Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
File: LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft (raw, json)
Hash identifier: UbcPgPbs20jPtFT3BLfcQF0zIu72l2DToQ5lnUtVRRo=
Subject key identifier: 2F:71:97:BC:DF:1E:94:43:D6:2A:F9:D5:7C:D4:E4:67:FF:20:A3:BF
Authority key identifier: 2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01
Certificate issuer: /CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01
Certificate serial: 0199FB7CB963FA82545F21590BE7BA475CD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
Manifest number: 11
Signing time: Sun 19 Oct 2025 08:01:18 +0000
Manifest this update: Sun 19 Oct 2025 08:01:18 +0000
Manifest next update: Mon 20 Oct 2025 08:01:18 +0000
Files and hashes: 1: 8RxSWpC3pHJ9hh6qG0BIw2xusZc.roa (hash: dTWrB7/Bcq7TMpdoMtRKk5plCZVXL7i81JXpAEWqK4g=)
2: LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl (hash: AN1Wk0sAc9xRcth9xaUIpGb6k6jLskw2lTcLEVYJ/lU=)
3: TleCnyfGdZ_mECH_iBY0pup0z6g.roa (hash: HrmWALEujgW08ieMDEygOWdRlqfGF9a1VyxcNiVM0Vg=)
4: cs2tcig_htwGIdVMlsEbECr1KUs.roa (hash: Ltjte90H2AR0ZhY5ZboX1HAAoGLfM6x2vjLJ6VTAc2Q=)
5: jhEFknqoK_BS1ZtKoMXlt2OiJ5w.roa (hash: v/53l+XCcGHQ3lOSHv89C7msVDalR3SvpophItFfOiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:b9:63:fa:82:54:5f:21:59:0b:e7:ba:47:5c:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01
Validity
Not Before: Oct 19 08:01:18 2025 GMT
Not After : Oct 20 08:01:18 2025 GMT
Subject: CN=2f7197bcdf1e9443d62af9d57cd4e467ff20a3bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f9:5b:60:ae:b4:a7:5e:44:79:83:cc:4b:05:
33:3b:56:8a:d2:28:41:ea:07:a9:52:72:ec:54:90:
bb:09:06:7e:da:c0:0d:3a:ce:36:b1:9d:53:c2:00:
4a:82:2a:b6:91:6c:12:31:e9:9b:81:b5:49:f6:73:
de:66:ae:65:06:2b:a8:c8:d3:b7:83:ae:99:2b:d9:
9e:ff:cf:67:f2:10:f7:8e:e1:ed:a8:f3:8e:da:8d:
e5:a1:b6:7a:79:6f:90:a4:e0:bc:f4:c8:bf:6b:75:
3f:49:f9:13:16:65:64:a1:2e:1c:b4:6e:ea:92:cf:
47:3d:20:fa:25:96:7f:26:8b:86:01:21:9b:d2:c0:
a9:22:5a:97:7f:80:16:fb:01:54:a0:b9:80:af:36:
9e:0a:74:f6:e0:f0:c4:22:75:dc:c5:08:17:e4:80:
0d:24:38:f8:05:4e:87:07:aa:e5:7b:27:1c:c5:fc:
ae:0c:53:61:a4:a8:17:e9:c7:df:dc:17:e1:1a:b4:
e7:f4:5e:17:fd:b0:97:19:05:7c:01:46:ed:df:77:
9c:f1:c4:6d:6a:c0:c6:98:37:f3:54:ac:28:4e:63:
05:27:50:85:f7:55:0f:2b:33:fa:ec:22:1a:df:8b:
1d:61:65:5f:58:4a:45:79:3e:aa:15:12:57:77:70:
90:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:71:97:BC:DF:1E:94:43:D6:2A:F9:D5:7C:D4:E4:67:FF:20:A3:BF
X509v3 Authority Key Identifier:
keyid:2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:ef:d7:64:f9:6f:fd:6d:a9:ab:95:07:cf:e6:a3:6b:19:3f:
3a:bb:1f:e6:7b:03:0c:48:af:a5:cf:56:9b:d9:e4:1b:f6:b4:
95:c2:8a:f1:76:18:cb:47:b2:46:45:68:e1:b0:8c:78:37:b5:
7d:53:5f:76:ec:73:03:88:76:7e:e7:6c:e8:b8:6b:cc:8c:a5:
99:d4:e7:6e:e3:c9:8b:e5:22:af:78:55:f7:d6:0a:9d:66:ed:
6f:a8:4a:6d:2f:6c:fa:64:3a:31:b7:9e:69:25:dd:4a:5e:e4:
55:6e:b0:b2:b7:4d:19:08:bd:bc:75:b8:e7:d0:14:4e:e0:fa:
e2:d4:54:89:a1:64:77:5e:1b:14:f9:10:de:3f:a4:46:0c:b1:
6a:e5:e7:c6:f0:58:68:2a:3e:b2:8c:30:d0:40:da:89:1e:0c:
4a:3a:7f:f5:46:1b:ee:bf:c9:4d:9d:b1:c6:bf:0a:11:21:b0:
98:bb:16:89:65:c2:ef:54:be:6c:26:b9:1b:19:a3:9a:c0:ac:
ec:1b:e6:20:ab:8d:1b:82:dc:49:f5:1f:f6:62:78:26:9d:fd:
d6:d3:3c:9a:a9:2a:db:16:47:c9:05:69:89:c3:53:48:a5:80:
71:1b:44:d7:22:05:92:9e:c3:af:af:be:8c:d1:b7:53:56:3a:
3d:39:27:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:33 2025 by rpki-client