Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
File: L42NDO68zXW2BrpJaPXHlG6NR8A.mft (raw, json)
Hash identifier: LZqrwLpxAtGTPNe1bt8ddTH3UgsVdPIJiL+kEtrZM3g=
Subject key identifier: 3A:27:18:14:83:1E:6F:6A:2A:22:42:2F:74:3E:1E:AD:69:64:7C:59
Authority key identifier: 2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
Certificate issuer: /CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Certificate serial: 019A2BC3CF55FA5DED462FF1E289F237C1D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
Manifest number: 0CE8
Signing time: Tue 28 Oct 2025 17:00:44 +0000
Manifest this update: Tue 28 Oct 2025 17:00:44 +0000
Manifest next update: Wed 29 Oct 2025 17:00:44 +0000
Files and hashes: 1: KvErQkIa-7bptS15YPSXyRA9CSc.roa (hash: oCFio8e2SnoXuYWAJDUSo/+OUQCG41H/KpmIERPwk3M=)
2: L42NDO68zXW2BrpJaPXHlG6NR8A.crl (hash: m/eBBv1S/LQJwewiVHh5OnntNKqCZxJ+0C4QO6FLYFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 17:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2b:c3:cf:55:fa:5d:ed:46:2f:f1:e2:89:f2:37:c1:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Validity
Not Before: Oct 28 17:00:44 2025 GMT
Not After : Oct 29 17:00:44 2025 GMT
Subject: CN=3a271814831e6f6a2a22422f743e1ead69647c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ed:1f:dd:a9:17:88:21:76:06:36:80:7a:05:
62:dd:89:fc:d4:73:94:03:9f:a8:10:2f:f9:8c:f3:
0f:43:ca:4e:50:be:50:d9:c9:25:ec:5d:a3:e2:cc:
18:03:e4:09:c9:0a:83:4e:fc:75:ec:e8:cd:5e:d2:
c6:64:b7:cd:50:1a:46:4e:a3:04:d9:5c:f3:5d:74:
1c:52:c6:90:c4:17:d1:5f:4b:7c:07:57:fd:35:db:
e6:c6:cd:dc:90:c8:c9:73:f7:81:d4:2c:5d:92:fe:
45:64:c8:b8:0b:aa:33:e3:38:1b:5e:31:c5:52:13:
54:a4:af:3b:8d:08:ee:4d:22:c7:7c:ac:22:59:ac:
f1:79:a6:bb:1c:8c:29:4a:db:c7:4e:1a:74:57:b1:
5c:1c:22:e5:5a:3d:50:5b:f2:c3:f2:c4:2a:2a:aa:
a7:8a:07:8a:14:8d:e8:a7:30:19:db:43:cc:32:3a:
cc:51:18:3b:c6:f6:23:bc:d7:21:dc:c0:74:d2:29:
87:be:b0:4d:38:51:86:a7:0c:b1:6f:5a:2e:05:e3:
2f:e9:06:f5:38:9e:09:47:d7:62:d1:9c:aa:53:b2:
1c:1e:e0:7b:bd:4a:20:1c:66:5b:45:24:f9:b4:4a:
07:28:a0:9b:7c:c3:90:4d:88:60:2c:69:66:dc:64:
47:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:27:18:14:83:1E:6F:6A:2A:22:42:2F:74:3E:1E:AD:69:64:7C:59
X509v3 Authority Key Identifier:
keyid:2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:4f:b2:ae:33:bb:20:42:43:d2:04:34:ce:1f:6f:82:e6:7f:
09:9f:9b:09:e2:3b:d8:47:cc:74:d4:e6:88:ef:7b:21:81:db:
8d:cd:d2:74:a7:dd:cc:6b:78:fc:b1:7e:10:d5:80:f0:07:42:
3f:80:21:74:c6:b2:d8:3a:af:8c:63:f6:99:e6:ca:50:e4:ab:
10:7a:e3:23:71:88:f9:e4:aa:e3:68:5d:26:44:7d:c1:43:44:
78:7d:11:a3:9a:9c:bc:3f:4a:6f:db:8c:01:0b:38:a2:45:1b:
ad:69:8d:57:c2:61:de:17:c0:89:82:46:fa:7a:a5:57:03:f0:
81:af:c5:e5:0c:5e:56:4c:08:fa:91:1a:ee:fd:d4:34:91:09:
f7:4f:75:93:8f:ae:e0:47:7e:01:c6:fb:3f:56:66:52:9c:b1:
d9:0e:7c:95:a0:6b:cb:9b:30:b4:3c:fd:59:07:5c:f0:03:54:
6d:8a:e7:34:a1:ef:b2:d1:47:2d:b4:09:de:c9:f6:3a:db:bd:
2f:6d:ff:eb:ed:b2:e7:e3:be:a8:54:93:a0:eb:ca:71:76:95:
3a:5b:68:1f:11:b4:1d:dd:83:2d:7d:41:49:a6:83:14:3d:f4:
27:8d:9a:d1:fd:7e:76:12:3e:62:4e:91:65:b8:48:8d:ad:8c:
17:c2:ab:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 01:28:04 2025 by rpki-client