Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
File: lefcaIWMBglOD0Moi0hlibSD4_M.mft (raw, json)
Hash identifier: 7IfBVBqRTgAEIgYSJKMqP5rZGHqXHg+cmX7w7HU2lDw=
Subject key identifier: 39:B9:71:01:92:D3:8C:7F:EE:B4:94:87:4E:D1:0E:D7:DF:CB:84:0F
Authority key identifier: 95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
Certificate issuer: /CN=95e7dc68858c06094e0f43288b486589b483e3f3
Certificate serial: 019A71B8A5C3B0A02A52D4EB0054BFAE6438
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
Manifest number: 0E3A
Signing time: Tue 11 Nov 2025 07:01:57 +0000
Manifest this update: Tue 11 Nov 2025 07:01:57 +0000
Manifest next update: Wed 12 Nov 2025 07:01:57 +0000
Files and hashes: 1: lefcaIWMBglOD0Moi0hlibSD4_M.crl (hash: S1anyOejiSko7aVn/XpRMh8Dst36fWGjNjrccpGg9u0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:a5:c3:b0:a0:2a:52:d4:eb:00:54:bf:ae:64:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e7dc68858c06094e0f43288b486589b483e3f3
Validity
Not Before: Nov 11 07:01:57 2025 GMT
Not After : Nov 12 07:01:57 2025 GMT
Subject: CN=39b9710192d38c7feeb494874ed10ed7dfcb840f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:87:34:56:8f:8a:1d:3c:92:34:05:fd:9e:54:
52:a2:e7:98:fe:a0:ea:50:2e:26:f8:7e:7f:51:24:
3e:2b:90:da:23:4f:2a:46:f9:61:a1:ff:ae:da:20:
0b:8c:09:18:af:fc:aa:a4:22:60:b0:82:9a:19:fb:
9c:6e:0c:92:6d:77:10:83:36:07:14:9d:f9:e5:d7:
37:7b:5d:2b:ad:42:5d:be:5f:ca:ef:fb:61:c5:dc:
c6:2f:46:fd:17:c7:0a:fb:0e:33:67:43:26:38:64:
0e:11:fc:30:7d:8e:55:9b:67:e7:e8:01:f0:53:51:
37:24:a2:12:70:00:82:0d:a7:a9:77:bd:0d:90:4e:
3c:c3:17:1e:74:0f:07:69:ef:62:4e:65:d5:ef:09:
f7:f5:9e:7d:12:0a:31:67:8d:a3:05:b7:55:8b:c1:
45:86:47:58:d5:38:90:2b:7d:c0:48:a0:74:11:c5:
d6:da:c3:74:0b:88:c6:69:8f:04:f3:74:04:de:dc:
2b:21:4e:9b:2c:a8:20:5d:22:76:57:70:23:d0:ae:
a9:c9:96:e3:68:97:5e:13:ea:16:44:46:90:69:0b:
84:32:88:eb:29:40:54:13:77:db:74:fb:b6:18:a6:
22:fe:ec:a0:af:85:03:fb:43:f5:96:03:94:cd:5b:
95:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B9:71:01:92:D3:8C:7F:EE:B4:94:87:4E:D1:0E:D7:DF:CB:84:0F
X509v3 Authority Key Identifier:
keyid:95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e9:98:46:d8:dd:1c:fb:63:4b:6d:e2:32:25:20:6b:31:39:6e:
66:2c:0d:e5:6d:d1:09:59:ed:8a:44:44:e6:17:0d:6f:dd:4b:
72:26:cd:f0:c1:19:27:4b:7d:bc:3d:fc:45:f1:52:4f:6c:de:
54:cf:e3:e5:99:3f:df:f6:55:e5:78:09:18:1e:b1:e1:54:ec:
7b:38:2e:23:a7:48:39:7a:e5:30:3d:d5:38:6b:d5:75:24:1f:
da:32:12:6c:75:1e:e7:2e:c1:46:ae:dd:72:cb:1f:38:49:f9:
b8:32:23:49:d4:f8:d2:03:33:55:1e:38:03:0e:21:ef:cd:ff:
27:ef:46:0b:54:9b:c0:71:7e:43:29:ef:29:d1:0c:fb:e8:c0:
1e:98:ca:81:01:7f:33:03:26:7e:63:b8:e4:ba:81:7a:cd:f1:
9f:01:b1:05:f6:95:91:14:7c:3e:5f:f5:df:0f:24:9d:db:4e:
81:1c:cd:97:9f:2f:e5:7f:36:f5:fb:79:23:e1:32:e2:44:90:
37:09:0b:94:42:cc:26:3a:27:ac:55:af:8e:77:63:89:17:43:
4c:c9:3e:95:94:5c:9b:54:d5:fb:9a:fd:8e:22:93:26:de:a0:
4e:35:53:a2:75:15:12:54:98:8a:cf:6f:7d:ba:0d:d0:da:09:
85:47:58:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:53:33 2025 by rpki-client