Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
File: lf0DtfNbMXtNMv8aSywXuzdsIeE.mft (raw, json)
Hash identifier: wlGNgnrjriJaLOihARXJ0I2ycY+eDDRHP/ZAZTgJbyU=
Subject key identifier: 4E:23:F6:36:12:17:AE:87:5D:BE:B5:DE:48:5D:F6:94:B3:5D:4A:CB
Authority key identifier: 95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
Certificate issuer: /CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Certificate serial: 019A52D21C5A2DFED25DF03BBBC86F112596
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
Manifest number: 131C
Signing time: Wed 05 Nov 2025 07:01:32 +0000
Manifest this update: Wed 05 Nov 2025 07:01:32 +0000
Manifest next update: Thu 06 Nov 2025 07:01:32 +0000
Files and hashes: 1: LZt4gb-xWjsUFFEJJlr5snAnfj4.roa (hash: iVanuwhOVMx/ABZHooPm82UQY207412XKo2wvn51IRE=)
2: lf0DtfNbMXtNMv8aSywXuzdsIeE.crl (hash: mZtV/k/Z0v6tGmETsOFRUHfIT9CfTrZ3Vnp0EMEFRMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d2:1c:5a:2d:fe:d2:5d:f0:3b:bb:c8:6f:11:25:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Validity
Not Before: Nov 5 07:01:32 2025 GMT
Not After : Nov 6 07:01:32 2025 GMT
Subject: CN=4e23f6361217ae875dbeb5de485df694b35d4acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0e:38:4d:48:10:23:77:5b:32:dc:d2:90:c6:
44:aa:c3:ce:6b:28:44:06:6a:f7:6e:bb:a3:c9:fb:
4b:bf:ce:f4:01:f5:8b:68:59:e4:99:a4:d2:f5:ee:
d0:57:9d:40:79:3b:4a:76:44:0f:c5:cb:9d:67:6a:
28:f6:1d:87:ae:a6:f1:51:28:6b:93:9b:90:79:89:
00:5e:c1:87:ce:5b:54:88:4d:af:11:9e:6b:ed:da:
8a:3b:55:47:a8:de:2e:01:bd:00:9f:05:1b:f0:c4:
11:5a:31:6b:22:c0:ec:20:eb:db:c3:e8:11:ca:4e:
ff:94:1a:0d:12:74:ab:61:37:b4:51:74:ae:f7:01:
e9:9e:71:03:1b:df:76:60:7c:c1:33:83:24:f0:8b:
c9:df:67:93:d0:a4:c4:71:3e:24:94:77:54:92:dd:
e9:2b:80:b6:ce:be:09:35:2c:30:47:5f:d0:52:6e:
90:1f:d2:f4:6c:bb:9a:b2:34:c1:f1:29:3d:a9:a8:
bc:f0:b2:e1:15:a6:e7:ff:5b:99:bb:36:bf:ad:e8:
0b:6d:4f:f7:a8:d7:7a:51:e7:86:72:f3:f7:cc:2e:
1d:05:17:2d:d2:69:fd:33:73:ad:bd:df:a4:e8:23:
40:d0:77:29:24:75:a1:a2:29:19:f0:55:57:4d:43:
8b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:23:F6:36:12:17:AE:87:5D:BE:B5:DE:48:5D:F6:94:B3:5D:4A:CB
X509v3 Authority Key Identifier:
keyid:95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:fe:d5:7f:ae:42:68:82:1a:26:24:c5:ab:1a:7c:91:40:fd:
0d:a3:1f:c8:95:70:8f:83:5e:ca:a2:3e:7f:73:41:6f:d8:f5:
f3:08:3f:45:c5:bc:dd:53:05:86:dc:52:8b:72:de:1f:f2:03:
f1:3c:3f:83:e1:d4:eb:4a:10:b1:73:01:90:0c:4a:1c:b3:6a:
b2:25:c4:97:7b:05:35:ce:6f:52:01:97:cb:d4:0f:c2:27:45:
d1:1a:d5:74:b4:26:f5:8c:11:00:2d:4a:a4:c5:36:35:8b:f5:
15:64:51:62:f9:7e:62:42:03:41:ac:9f:27:4f:88:38:5b:83:
a5:ff:04:c4:40:1b:9f:67:3f:22:fa:6f:d6:bd:45:09:40:aa:
be:9e:82:cd:29:fc:7c:0b:19:64:be:da:f1:f1:a7:e0:de:7f:
59:66:81:9d:e5:4d:29:e4:5f:30:f7:20:39:08:03:e7:07:cb:
92:08:a0:c7:af:c1:51:7b:5d:dc:7e:a0:42:fe:70:43:b8:05:
d6:e5:c5:58:a7:e7:3b:2e:19:e5:49:3b:66:92:89:de:5b:9c:
c4:26:75:45:93:4a:6e:52:f4:0d:ee:d0:79:07:a9:53:e9:58:
9d:b2:a9:8c:7e:6e:a3:48:e0:e6:8f:52:e7:34:dd:6f:17:2e:
43:37:d2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 12:11:06 2025 by rpki-client