Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: R85eUOMHZHl1yWyHPrIPti9znoCAd/8xIJ/T89sB6Gs=
Subject key identifier: A7:C2:C6:CD:50:98:3E:BA:DD:4B:1F:DA:72:CE:9A:30:87:AD:71:30
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 0198D54DF8EB6D4AD6CB37A5E80F14EF0871
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 02B8
Signing time: Sat 23 Aug 2025 05:01:53 +0000
Manifest this update: Sat 23 Aug 2025 05:01:53 +0000
Manifest next update: Sun 24 Aug 2025 05:01:53 +0000
Files and hashes: 1: 32WtKH3EfM7-S6v7tTmyQcU-a9s.roa (hash: Fn/80HetfWjEwrwQy2saw9cqkA9VjrY/6O3eDGyjCbw=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: NnwJFMVWdkSm6V67/C3bVjgeADk1OzStG65rOvNNjkQ=)
3: ef1K6dC6_lGn3rxGTHxMT8fcB0w.roa (hash: KYKxli5ZRinkaBImEiWWBBcr8lpZPoWAqbzOeddaU7I=)
4: pLMH0ozDSiYZXzqiHdSEzphkheE.roa (hash: CFbM9K2hMJ4HkUaVbEdJq2H47xHqfonXY2RvABtKsw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:f8:eb:6d:4a:d6:cb:37:a5:e8:0f:14:ef:08:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Aug 23 05:01:53 2025 GMT
Not After : Aug 24 05:01:53 2025 GMT
Subject: CN=a7c2c6cd50983ebadd4b1fda72ce9a3087ad7130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c4:3d:ee:52:da:41:65:a1:cb:13:a5:be:3f:
9d:35:a9:0b:22:d3:9f:42:3f:db:ca:b0:e8:48:2a:
63:30:a8:43:0b:32:d7:24:02:cc:07:54:bf:69:2e:
57:d9:f8:8a:5d:b3:bd:85:d2:21:de:cf:ec:04:e7:
5e:5d:a4:53:34:37:6d:a4:48:24:69:76:1f:01:ce:
ef:59:d1:0c:f0:46:55:c2:a4:7f:0c:82:e7:2e:2a:
38:c4:64:c8:07:64:b6:87:de:bb:b2:f4:8c:dd:24:
74:c7:23:b4:a0:80:dc:89:db:45:db:fe:f3:0c:9b:
7b:48:87:95:10:c4:bb:75:fb:da:49:af:34:28:40:
cc:a5:59:84:8b:b0:b9:55:7c:fb:52:41:e8:cd:c8:
5a:60:c6:35:d4:d7:a3:fc:ee:ad:12:48:18:80:7e:
0e:e4:4e:6d:96:ea:f4:79:81:38:a0:8e:65:ba:6f:
08:36:29:1b:a3:34:a6:5a:78:9a:4b:06:9c:01:99:
0c:04:15:66:79:27:80:6c:a0:45:4d:8f:ed:9f:47:
f6:20:5d:59:da:20:cd:7b:c9:07:ec:16:63:85:c3:
ab:19:d5:96:21:c0:9a:bb:2d:07:b7:c5:50:01:ce:
65:29:d7:b2:26:2d:76:b4:39:87:fd:84:e9:04:8e:
0a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C2:C6:CD:50:98:3E:BA:DD:4B:1F:DA:72:CE:9A:30:87:AD:71:30
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:8d:d0:58:91:95:91:de:86:e5:93:9c:9f:01:4e:7d:c2:84:
40:65:71:41:f7:d3:4f:90:16:3d:d2:b3:1e:74:bb:c8:0b:9d:
a0:16:1e:93:f0:65:d6:40:3a:32:a6:06:0d:67:eb:2f:b4:f9:
64:82:87:52:ef:7e:c6:7e:20:ca:94:b9:82:d6:dc:df:71:a5:
87:3d:3c:3e:f9:e7:80:e2:8d:75:c9:32:3b:d6:68:f7:f8:9a:
57:24:0d:c8:56:6e:7d:10:aa:9a:fc:fe:7e:ba:df:7f:29:c0:
6f:ed:1a:3d:74:35:9c:05:13:4e:60:33:cc:4e:83:9f:fc:49:
1d:61:e5:a9:24:55:88:c6:0e:93:8c:e9:c3:be:39:65:0a:c3:
0f:71:a7:6b:d4:25:ec:94:81:90:09:f7:19:da:34:86:f1:16:
7c:0f:fd:de:7c:d4:1c:57:f1:25:86:20:b7:25:89:4b:7d:ac:
de:13:21:82:1b:45:3c:fc:d5:ab:93:fa:29:b2:d3:5f:32:8b:
00:a7:9a:23:1c:74:17:ad:81:c4:9b:f4:c5:4c:34:cb:24:e1:
f2:12:74:57:6d:66:aa:21:f0:37:b3:de:5b:d0:f2:69:c4:09:
a8:af:5d:1d:11:c1:23:df:a2:8b:9d:c5:51:66:85:a2:69:33:
df:f4:5f:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTfjrbUrWyzel6A8U7whxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkZmVmMmI4MzlhZDA3Nzg2ODMzYjFiZWRjYThiMGIxOTIw
M2UxMTEwHhcNMjUwODIzMDUwMTUzWhcNMjUwODI0MDUwMTUzWjAzMTEwLwYDVQQD
EyhhN2MyYzZjZDUwOTgzZWJhZGQ0YjFmZGE3MmNlOWEzMDg3YWQ3MTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8Q97lLaQWWhyxOlvj+dNakLItOf
Qj/byrDoSCpjMKhDCzLXJALMB1S/aS5X2fiKXbO9hdIh3s/sBOdeXaRTNDdtpEgk
aXYfAc7vWdEM8EZVwqR/DILnLio4xGTIB2S2h967svSM3SR0xyO0oIDcidtF2/7z
DJt7SIeVEMS7dfvaSa80KEDMpVmEi7C5VXz7UkHozchaYMY11Nej/O6tEkgYgH4O
5E5tlur0eYE4oI5lum8INikbozSmWniaSwacAZkMBBVmeSeAbKBFTY/tn0f2IF1Z
2iDNe8kH7BZjhcOrGdWWIcCauy0Ht8VQAc5lKdeyJi12tDmH/YTpBI4KWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKfCxs1QmD663Usf2nLOmjCHrXEwMB8GA1UdIwQY
MBaAFC3+8rg5rQd4aDOxvtyosLGSA+ERMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8wMzU3ZTgtM2VhMC00OTY4LTllZjkt
N2Q3MDUxOWI3NmRhLzEvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8wMzU3ZTgtM2VhMC00OTY4LTllZjktN2Q3MDUxOWI3NmRh
LzEvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMY3QWJGV
kd6G5ZOcnwFOfcKEQGVxQffTT5AWPdKzHnS7yAudoBYek/Bl1kA6MqYGDWfrL7T5
ZIKHUu9+xn4gypS5gtbc33Glhz08PvnngOKNdckyO9Zo9/iaVyQNyFZufRCqmvz+
frrffynAb+0aPXQ1nAUTTmAzzE6Dn/xJHWHlqSRViMYOk4zpw745ZQrDD3Gna9Ql
7JSBkAn3Gdo0hvEWfA/93nzUHFfxJYYgtyWJS32s3hMhghtFPPzVq5P6KbLTXzKL
AKeaIxx0F62BxJv0xUw0yyTh8hJ0V21mqiHwN7PeW9DyacQJqK9dHRHBI9+ii53F
UWaFomkz3/Rf9Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:14 2025 by rpki-client