Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
File: lf0DtfNbMXtNMv8aSywXuzdsIeE.mft (raw, json)
Hash identifier: /teG1UKjYHjyXRu1m1whMbdCgNUMFFIhFsq/9CjPXts=
Subject key identifier: 20:47:9A:FB:59:BF:85:1D:A9:07:0E:A8:BE:C9:69:1B:8A:55:D9:D1
Authority key identifier: 95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
Certificate issuer: /CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Certificate serial: 019965482485526DD4AB3467899DDE6D778C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
Manifest number: 12A1
Signing time: Sat 20 Sep 2025 04:00:50 +0000
Manifest this update: Sat 20 Sep 2025 04:00:50 +0000
Manifest next update: Sun 21 Sep 2025 04:00:50 +0000
Files and hashes: 1: LZt4gb-xWjsUFFEJJlr5snAnfj4.roa (hash: iVanuwhOVMx/ABZHooPm82UQY207412XKo2wvn51IRE=)
2: lf0DtfNbMXtNMv8aSywXuzdsIeE.crl (hash: b0WJO+qQJEuoqjhAqh8jjvmDV4YPjJYjTTcIeoki4CY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Sep 2025 00:54:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:65:48:24:85:52:6d:d4:ab:34:67:89:9d:de:6d:77:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Validity
Not Before: Sep 20 04:00:50 2025 GMT
Not After : Sep 21 04:00:50 2025 GMT
Subject: CN=20479afb59bf851da9070ea8bec9691b8a55d9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:05:0e:f8:93:b2:47:af:e9:db:8c:b3:31:96:
9c:09:61:1a:f3:ee:81:5f:90:a8:1b:cb:43:5b:20:
b0:19:50:a5:6b:90:76:69:8b:2a:3b:4c:65:62:91:
87:3e:92:6c:ff:8b:8c:a4:74:e2:87:e8:83:50:f8:
c4:75:1b:6c:64:98:0b:45:bd:75:1c:94:ee:fd:90:
25:dd:3e:24:67:63:14:59:3c:6a:0e:0c:a7:3b:0f:
4f:43:3a:c3:b6:b9:6b:45:9c:cc:0c:96:9a:7e:c8:
b7:1c:ef:2c:10:9e:08:88:1a:a7:87:b0:56:23:ac:
cd:e9:a1:0e:6e:5e:e9:53:5d:55:06:3e:9c:a5:e8:
a8:b6:f7:a6:ee:a4:d3:be:e1:9c:bf:89:c9:fa:4a:
0f:08:39:ae:e0:44:6b:d2:61:cf:a1:07:4e:5f:3e:
84:16:fa:b8:82:92:9a:a4:29:d2:66:58:02:d9:34:
a2:b6:17:cf:db:90:d9:87:81:ca:71:15:77:08:63:
c5:31:f3:48:5e:66:bf:1a:47:1e:9f:f1:d1:5f:73:
24:43:81:f9:3c:f5:68:69:9b:0b:be:21:a5:1c:98:
ae:ff:4f:fb:47:34:5f:9d:1c:aa:7e:5a:96:a6:63:
30:61:55:05:6b:0d:59:7c:fc:80:e2:66:c6:de:3d:
6a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:47:9A:FB:59:BF:85:1D:A9:07:0E:A8:BE:C9:69:1B:8A:55:D9:D1
X509v3 Authority Key Identifier:
keyid:95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:ca:7e:cc:e0:5d:be:44:85:96:e8:10:5a:fe:b4:81:f0:05:
51:66:fd:c6:74:30:61:e7:bc:9e:90:25:7f:09:36:bd:35:ac:
49:60:51:e2:cc:b9:ca:8f:c2:5f:74:af:0f:f0:52:9a:4c:d2:
b0:ca:23:01:91:48:8b:b7:4e:aa:69:02:f7:b2:0c:a7:40:d0:
49:97:3d:d8:ea:8b:d1:14:6a:eb:23:6a:e1:ae:e2:d2:67:98:
7b:11:b4:63:08:5a:6f:df:56:96:ae:83:29:e1:79:d0:83:c0:
79:c5:9b:53:c5:56:5d:43:08:2a:64:61:b6:91:64:b9:3c:c5:
8b:86:0c:a6:00:75:7e:7f:bf:d4:68:a5:cc:17:f3:45:ef:ca:
e3:e0:64:85:54:a5:08:e1:67:ca:0b:7d:e8:dd:cd:94:5e:3d:
36:7b:54:28:58:45:d8:f7:ae:59:97:b6:bb:c3:df:93:ed:37:
7c:c8:2d:b2:c0:0f:96:bc:31:0b:7d:be:80:89:3f:95:df:94:
4c:0a:51:1a:21:42:f8:8a:5e:06:49:16:06:f6:8f:89:32:42:
36:14:d3:c0:67:eb:21:55:3b:91:4b:a3:97:3c:29:5f:a5:b9:
8f:7e:bb:ba:95:2e:dd:43:16:fe:ce:47:73:2e:be:bd:e9:19:
a4:9b:f1:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 20 09:10:48 2025 by rpki-client