:cd:69:f1:1d:ec:
12:a0:55:97:1e:68:60:34:66:72:ce:23:77:eb:44:f2:34:2e:
ed:eb:60:ff:bc:5b:9e:5b:9f:24:03:e7:fb:9b:a8:35:a0:51:
f3:7d:3e:3a:83:e8:db:7e:3a:a1:4e:64:60:bb:d0:4b:19:5c:
0d:64:f4:c0:b5:1f:2c:43:ae:2f:37:05:ea:ba:81:d0:ef:cf:
de:b2:f5:af:ff:50:fa:b8:37:de:9c:37:d7:d5:06:f3:9a:b1:
d3:3e:8d:3c:a9:8f:be:2c:f2:c1:3b:21:1e:0a:c3:c3:52:26:
bb:40:b1:cb:e2:a0:3c:3f:71:93:23:d4:70:da:08:82:8c:b7:
45:b8:e4:ef:61:23:66:f1:ba:76:17:38:2a:d9:0a:19:d5:a0:
90:82:36:f5:24:e3:18:6b:10:e9:8c:6a:9f:be:9d:ea:c1:31:
af:69:7a:d9:97:39:2f:5f:87:23:77:0f:74:49:7c:37:2a:2b:
08:e3:f4:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 01:33:27 2025 by rpki-client