Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: TP9j5OC7VjR1iO3QxyK5OUDW9xaKL9QdQ9gF+NoHPrQ=
Subject key identifier: 46:CA:73:6C:FA:A2:A2:E8:49:D1:FE:0B:D1:5B:EF:C9:F0:D0:65:FF
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 019918E4B805D7666531EE78CC6D29EE5AAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 02DB
Signing time: Fri 05 Sep 2025 08:01:06 +0000
Manifest this update: Fri 05 Sep 2025 08:01:06 +0000
Manifest next update: Sat 06 Sep 2025 08:01:06 +0000
Files and hashes: 1: 32WtKH3EfM7-S6v7tTmyQcU-a9s.roa (hash: Fn/80HetfWjEwrwQy2saw9cqkA9VjrY/6O3eDGyjCbw=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: zlzutz0Xo0IvoZTveAojUhpHIa0kX6deFrRFpMfbF4o=)
3: ef1K6dC6_lGn3rxGTHxMT8fcB0w.roa (hash: KYKxli5ZRinkaBImEiWWBBcr8lpZPoWAqbzOeddaU7I=)
4: pLMH0ozDSiYZXzqiHdSEzphkheE.roa (hash: CFbM9K2hMJ4HkUaVbEdJq2H47xHqfonXY2RvABtKsw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 08:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:e4:b8:05:d7:66:65:31:ee:78:cc:6d:29:ee:5a:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Sep 5 08:01:06 2025 GMT
Not After : Sep 6 08:01:06 2025 GMT
Subject: CN=46ca736cfaa2a2e849d1fe0bd15befc9f0d065ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d8:78:ce:e3:b9:38:0c:6a:dc:9c:75:54:dd:
cd:00:36:f7:17:b4:f1:d8:0c:73:c8:97:55:ea:8a:
60:e3:77:0a:1c:b0:be:3e:4d:05:3b:b9:b3:ba:39:
2e:1a:2b:e0:af:75:7e:63:0d:07:3d:5f:55:24:8c:
ad:13:89:a1:fd:97:63:59:af:5f:bd:60:4a:47:23:
7e:0b:cc:71:26:23:6e:57:97:60:de:c5:32:92:7e:
d8:c3:74:dc:be:fd:14:8d:20:40:3f:94:0e:62:bf:
e5:8e:07:89:68:ba:0c:cd:d6:7a:bb:e0:c9:f2:3c:
90:99:2d:84:91:1f:c5:ef:20:71:2c:38:ac:ae:b7:
4d:09:c9:b2:e1:ab:6f:2b:05:bb:6a:cc:64:48:55:
21:34:5a:d5:12:02:8b:64:33:eb:95:ae:9d:bc:7c:
35:a5:7a:87:38:92:f9:34:a7:0c:f7:ab:0c:fc:02:
db:d6:54:0b:12:51:5d:3a:99:6c:4c:bc:b5:e2:ed:
36:3e:fa:1e:54:b0:53:b4:73:5b:01:9e:4d:58:d1:
6d:95:b6:fb:b9:59:3a:d2:d8:72:0e:94:9f:07:18:
e3:e6:a0:6f:96:42:5a:ea:7c:dc:b0:aa:b2:1a:4f:
4a:75:1c:b9:fd:90:2c:92:15:43:0b:85:b9:32:8b:
62:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:CA:73:6C:FA:A2:A2:E8:49:D1:FE:0B:D1:5B:EF:C9:F0:D0:65:FF
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:c9:bb:0f:ad:74:b4:29:a4:0d:77:da:0a:d8:97:62:56:53:
9d:b5:3b:e6:fb:df:21:7c:7b:1c:8c:1c:a9:f8:20:b4:89:1d:
c4:89:18:13:e7:ce:03:30:6e:fe:d4:7e:4f:53:a3:23:98:34:
fb:f3:40:6b:9c:aa:9e:14:58:71:87:e9:d1:19:02:a2:0c:04:
26:79:80:c2:99:83:2f:d7:c6:49:8f:f2:50:73:94:4a:31:39:
c0:2a:a6:23:fc:57:29:b8:b9:d2:5c:0e:62:ee:8a:4c:a6:81:
f0:64:e9:84:2a:14:df:d3:7c:5d:4f:a7:c1:5a:c0:65:ee:ed:
69:c2:0e:00:7c:b1:57:96:b9:85:a1:a5:ee:a5:82:aa:de:70:
2c:d9:9f:47:9c:23:ce:c9:9f:6e:8e:e1:94:d6:59:25:11:90:
78:3f:76:7b:15:c0:79:26:bf:53:48:b6:90:c6:7d:f6:ad:4a:
e2:3d:d7:cb:7c:b9:f4:a4:f8:17:05:42:fe:7a:dd:3c:56:4b:
f3:b5:38:79:ed:93:d1:5f:be:78:d5:74:da:89:fc:db:55:df:
87:1f:cd:56:17:35:8d:88:4a:8e:00:56:13:c4:eb:04:55:98:
94:e4:39:c3:41:2f:fc:b6:47:a3:b0:2b:0d:9f:88:0e:9a:cd:
01:d9:0e:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 10:52:45 2025 by rpki-client