Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: cE6cGSgny/d0+aR9SDuzdlJS2WuS+v0RFCy/Yzbt77g=
Subject key identifier: DD:7B:1D:52:6E:6F:D5:BE:47:93:37:C0:85:BE:63:9E:E4:84:52:35
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 019A71EED777D8A1A2FE3AD91F811B3F7AA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 038E
Signing time: Tue 11 Nov 2025 08:01:09 +0000
Manifest this update: Tue 11 Nov 2025 08:01:09 +0000
Manifest next update: Wed 12 Nov 2025 08:01:09 +0000
Files and hashes: 1: 32WtKH3EfM7-S6v7tTmyQcU-a9s.roa (hash: Fn/80HetfWjEwrwQy2saw9cqkA9VjrY/6O3eDGyjCbw=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: m0veC7LHXiSFKzpg1IG3WiTYmHiIL+Uus/JUz+9cUd0=)
3: ef1K6dC6_lGn3rxGTHxMT8fcB0w.roa (hash: KYKxli5ZRinkaBImEiWWBBcr8lpZPoWAqbzOeddaU7I=)
4: pLMH0ozDSiYZXzqiHdSEzphkheE.roa (hash: CFbM9K2hMJ4HkUaVbEdJq2H47xHqfonXY2RvABtKsw8=)
5: yTZK16Petp2vOn3txInnKgFuPZA.roa (hash: f4X49bz3pXDeDuy49E2fyjRi845LCJEWL2iDzuqzg38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:d7:77:d8:a1:a2:fe:3a:d9:1f:81:1b:3f:7a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Nov 11 08:01:09 2025 GMT
Not After : Nov 12 08:01:09 2025 GMT
Subject: CN=dd7b1d526e6fd5be479337c085be639ee4845235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:06:30:04:71:25:3e:57:0e:3b:d7:74:bb:3d:
35:05:cb:cb:39:95:ab:ff:ee:58:72:dc:d0:30:ee:
e7:e9:22:08:36:cc:06:5b:4e:af:22:93:ca:d0:11:
3c:94:e7:15:30:4f:6f:0d:2f:f7:1e:12:43:e2:cd:
1d:8d:01:08:d7:d8:07:ae:ee:fc:ee:2e:4d:22:9c:
e7:c7:4e:20:98:73:f3:89:8e:a7:61:bb:7d:ba:2d:
cd:47:b1:8e:9e:35:9a:97:29:55:3f:c8:82:ce:f4:
05:52:11:63:15:ed:80:3a:6a:5c:6f:c5:62:15:ee:
6d:a9:56:bc:91:6e:24:c6:1b:a0:32:73:69:da:7f:
fe:f7:25:47:fd:7b:1b:59:eb:dc:35:6b:e8:f1:8c:
7d:bf:14:f4:9f:8d:cc:b2:d3:5e:5a:05:21:12:11:
1b:06:91:2f:d7:1d:58:bc:30:39:6e:64:8e:2c:f6:
75:25:ed:33:17:93:b9:66:48:bc:7b:4f:45:11:1a:
55:89:40:e2:b5:e4:24:f7:2a:8a:2c:d7:e7:23:e2:
30:e6:8b:c7:79:4e:72:cb:4c:18:11:0d:a8:85:0a:
5c:fa:6b:20:75:89:0e:49:5c:24:07:a7:f9:78:8c:
35:dd:ff:1e:21:7f:d1:b5:01:72:df:23:fd:b0:92:
26:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:7B:1D:52:6E:6F:D5:BE:47:93:37:C0:85:BE:63:9E:E4:84:52:35
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:0c:33:fc:b5:17:8e:bb:99:ee:e7:08:43:9d:0d:28:9b:42:
f4:dd:95:07:3c:22:79:81:77:be:51:bc:1b:16:e1:05:ab:2c:
6c:f6:00:95:de:26:d2:d8:90:21:7d:5c:44:0f:11:af:1d:f8:
9e:20:2e:f3:bb:65:1e:ac:6d:c6:79:44:18:a1:b1:64:01:01:
f4:f0:c4:81:a5:f9:d8:2c:83:47:16:34:36:91:11:36:eb:89:
59:24:dd:a5:4f:62:19:64:7d:43:20:37:32:49:ca:40:f8:52:
62:16:e3:2b:df:fe:2d:84:0f:5b:c2:98:69:20:71:28:ce:f8:
ba:ca:a5:08:13:d8:5c:65:de:ae:a3:82:d8:3f:a5:e2:89:73:
4c:0d:98:e9:bd:2f:6b:20:32:7e:14:8d:bd:64:bd:fa:a6:e5:
88:e2:40:eb:a3:61:79:22:01:d2:20:69:3e:7d:16:f4:d6:f5:
88:26:bd:4b:61:ea:3b:bc:13:0e:96:17:c1:ec:69:eb:62:03:
f6:71:3d:47:2e:b6:74:af:5e:dc:9a:5a:cc:e8:e8:9f:db:77:
4e:17:35:37:3d:b8:5d:72:d5:54:ed:b7:34:0d:3c:f9:ef:95:
1a:98:ca:85:9b:a7:b0:c0:e8:7b:a4:42:a0:d0:16:67:23:62:
7b:1d:a3:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:54:07 2025 by rpki-client