Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
File: lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft (raw, json)
Hash identifier: tqiDM10f36t8rvYikQoHz3nlxZZNr0eGmsyAY68Wy60=
Subject key identifier: AC:53:F3:F7:1A:50:CD:D3:A3:E9:A9:68:79:62:13:9A:5B:3E:B7:C1
Authority key identifier: 94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
Certificate issuer: /CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Certificate serial: 019A23D35DA518DED2EEFEF4DCFE6FAC245C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
Manifest number: 111D
Signing time: Mon 27 Oct 2025 04:00:45 +0000
Manifest this update: Mon 27 Oct 2025 04:00:45 +0000
Manifest next update: Tue 28 Oct 2025 04:00:45 +0000
Files and hashes: 1: H33ZXIhbVy7xU6xnvVekDxlllNY.roa (hash: gLytCIr8moIJFxRmjTSWLIbls8kZi2qpSK/USMqXNdU=)
2: lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl (hash: QOl7kw8o3KYGqgTMaMobQSz3ZDnBM4Yk5hMn8cuMr2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:d3:5d:a5:18:de:d2:ee:fe:f4:dc:fe:6f:ac:24:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Validity
Not Before: Oct 27 04:00:45 2025 GMT
Not After : Oct 28 04:00:45 2025 GMT
Subject: CN=ac53f3f71a50cdd3a3e9a9687962139a5b3eb7c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:18:df:9f:cd:92:8a:d8:7b:5f:52:b5:da:a7:
ad:61:32:4b:1f:f2:5c:e8:51:fb:06:85:37:65:84:
66:c1:38:70:37:5c:f2:94:30:3c:bb:15:bf:25:44:
78:41:b8:f2:44:3a:99:5a:b6:ee:3e:85:38:71:ff:
dc:e3:87:9e:c8:fb:a3:72:61:cb:56:96:5a:13:28:
5f:15:a5:c0:26:15:10:37:7a:9e:9c:36:d3:9c:40:
9f:0b:05:ce:83:1e:08:8a:c5:17:f2:0b:61:02:92:
a7:6d:56:bc:60:07:1b:79:2a:43:59:5c:29:a4:3f:
3a:23:d1:45:3c:2e:37:da:2c:ed:8e:98:19:69:1b:
cc:4e:b4:70:f1:07:8b:e2:0e:44:b1:82:bb:b7:1d:
e9:ee:aa:0f:e1:43:d2:43:cd:eb:c5:48:77:53:cc:
77:de:d1:d7:4c:f8:20:95:cd:0d:6e:7f:38:05:91:
d4:65:e3:b6:46:bc:df:e9:69:3c:f4:e1:3b:21:7a:
03:05:53:f3:94:24:e2:bd:1b:b6:57:83:ab:02:b5:
8f:4a:8c:c7:2b:f6:7b:3f:a5:f8:c6:d5:21:af:64:
98:5a:fb:f2:03:1d:42:ac:fb:4e:4c:8b:83:9c:a8:
c6:b0:94:02:5c:c4:b3:3f:56:68:9e:9a:c4:4c:a3:
04:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:53:F3:F7:1A:50:CD:D3:A3:E9:A9:68:79:62:13:9A:5B:3E:B7:C1
X509v3 Authority Key Identifier:
keyid:94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:bd:27:be:35:f8:9b:4e:0b:d5:76:8b:5f:3c:a7:c8:e2:0b:
34:be:16:37:56:2d:af:1d:ac:2c:9f:b6:da:9d:64:61:49:93:
e5:f5:07:b4:ff:15:9d:ca:60:ca:f9:54:e7:81:ef:51:eb:a2:
58:f0:b6:92:71:b4:46:91:32:ca:93:51:91:95:e4:d0:37:9e:
95:dc:aa:d2:54:c1:0a:01:97:36:30:40:a2:78:36:bf:77:96:
54:5e:ec:b7:36:4b:a2:0b:34:b2:4b:e6:25:1c:a1:a9:67:d7:
86:62:f6:c0:7a:78:79:1c:0f:81:35:f1:8f:b2:34:65:6e:0a:
d4:8d:b2:7a:3f:fb:c9:72:10:3f:a2:bb:52:4a:b4:32:9c:52:
81:3b:a9:63:1e:5a:22:b5:e8:06:eb:28:34:4f:74:ce:5c:d5:
a0:ce:75:01:04:fe:34:94:24:9a:06:53:39:8c:7f:08:80:62:
dd:11:42:d7:8e:47:a2:61:7c:c3:33:e5:28:41:6c:e1:a1:a3:
e9:2e:af:a9:a7:a4:99:bf:88:0a:30:7d:42:90:fe:bc:b1:ff:
b8:3d:52:b6:db:d3:55:96:32:59:7b:33:46:6f:a9:2c:d5:a6:
53:64:ba:42:dd:43:db:7f:5e:0f:07:5b:98:f5:1c:ec:1c:62:
a5:dd:ec:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:02:41 2025 by rpki-client