Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft
File: ldcL-AoHyf_L7wzYRltFjWE9zIU.mft (raw, json)
Hash identifier: 0I96EEWBNIujXimcfqxluTTXSvW11YaVP+citdOs5rs=
Subject key identifier: 20:64:E7:EB:86:3D:25:92:F9:DE:22:99:28:ED:EB:C1:89:30:7A:2A
Authority key identifier: 95:D7:0B:F8:0A:07:C9:FF:CB:EF:0C:D8:46:5B:45:8D:61:3D:CC:85
Certificate issuer: /CN=95d70bf80a07c9ffcbef0cd8465b458d613dcc85
Certificate serial: 019A2667423F8E1D7745A8C1C1C360C291D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ldcL-AoHyf_L7wzYRltFjWE9zIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft
Manifest number: 09D7
Signing time: Mon 27 Oct 2025 16:01:32 +0000
Manifest this update: Mon 27 Oct 2025 16:01:32 +0000
Manifest next update: Tue 28 Oct 2025 16:01:32 +0000
Files and hashes: 1: Li8wKnrdmOXpX94BLLLbjVutDVE.roa (hash: B7wnEDA93LjWijQLqvYkWeQvccIg2ujkRKA0vpbO5ig=)
2: ldcL-AoHyf_L7wzYRltFjWE9zIU.crl (hash: EJ7D9qIXaI8+DjTwtvfmP9kO2WwV+3Aev6W83DCaY8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ldcL-AoHyf_L7wzYRltFjWE9zIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:67:42:3f:8e:1d:77:45:a8:c1:c1:c3:60:c2:91:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95d70bf80a07c9ffcbef0cd8465b458d613dcc85
Validity
Not Before: Oct 27 16:01:32 2025 GMT
Not After : Oct 28 16:01:32 2025 GMT
Subject: CN=2064e7eb863d2592f9de229928edebc189307a2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e7:1d:c5:9b:b1:e6:f2:1a:a4:f2:89:88:ba:
ef:27:bd:19:af:04:35:f4:c6:6f:ec:4a:21:f2:ad:
98:d9:a3:17:d2:bd:f0:7b:b9:34:55:23:f8:2f:36:
c7:0f:6e:9d:90:cd:30:91:0a:4f:f9:a3:e4:58:f0:
66:48:71:ab:89:6c:6a:8b:1c:ae:47:d7:0d:9e:11:
e8:d2:fc:93:68:ad:0f:77:05:18:6f:cf:24:71:cc:
41:a4:8b:53:a8:99:d7:b5:d0:8f:f3:d2:8d:62:3b:
63:94:a2:a7:b8:6b:e1:5a:46:88:62:ec:3e:b8:e6:
1a:2e:9f:17:08:7b:08:16:a1:40:f0:62:28:8b:73:
00:99:21:2e:1f:45:53:91:28:da:82:29:55:9e:26:
f7:fd:5a:3a:0c:e8:e7:85:e0:63:00:c9:b3:73:07:
15:08:31:57:2c:b8:c3:ae:f4:a4:db:bd:29:c1:c4:
20:51:4f:4e:c6:fe:31:42:59:a9:ef:45:76:1d:ca:
e7:c4:c7:18:74:05:35:04:b7:f0:ad:e2:60:b1:94:
a9:39:80:5d:c7:d2:91:87:5b:95:54:3c:7c:5a:68:
1a:43:52:60:00:89:cf:01:73:f5:94:40:91:b0:42:
71:d2:a2:66:16:d5:72:ab:33:24:eb:05:b9:e7:12:
6f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:64:E7:EB:86:3D:25:92:F9:DE:22:99:28:ED:EB:C1:89:30:7A:2A
X509v3 Authority Key Identifier:
keyid:95:D7:0B:F8:0A:07:C9:FF:CB:EF:0C:D8:46:5B:45:8D:61:3D:CC:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ldcL-AoHyf_L7wzYRltFjWE9zIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:a4:e4:62:28:a6:82:0a:86:74:30:1b:30:16:37:58:bd:f8:
