Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
File: L42NDO68zXW2BrpJaPXHlG6NR8A.mft (raw, json)
Hash identifier: WMppynCLhMU2UcVD72oaxOxd+FYnd20/rBPXKWQRvFc=
Subject key identifier: 75:21:B3:78:6B:A4:62:07:3D:66:0C:49:EA:F0:F6:0D:1D:99:72:97
Authority key identifier: 2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
Certificate issuer: /CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Certificate serial: 019923311FC34690B0530FD0B68F5958D604
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
Manifest number: 0C5F
Signing time: Sun 07 Sep 2025 08:00:45 +0000
Manifest this update: Sun 07 Sep 2025 08:00:45 +0000
Manifest next update: Mon 08 Sep 2025 08:00:45 +0000
Files and hashes: 1: KvErQkIa-7bptS15YPSXyRA9CSc.roa (hash: oCFio8e2SnoXuYWAJDUSo/+OUQCG41H/KpmIERPwk3M=)
2: L42NDO68zXW2BrpJaPXHlG6NR8A.crl (hash: d8RcorcG3D+eyf5OwF93060YdaCOmOgUtiQmJxdtN6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:1f:c3:46:90:b0:53:0f:d0:b6:8f:59:58:d6:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Validity
Not Before: Sep 7 08:00:45 2025 GMT
Not After : Sep 8 08:00:45 2025 GMT
Subject: CN=7521b3786ba462073d660c49eaf0f60d1d997297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cc:77:a3:cc:e2:cb:ca:6f:d5:57:94:78:bb:
01:ed:35:40:5b:7e:9c:30:54:95:c9:eb:50:c3:d0:
6e:3f:8d:e8:0e:b9:2d:54:2f:a3:f1:38:87:45:b9:
cb:24:73:89:be:f4:79:7e:8d:30:66:06:a6:48:11:
f4:34:aa:c3:13:2c:83:1b:68:06:fb:06:2a:90:62:
ae:44:2d:81:a1:ff:2f:1a:25:39:36:21:93:4f:5c:
d2:5c:70:0d:e7:b2:3d:86:69:0c:64:b7:21:d9:d1:
e7:30:79:84:3c:a2:db:30:ab:6a:f7:4e:77:d1:ed:
e4:2d:3d:a8:18:38:64:f7:0c:02:ff:0d:65:db:75:
7c:ab:82:a5:11:95:b2:9b:6e:d2:9b:ca:29:d5:ad:
67:7e:79:91:ca:5a:e4:bf:68:a5:64:8b:15:47:b3:
23:d8:f5:3a:f0:f5:7a:c7:35:1e:34:ed:aa:57:49:
82:63:3c:fa:5a:ba:66:79:35:60:25:2b:12:14:71:
23:fc:dd:8c:13:82:49:37:2b:59:21:28:0e:6e:8a:
71:d5:16:b3:85:2c:9c:b2:69:ab:e2:88:29:b8:54:
0e:ac:49:5f:0a:ef:b3:d0:c8:50:f4:f4:88:47:15:
54:0b:87:63:97:96:0d:79:68:2f:32:e0:aa:80:10:
2c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:21:B3:78:6B:A4:62:07:3D:66:0C:49:EA:F0:F6:0D:1D:99:72:97
X509v3 Authority Key Identifier:
keyid:2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:fe:b7:1e:f0:5e:d7:21:01:63:dd:47:51:1c:69:ce:20:99:
a5:d8:49:d4:0c:c1:a7:f6:16:a2:e3:41:63:c2:0a:e3:f8:fe:
ca:49:7c:c0:14:76:ef:4a:a9:8c:34:a3:3e:c6:1b:34:63:71:
4d:19:be:ca:32:61:c8:c4:9f:bc:e3:a0:f8:e5:f8:6e:8c:59:
5b:84:bf:d6:e9:45:4e:31:3b:24:d9:7f:38:ae:59:0c:40:2e:
b1:2b:34:22:47:57:d5:97:1a:74:92:18:de:df:bf:4e:9e:b3:
07:82:47:34:52:27:5f:c8:65:3a:30:a0:4c:63:51:12:98:8d:
64:8f:db:80:dc:5f:34:e5:da:e1:95:22:65:20:ce:35:81:be:
73:24:cc:81:dd:67:b0:63:72:bd:f0:7f:a5:ca:5d:30:89:84:
91:62:fd:29:20:70:27:42:fd:b4:4d:ae:73:f5:e4:81:04:9b:
a9:f0:94:3c:b3:e1:8e:d6:02:9f:da:59:cb:15:4b:44:ef:7d:
7b:e4:45:01:61:cf:75:c4:62:59:fb:64:7d:a2:de:24:85:0c:
37:96:71:33:82:f8:66:57:79:a6:3d:d0:76:a3:c8:00:c1:88:
58:a2:ba:36:97:5d:a9:84:ab:c9:15:e3:71:6c:f2:31:fe:21:
c8:95:5a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:07 2025 by rpki-client