Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
File: lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft (raw, json)
Hash identifier: eVVr3grFi5fF5oR02oUN9/UoZWkDhB0Ua7DH8WYTOmc=
Subject key identifier: 7C:BD:D3:FD:A5:72:52:3F:19:A0:E3:F5:2F:44:21:DD:13:D9:25:BD
Authority key identifier: 96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
Certificate issuer: /CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Certificate serial: 0199315A720EA5D1C8384E70A5A7CDF22D9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
Manifest number: 0E31
Signing time: Wed 10 Sep 2025 02:00:34 +0000
Manifest this update: Wed 10 Sep 2025 02:00:34 +0000
Manifest next update: Thu 11 Sep 2025 02:00:34 +0000
Files and hashes: 1: ew1zgYS28PrRo2_vyICjeeeZzZk.roa (hash: Fhi/oH9QUYxK/iP3UryNP+xQPg6T4wc9jRF/RdGEuMY=)
2: lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl (hash: xSmies5Yh55iA2WZ9kMiX82TfzSJQLIsLBacNiz081E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:5a:72:0e:a5:d1:c8:38:4e:70:a5:a7:cd:f2:2d:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Validity
Not Before: Sep 10 02:00:34 2025 GMT
Not After : Sep 11 02:00:34 2025 GMT
Subject: CN=7cbdd3fda572523f19a0e3f52f4421dd13d925bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:32:4b:83:4d:e9:f8:0f:17:b4:b9:03:ef:28:
d5:04:d8:96:a1:68:2c:6c:4b:a0:0f:c8:54:b6:67:
51:42:c2:be:15:24:a4:6a:14:99:db:45:26:e7:36:
90:6d:7c:70:03:39:d9:e8:c8:c7:d5:6f:a9:97:20:
bd:3f:fd:70:69:2e:c8:5d:a5:7c:6b:eb:e0:80:63:
4c:8a:85:c3:db:34:9c:43:36:37:48:2d:38:bd:17:
bc:fe:4f:c1:7f:14:bc:6b:4a:7f:db:46:e7:59:6c:
17:d7:d9:01:cf:5a:91:e7:d7:e2:d7:b0:29:fd:3b:
70:51:89:76:c1:bb:30:d0:63:53:72:03:ec:f1:e1:
5a:a6:74:7f:5c:42:c1:5d:b9:0f:c8:1a:4f:38:16:
d3:57:90:95:2d:28:96:53:78:2a:d4:28:29:5b:41:
9d:54:dd:61:9a:b1:6f:c8:b2:f9:0e:b0:50:a6:4a:
c3:00:4a:40:01:69:d8:9d:6b:3a:2e:aa:f9:c5:08:
0b:33:31:d6:87:2f:da:91:e3:ff:9e:7c:48:aa:b8:
65:4a:9d:06:a3:25:4b:d4:64:80:6d:c4:6c:12:44:
4c:97:da:6b:fb:35:33:b2:35:db:af:0c:05:b6:ac:
3b:fa:ef:fe:4f:eb:c2:33:c4:3a:a6:b7:25:f7:95:
44:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:BD:D3:FD:A5:72:52:3F:19:A0:E3:F5:2F:44:21:DD:13:D9:25:BD
X509v3 Authority Key Identifier:
keyid:96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:b3:69:8b:e9:7d:6f:8d:32:64:54:0a:2c:b5:11:61:3d:db:
1a:15:c9:4f:55:7d:d9:39:d1:32:0d:a7:a8:80:4b:41:4a:55:
0e:f1:5f:de:2f:c8:b0:b0:12:1e:85:84:a0:71:44:6a:48:88:
21:d7:56:3c:63:f2:8e:53:40:c2:62:b7:fe:8c:1d:fa:b2:b0:
d3:ce:5b:7a:44:4f:c1:21:6e:98:86:0e:c6:f8:cb:66:1b:60:
06:3d:a7:86:e7:00:3d:a8:22:92:1f:44:e7:ca:83:e5:c3:39:
dd:77:0f:39:9d:b2:a3:38:66:4a:37:42:da:c1:6b:30:ad:55:
54:77:3a:e5:39:b0:44:73:f7:3f:64:9d:f6:ca:1e:49:32:ea:
f0:90:1f:20:8e:c3:56:4e:6b:16:fc:a4:e4:bc:a6:a7:63:fe:
e6:0f:8c:7a:1e:4c:da:2a:1e:46:6d:a4:bd:69:26:b2:f8:61:
f7:14:d9:ae:b9:28:17:35:bc:b8:a8:c9:4b:26:8e:82:79:18:
10:32:15:18:a4:f0:81:6e:6b:af:db:d6:04:c8:ac:53:76:9d:
67:27:4f:f6:bf:ca:fa:64:8d:8e:bd:66:60:5f:a5:a3:21:9c:
9b:fc:a2:a6:89:9f:1b:1f:35:70:ac:f4:29:55:43:e8:76:22:
d7:ac:87:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 10:26:52 2025 by rpki-client