74:51:08:f2:31:62:05:72:eb:91:e7:9c:4f:18:04:5b:bd:9f:
27:c2:19:c0:b7:66:13:c8:d1:d4:82:fb:75:31:b9:cd:b0:67:
39:f7:98:8a:a8:da:79:05:96:e5:9e:88:ba:29:02:d0:bc:d7:
f8:ef:de:26:fe:ea:67:d6:af:a0:54:c4:93:cb:e5:78:aa:44:
d7:e2:04:91:d4:ba:74:8d:6b:fa:f8:70:b0:95:ea:1a:88:f5:
ab:6c:dd:c3:a8:c0:6e:6e:57:48:12:ad:2d:e6:bd:5f:c7:b6:
6f:3d:c8:0e:c8:7d:78:5a:b7:7b:ae:2a:3c:a3:75:07:3a:4e:
33:0f:b8:1a:09:9f:cc:61:85:b4:a6:f4:17:18:bd:d2:19:79:
d3:48:bd:36:8e:28:4b:c6:67:0b:dd:d8:24:72:19:e8:d0:01:
b4:3b:f0:df:36:55:66:8f:39:f6:e6:0d:ea:5c:7b:7e:61:cf:
c0:f7:c3:b2:3a:5e:3f:01:5b:c6:4d:92:6f:61:d3:a9:47:ac:
40:b1:d6:0a:a5:94:d6:30:bb:3c:d6:ea:2b:19:d0:8c:18:6f:
b1:98:e2:db:18:b5:83:8d:83:be:2c:00:08:3a:a9:d8:28:ed:
46:8d:c6:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZomZ0I/jh13RajBwcNgwpHTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ZDcwYmY4MGEwN2M5ZmZjYmVmMGNkODQ2NWI0NThkNjEz
ZGNjODUwHhcNMjUxMDI3MTYwMTMyWhcNMjUxMDI4MTYwMTMyWjAzMTEwLwYDVQQD
EygyMDY0ZTdlYjg2M2QyNTkyZjlkZTIyOTkyOGVkZWJjMTg5MzA3YTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+cdxZux5vIapPKJiLrvJ70ZrwQ1
9MZv7Eoh8q2Y2aMX0r3we7k0VSP4LzbHD26dkM0wkQpP+aPkWPBmSHGriWxqixyu
R9cNnhHo0vyTaK0PdwUYb88kccxBpItTqJnXtdCP89KNYjtjlKKnuGvhWkaIYuw+
uOYaLp8XCHsIFqFA8GIoi3MAmSEuH0VTkSjagilVnib3/Vo6DOjnheBjAMmzcwcV
CDFXLLjDrvSk270pwcQgUU9Oxv4xQlmp70V2HcrnxMcYdAU1BLfwreJgsZSpOYBd
x9KRh1uVVDx8WmgaQ1JgAInPAXP1lECRsEJx0qJmFtVyqzMk6wW55xJvpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCBk5+uGPSWS+d4imSjt68GJMHoqMB8GA1UdIwQY
MBaAFJXXC/gKB8n/y+8M2EZbRY1hPcyFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGRjTC1Bb0h5Zl9MN3d6WVJsdEZqV0U5eklVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8yYjBlMTEtZjE4ZC00NzU3LTkwMTEt
NjY3OGViODFiOGIwLzEvbGRjTC1Bb0h5Zl9MN3d6WVJsdEZqV0U5eklVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC8yYjBlMTEtZjE4ZC00NzU3LTkwMTEtNjY3OGViODFiOGIw
LzEvbGRjTC1Bb0h5Zl9MN3d6WVJsdEZqV0U5eklVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIKTkYiim
ggqGdDAbMBY3WL34dFEI8jFiBXLrkeecTxgEW72fJ8IZwLdmE8jR1IL7dTG5zbBn
OfeYiqjaeQWW5Z6IuikC0LzX+O/eJv7qZ9avoFTEk8vleKpE1+IEkdS6dI1r+vhw
sJXqGoj1q2zdw6jAbm5XSBKtLea9X8e2bz3IDsh9eFq3e64qPKN1BzpOMw+4Ggmf
zGGFtKb0Fxi90hl500i9No4oS8ZnC93YJHIZ6NABtDvw3zZVZo859uYN6lx7fmHP
wPfDsjpePwFbxk2Sb2HTqUesQLHWCqWU1jC7PNbqKxnQjBhvsZji2xi1g42DviwA
CDqp2CjtRo3Gcw==
-----END CERTIFICATE-----
Generated at Mon Oct 27 19:13:15 2025 by rpki-client