Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
File: lRTVqEAEnUQt83dEU5TfcZIBp3M.mft (raw, json)
Hash identifier: 2ebmme+nhGQg0nXZ1xwtIMaqbJgtaCDhBpGALhatKnI=
Subject key identifier: FB:8D:DC:6C:35:30:D4:EF:9C:A4:B6:31:42:9C:D6:26:3A:1B:14:59
Authority key identifier: 95:14:D5:A8:40:04:9D:44:2D:F3:77:44:53:94:DF:71:92:01:A7:73
Certificate issuer: /CN=9514d5a840049d442df377445394df719201a773
Certificate serial: 019A7112E0B683A2E7DA9451FD7D8EA69F16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
Manifest number: 0565
Signing time: Tue 11 Nov 2025 04:00:53 +0000
Manifest this update: Tue 11 Nov 2025 04:00:53 +0000
Manifest next update: Wed 12 Nov 2025 04:00:53 +0000
Files and hashes: 1: h0vy9KP5l8xr8yJ-2ncCcO3rvZU.roa (hash: WW+DmP6TLxBJVPgyfFOFc50eb4JwhFwUi3K7+OUSV3A=)
2: lRTVqEAEnUQt83dEU5TfcZIBp3M.crl (hash: IE+wbmrbM4MgcvZ3xcifCiHSMQl5tcWUbUEicwHpbIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:e0:b6:83:a2:e7:da:94:51:fd:7d:8e:a6:9f:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514d5a840049d442df377445394df719201a773
Validity
Not Before: Nov 11 04:00:53 2025 GMT
Not After : Nov 12 04:00:53 2025 GMT
Subject: CN=fb8ddc6c3530d4ef9ca4b631429cd6263a1b1459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:82:19:b3:87:aa:87:30:c7:09:ca:66:c1:9e:
93:35:79:b9:dd:fb:23:6c:6a:2b:4c:b6:be:2d:e7:
9b:90:09:43:2d:7d:42:67:50:b2:09:77:d9:d0:42:
23:bc:93:04:9f:1e:5e:62:f4:9e:15:2f:fd:06:ff:
04:8c:02:70:80:dc:e6:f5:8a:17:58:09:8e:ed:4d:
3e:5c:43:9b:78:8b:cf:1e:e7:b8:c9:0f:6e:34:2f:
25:e2:2b:2b:97:1c:dd:5f:9d:14:af:50:4e:13:1b:
69:16:c4:c3:35:ab:15:6d:71:a4:70:53:16:9f:0e:
17:23:a0:50:1c:37:cb:06:98:9f:87:17:79:1a:c0:
1e:87:3f:d0:9e:75:28:15:57:d5:84:bc:a5:4b:87:
c8:ac:c6:35:1f:fb:43:aa:66:de:8d:e1:de:ee:94:
30:e4:10:e1:d6:48:0a:da:d3:35:d7:a8:c4:11:7b:
6d:f0:d3:5c:15:6a:63:66:43:26:10:74:61:29:3a:
2c:55:ae:d5:b4:c7:8e:cc:d0:54:f8:0c:12:f8:59:
63:55:6c:4e:aa:95:be:04:66:de:99:e7:b9:e6:32:
c0:6e:f9:b8:99:30:bf:a5:26:0e:f5:01:62:ca:ab:
ed:0f:ea:37:5c:b7:89:40:3f:62:61:9d:a3:0f:8c:
27:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:8D:DC:6C:35:30:D4:EF:9C:A4:B6:31:42:9C:D6:26:3A:1B:14:59
X509v3 Authority Key Identifier:
keyid:95:14:D5:A8:40:04:9D:44:2D:F3:77:44:53:94:DF:71:92:01:A7:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:61:8e:ce:fe:d1:48:b5:4b:c0:85:91:e0:56:01:e8:59:f1:
7a:9a:c8:56:27:ef:41:55:53:96:33:c7:06:7f:9a:90:ee:58:
88:9f:47:fb:70:a4:3d:0e:82:66:57:d2:8c:46:ec:0b:d3:62:
10:58:e5:44:33:e7:00:11:5f:31:75:97:3a:75:6e:e8:bb:84:
cc:b4:94:48:2c:43:5b:28:ca:4c:0a:f7:a7:47:db:eb:6a:59:
20:5a:3f:bb:d1:08:75:f3:92:5a:3f:c0:4f:ae:bc:75:e3:2b:
39:53:96:e0:c8:b7:47:c1:a9:a0:f7:9a:57:eb:ad:55:bc:11:
3e:68:ca:d6:b3:cb:de:81:3b:f6:a4:8c:67:3c:08:b4:d6:82:
63:3c:05:d1:76:f0:af:30:0e:28:ed:df:9c:91:ae:33:55:cf:
e9:46:e8:ce:8a:bc:b3:81:47:ab:0a:8a:1c:40:da:04:62:f9:
80:81:da:03:79:17:53:3d:38:13:bb:67:c0:c8:25:c8:4f:28:
77:9b:a9:5a:29:42:2f:80:1c:8e:bb:1c:33:f7:81:b7:45:cb:
fa:42:ed:89:a4:7c:45:90:2a:73:bf:25:56:53:e7:e4:fd:fa:
da:5d:26:e5:59:a6:7a:6c:bf:f3:13:c2:40:70:22:79:ba:10:
02:dd:bc:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:41:50 2025 by rpki-client