Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
File: lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft (raw, json)
Hash identifier: LUPDDiTfGMNXAxbPLwEXyQ3cTFN8P9qRUKf5kzR/a6Y=
Subject key identifier: C3:76:2C:93:9A:17:28:3E:29:E0:16:95:95:AC:DE:06:7B:ED:73:F2
Authority key identifier: 96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
Certificate issuer: /CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Certificate serial: 019A1EE3B0122B90E149F159770E6375575B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
Manifest number: 0EAC
Signing time: Sun 26 Oct 2025 05:00:29 +0000
Manifest this update: Sun 26 Oct 2025 05:00:29 +0000
Manifest next update: Mon 27 Oct 2025 05:00:29 +0000
Files and hashes: 1: ew1zgYS28PrRo2_vyICjeeeZzZk.roa (hash: Fhi/oH9QUYxK/iP3UryNP+xQPg6T4wc9jRF/RdGEuMY=)
2: lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl (hash: DmX6bbQy7mHHlHCJFdIFXETmqaJe+pSgEDg2FktSvUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1e:e3:b0:12:2b:90:e1:49:f1:59:77:0e:63:75:57:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Validity
Not Before: Oct 26 05:00:29 2025 GMT
Not After : Oct 27 05:00:29 2025 GMT
Subject: CN=c3762c939a17283e29e0169595acde067bed73f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:85:98:f8:bb:aa:52:1a:da:1e:4b:24:e0:68:
40:a4:8e:33:29:9d:68:f1:38:a3:4a:d7:7c:e8:53:
53:9a:2a:0a:05:e9:4d:f6:94:2f:5e:b4:ea:07:07:
d8:50:14:e4:71:b8:d3:d8:06:50:45:36:86:ee:37:
13:50:03:c2:2b:0c:1b:d1:f2:75:46:1a:dd:95:c2:
37:14:ed:0e:29:23:79:e1:71:f7:8a:b0:d8:9d:6f:
12:65:c3:f2:64:5d:97:4a:41:a9:eb:62:3c:d4:38:
3f:61:60:1b:4c:19:98:7b:5d:d0:61:35:28:1d:a2:
c4:c1:48:16:76:9c:2e:7a:e5:67:40:2b:95:f4:b1:
42:fa:79:59:19:2c:24:20:ee:dc:17:9c:ad:0d:7e:
77:1d:a7:fb:a7:6d:2b:8a:bd:86:ac:31:69:6e:4f:
f4:2f:42:c0:f7:b1:3d:85:78:5e:dc:fb:7d:88:54:
bc:21:18:d6:e9:42:f5:20:b2:64:a3:7b:5a:92:a5:
ac:d5:a5:b7:cd:86:fb:5f:09:1b:a8:b1:08:9a:d5:
aa:e9:4e:d7:1a:13:53:23:79:77:4a:1d:64:be:40:
6b:de:9b:dd:9b:93:15:0c:da:6a:00:b1:ef:f3:e0:
ad:0a:aa:1b:8e:fc:d4:4c:98:56:ae:c1:fc:9b:36:
11:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:76:2C:93:9A:17:28:3E:29:E0:16:95:95:AC:DE:06:7B:ED:73:F2
X509v3 Authority Key Identifier:
keyid:96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:a9:ee:39:6d:c2:6b:6f:40:64:ca:6d:9b:21:64:1d:78:e2:
89:c7:98:cb:0b:4b:0d:4c:dc:56:f1:57:43:92:a8:b8:f5:fd:
2b:6e:f9:b9:41:c8:6e:aa:35:1f:99:53:9a:e9:4e:21:1d:cf:
ca:cb:a1:51:50:76:0a:d6:b7:04:e9:18:c9:bf:4c:0e:58:f8:
4e:ff:4c:f9:fa:84:7c:21:33:1a:48:ba:5c:72:e3:da:d3:72:
8a:94:9b:d9:29:4e:1a:c4:5d:6c:8f:68:33:b0:1b:de:e9:1f:
a8:26:5e:57:c0:f2:ba:1a:4e:5c:6e:bb:3e:39:f3:63:44:6b:
0c:fc:18:09:35:51:12:4e:b5:89:bf:c7:a1:1b:c8:3a:e9:48:
db:74:a9:5f:c1:2b:33:7e:ff:32:c8:61:dc:1b:62:55:45:38:
84:b0:34:02:c3:90:d0:f6:f6:64:97:f7:27:04:63:28:d8:36:
ce:51:28:a0:89:c3:68:5f:e9:d8:c4:05:17:86:6d:b9:0d:5f:
fd:17:3c:04:b2:c0:06:89:91:05:74:87:15:b2:1f:91:2d:ba:
80:b5:4f:ac:51:ba:78:d7:79:a0:ac:19:01:dc:5d:f0:fd:a8:
18:a0:8e:e8:9b:87:f3:20:69:15:f2:c9:d8:80:f2:0d:99:97:
5a:bd:51:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 12:31:15 2025 by rpki-client