Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft
File: lfdgXoUMnb8X2vC6OONvzGPCy_o.mft (raw, json)
Hash identifier: dffOYHgQPlNKMkbCpmgyfBbiGUtUaKy9X34+5sR/mZ8=
Subject key identifier: 7F:63:DF:31:7C:CB:52:35:B9:3E:B0:14:D1:C4:D9:9F:A8:47:83:CB
Authority key identifier: 95:F7:60:5E:85:0C:9D:BF:17:DA:F0:BA:38:E3:6F:CC:63:C2:CB:FA
Certificate issuer: /CN=95f7605e850c9dbf17daf0ba38e36fcc63c2cbfa
Certificate serial: 0198D54E56E869E45890E21B6FBB2CB40732
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lfdgXoUMnb8X2vC6OONvzGPCy_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 05:02:17 +0000
Manifest this update: Sat 23 Aug 2025 05:02:17 +0000
Manifest next update: Sun 24 Aug 2025 05:02:17 +0000
Files and hashes: 1: 5-Dy59i1_U0ZRMyz_6apK6err6E.roa (hash: HTKVf7q+nYn6Qr/j/qsCTy9hUzuLpJ7dJx3pfn4b6GM=)
2: lfdgXoUMnb8X2vC6OONvzGPCy_o.crl (hash: GoBQSIW6XgfNm+eXySFpYrvZJWauN20/r2PCqTMAuuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/lfdgXoUMnb8X2vC6OONvzGPCy_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:56:e8:69:e4:58:90:e2:1b:6f:bb:2c:b4:07:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95f7605e850c9dbf17daf0ba38e36fcc63c2cbfa
Validity
Not Before: Aug 23 05:02:17 2025 GMT
Not After : Aug 24 05:02:17 2025 GMT
Subject: CN=7f63df317ccb5235b93eb014d1c4d99fa84783cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6a:db:18:5c:c2:71:82:4d:49:e3:ea:ba:13:
e6:dd:9d:c8:7a:9a:76:51:dc:78:ca:f6:cd:f7:b3:
ea:a2:c4:27:8e:c1:e5:6f:37:49:03:36:26:27:a7:
6d:b9:3e:fe:d2:3c:8f:02:05:2c:85:ef:ee:8d:a3:
52:ac:22:e5:13:90:42:c4:f6:9b:88:02:62:d8:46:
31:91:3d:a7:b4:b1:9d:57:8c:85:9a:70:45:38:3c:
9b:5b:99:52:12:e1:22:13:56:c5:c1:e5:84:e5:f8:
ea:5b:4f:53:f0:98:b2:c9:51:7f:e1:02:52:22:12:
9d:8a:30:08:4d:df:d7:0c:bc:fe:cc:eb:d5:1c:68:
75:54:8d:97:3b:be:58:5d:af:8b:6b:f0:cb:94:2a:
65:80:80:46:7f:1c:72:e4:50:64:cf:e8:43:75:1c:
b1:12:40:c4:9c:97:cc:67:18:16:37:fd:10:dc:61:
06:84:03:e0:57:6a:ba:d1:8f:51:a8:0a:5b:85:1e:
ff:be:97:f7:b0:62:76:fe:79:3e:16:a8:df:93:8d:
e2:c3:11:5a:32:e7:92:32:b1:fb:25:3a:e4:21:8a:
cd:aa:da:a9:3b:6f:84:a5:7f:80:c1:5e:d9:8e:8f:
68:6d:10:4a:23:4e:e8:a3:c9:d5:dc:36:41:74:58:
ef:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:63:DF:31:7C:CB:52:35:B9:3E:B0:14:D1:C4:D9:9F:A8:47:83:CB
X509v3 Authority Key Identifier:
keyid:95:F7:60:5E:85:0C:9D:BF:17:DA:F0:BA:38:E3:6F:CC:63:C2:CB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lfdgXoUMnb8X2vC6OONvzGPCy_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:01:84:2e:26:e7:de:07:92:f6:0b:70:e6:3f:6f:f1:4b:c0:
24:dd:52:8d:2c:b4:c7:7b:c5:78:ad:b8:70:6e:5a:61:dd:6d:
a6:c5:64:ea:c8:e1:a6:27:81:9b:a8:0e:59:ac:44:68:65:09:
fe:2f:66:7b:b5:f0:56:4e:cf:be:64:f3:18:c1:02:a1:62:4f:
c8:d1:b0:61:44:40:0a:07:46:4d:9d:f3:7c:70:a0:a4:fc:23:
2c:e0:5e:70:a9:89:56:ff:fd:9e:11:72:75:54:73:9e:b8:ac:
bd:8e:c4:e5:fa:3f:a0:61:fd:a2:66:91:34:1a:97:1a:79:53:
c1:e9:e7:8f:5b:6c:ef:e7:a3:cf:79:01:4b:c6:1c:c8:37:7b:
e6:a2:ea:a8:5c:17:de:f7:65:f8:73:91:cb:ff:14:e0:b4:52:
b3:8c:4c:57:cd:0a:8e:00:8e:61:ad:59:62:dd:e0:e6:00:9b:
a5:75:5d:f9:c8:4d:3d:a9:ae:23:35:5b:87:26:20:c5:5f:e8:
19:8e:64:6b:c7:53:90:63:df:68:d6:02:93:76:84:01:ac:1d:
3f:1b:e2:65:1f:b1:df:84:94:61:17:0e:11:a5:b5:8e:d0:6a:
18:7b:fe:0d:fb:6b:c2:f3:a5:32:f0:71:7c:20:17:03:6e:96:
ef:6e:70:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:22 2025 by rpki-client