Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
File: L45RIlad5SzVCux5NJS_HOfCX8g.mft (raw, json)
Hash identifier: wILkmpN3UQi+pKM3ecnugN/EOmm+rJ2X30RxcniXu8w=
Subject key identifier: F1:35:4D:D1:F6:96:E5:B4:9A:07:63:15:C0:5D:98:A7:95:CE:3C:91
Authority key identifier: 2F:8E:51:22:56:9D:E5:2C:D5:0A:EC:79:34:94:BF:1C:E7:C2:5F:C8
Certificate issuer: /CN=2f8e5122569de52cd50aec793494bf1ce7c25fc8
Certificate serial: 0199228D232FC7DC9BC3B482C71A28A836A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L45RIlad5SzVCux5NJS_HOfCX8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
Manifest number: 0D25
Signing time: Sun 07 Sep 2025 05:01:38 +0000
Manifest this update: Sun 07 Sep 2025 05:01:38 +0000
Manifest next update: Mon 08 Sep 2025 05:01:38 +0000
Files and hashes: 1: 4inp3rmc8abBZrSpYG-9NzczLIs.roa (hash: qFrZA2CrZBITypnTYdQbhEuRjClc/T+Pn0jtn1pc/ok=)
2: L45RIlad5SzVCux5NJS_HOfCX8g.crl (hash: zqETtjsM3M7RoBuTEEE2A7WyFt/yeupjFn11eODspvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
rsync://rpki.ripe.net/repository/DEFAULT/L45RIlad5SzVCux5NJS_HOfCX8g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:23:2f:c7:dc:9b:c3:b4:82:c7:1a:28:a8:36:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8e5122569de52cd50aec793494bf1ce7c25fc8
Validity
Not Before: Sep 7 05:01:38 2025 GMT
Not After : Sep 8 05:01:38 2025 GMT
Subject: CN=f1354dd1f696e5b49a076315c05d98a795ce3c91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ea:8d:55:a0:7d:31:dd:4a:15:f6:36:94:58:
c4:0e:d7:62:ed:eb:93:d2:68:da:20:59:1d:39:22:
3a:c7:15:c3:df:07:b9:ba:73:f0:f6:48:80:45:92:
2e:f7:e2:12:45:06:7d:bf:69:6c:64:62:9e:ed:fe:
3d:a0:9d:27:43:c7:6c:47:90:48:44:86:67:61:e6:
d7:e4:77:e0:80:80:16:e7:a4:cb:f2:bf:c8:88:6c:
c0:01:1d:28:4b:ce:c3:b5:c4:5d:90:fd:14:c6:af:
41:4b:bb:58:d4:62:69:65:6c:bd:f7:35:02:c6:5c:
b6:77:fe:b6:cc:01:46:00:ae:c1:55:11:30:b9:20:
ac:1b:a5:4e:5e:ee:00:10:75:ca:ae:53:5e:6e:2f:
f6:e9:e6:d5:2d:64:28:36:fb:f8:55:46:4d:6c:39:
c2:cf:33:1d:fb:61:bd:66:99:12:43:9d:d3:e3:05:
9f:1a:67:7d:68:82:ef:c9:73:b5:b7:42:36:e0:74:
39:d5:ed:1e:4e:fb:3a:d0:59:b4:7d:48:e2:2a:b9:
ed:ca:0e:b9:b5:04:9e:58:8f:7f:ed:a7:af:e9:6d:
bb:77:f4:ba:29:76:f6:6f:b2:9b:cb:79:9d:dc:05:
fc:ca:39:fe:64:bf:ad:d7:ce:3b:0a:01:5f:6b:ec:
1d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:35:4D:D1:F6:96:E5:B4:9A:07:63:15:C0:5D:98:A7:95:CE:3C:91
X509v3 Authority Key Identifier:
keyid:2F:8E:51:22:56:9D:E5:2C:D5:0A:EC:79:34:94:BF:1C:E7:C2:5F:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L45RIlad5SzVCux5NJS_HOfCX8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:88:e2:9b:35:df:15:2c:72:67:ee:bf:4e:48:00:50:17:e6:
0b:18:73:ac:2b:c6:54:77:6b:6b:3b:6d:50:eb:14:46:6b:e5:
b8:99:8b:ce:f1:3c:66:69:88:e4:07:a5:d5:70:6b:44:fd:e5:
06:1c:f1:7e:c9:66:77:c4:7b:ef:63:d4:41:64:c9:11:c7:4c:
ce:66:27:4c:d8:94:39:e4:7f:59:b5:c7:d5:e2:da:1d:f7:24:
5f:02:09:dc:5c:b1:76:14:0d:c4:5d:4f:e3:e4:95:5e:e4:08:
c6:db:53:c8:7b:2d:2a:45:82:b5:18:10:9d:4b:ce:8c:25:23:
d2:4f:a4:cd:00:4c:2c:2b:f8:70:de:d2:99:33:74:14:01:c5:
cd:ff:d2:46:a7:68:74:e5:ca:99:05:60:5d:c2:89:3b:c2:33:
13:ec:38:b4:6d:4f:c8:be:ef:e3:ab:c8:ef:07:57:3b:1c:72:
67:3e:83:96:11:05:ac:f3:a5:a1:54:52:07:c5:20:3b:a0:3b:
b0:22:f4:4f:e8:78:c8:12:db:dd:18:27:2d:32:64:62:48:83:
c8:09:83:9d:67:87:82:9a:88:92:c0:85:2f:5b:9f:0a:4b:dd:
88:71:e4:ce:2b:bd:d3:c0:cc:f3:32:0f:1b:70:ff:f8:d9:8c:
dc:f6:62:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:42 2025 by rpki-client