Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: B13C7NYl+l6RlbAjMAne2DHF15Eu4GPhxA68qeK4a8U=
Subject key identifier: 53:C7:77:A2:E2:60:D9:A9:46:23:F5:81:20:8A:21:FC:E2:BE:8F:E0
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 0199FC21ADA8A7C5CA9A0F5BD9FB0B9B4ECA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 0351
Signing time: Sun 19 Oct 2025 11:01:29 +0000
Manifest this update: Sun 19 Oct 2025 11:01:29 +0000
Manifest next update: Mon 20 Oct 2025 11:01:29 +0000
Files and hashes: 1: 32WtKH3EfM7-S6v7tTmyQcU-a9s.roa (hash: Fn/80HetfWjEwrwQy2saw9cqkA9VjrY/6O3eDGyjCbw=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: 5RSJdijF7WyK/9Fyh+R9WPgsAxnUy5BLQJC0nDWG6dE=)
3: ef1K6dC6_lGn3rxGTHxMT8fcB0w.roa (hash: KYKxli5ZRinkaBImEiWWBBcr8lpZPoWAqbzOeddaU7I=)
4: pLMH0ozDSiYZXzqiHdSEzphkheE.roa (hash: CFbM9K2hMJ4HkUaVbEdJq2H47xHqfonXY2RvABtKsw8=)
5: yTZK16Petp2vOn3txInnKgFuPZA.roa (hash: f4X49bz3pXDeDuy49E2fyjRi845LCJEWL2iDzuqzg38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:ad:a8:a7:c5:ca:9a:0f:5b:d9:fb:0b:9b:4e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Oct 19 11:01:29 2025 GMT
Not After : Oct 20 11:01:29 2025 GMT
Subject: CN=53c777a2e260d9a94623f581208a21fce2be8fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:39:52:8e:56:83:14:82:06:cf:f6:1b:24:ee:
9b:14:46:39:10:2f:1a:0e:74:4b:78:14:87:a7:ea:
9f:69:a1:29:7c:ee:19:da:44:82:15:4e:d8:54:f3:
ee:1d:c4:a3:f4:38:d4:c0:e6:b5:21:23:dc:ab:3b:
2f:3e:fc:bf:fc:ed:65:cd:e1:89:51:a8:10:58:a1:
ef:13:0b:a7:0c:16:49:81:4b:37:76:7c:74:58:39:
44:e9:4d:74:85:6c:81:37:26:60:76:2f:d9:34:33:
8b:fc:f4:e5:5c:c8:63:c9:ef:05:b4:09:b9:02:61:
43:32:57:35:26:24:b2:75:be:7a:26:ed:84:c4:9b:
1c:2f:80:86:6d:a7:12:85:0d:62:0e:4f:a0:bd:34:
50:1b:94:da:85:07:d1:38:f2:c1:44:2b:3e:75:35:
e0:d2:0c:14:a5:49:f6:04:f3:9d:0c:c1:af:1c:a8:
85:f3:fb:45:36:b6:a3:ce:76:e3:b3:dd:2f:8a:49:
ba:8f:6c:e9:76:48:30:00:c1:8d:a8:34:8a:4d:1f:
ab:79:74:66:42:5a:73:fe:fc:d5:26:b0:f5:9f:45:
7e:09:82:1a:15:25:cd:c9:37:0d:5e:d0:8a:49:c2:
04:97:cb:65:01:42:fa:4a:1f:f4:c0:cd:77:d7:99:
b4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C7:77:A2:E2:60:D9:A9:46:23:F5:81:20:8A:21:FC:E2:BE:8F:E0
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:f8:6c:db:51:4d:a8:e1:79:81:ac:96:b4:89:f2:f8:bf:53:
63:f5:7b:56:82:07:16:a1:bd:c7:42:8a:32:6d:f7:72:ad:3e:
fb:fe:fd:fe:b8:c5:34:05:b7:e3:e1:dc:42:ec:04:4c:b6:46:
3e:a5:72:9e:83:96:94:18:8d:25:2b:76:d9:71:d1:22:61:b6:
38:db:ac:d5:c1:34:d2:fc:59:c7:7b:e3:45:38:df:fe:e2:37:
1b:5b:e1:25:2f:14:a7:26:48:9f:17:65:e8:b9:d1:80:e8:5c:
0c:63:5d:02:18:dc:d0:7b:ef:d8:82:e0:5f:71:7b:76:0e:9d:
61:f2:13:5a:ee:df:ba:99:59:13:65:18:23:e3:16:db:61:14:
55:19:a0:00:15:c4:d5:b4:5c:fb:f4:26:58:18:de:85:78:48:
cb:64:9c:12:24:8d:b1:9b:a4:fa:45:29:ef:b4:b4:f4:8d:df:
2f:7e:9f:e2:a2:6a:c6:b4:b2:b3:69:e4:97:b8:e8:64:08:ad:
09:11:70:50:22:5d:c6:26:ca:3d:2b:39:f6:07:74:24:6c:42:
ba:c4:ef:30:6d:6a:74:9a:6c:d6:45:86:8a:3f:d7:8f:c6:2c:
6d:8b:48:3c:16:c3:f9:9d:97:00:eb:c0:fe:f4:7b:eb:bc:75:
5d:5d:d9:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:16 2025 by rpki-client