Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
File: lefcaIWMBglOD0Moi0hlibSD4_M.mft (raw, json)
Hash identifier: fLTqMNXoGZpjip78zmkigwYNE1SZFWC8W3IyXrsOFNs=
Subject key identifier: 88:8B:4D:4D:1B:C3:E2:12:28:F2:69:DE:79:D7:92:98:4F:DA:A2:67
Authority key identifier: 95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
Certificate issuer: /CN=95e7dc68858c06094e0f43288b486589b483e3f3
Certificate serial: 0199FBEC21B6A61235637F564926D1716D0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
Manifest number: 0DFD
Signing time: Sun 19 Oct 2025 10:03:00 +0000
Manifest this update: Sun 19 Oct 2025 10:03:00 +0000
Manifest next update: Mon 20 Oct 2025 10:03:00 +0000
Files and hashes: 1: lefcaIWMBglOD0Moi0hlibSD4_M.crl (hash: +RlW8ZUSlf1hlXQMcOQ6tyqPmTZCTiCNvcTnPJxeqEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:03:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:21:b6:a6:12:35:63:7f:56:49:26:d1:71:6d:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e7dc68858c06094e0f43288b486589b483e3f3
Validity
Not Before: Oct 19 10:03:00 2025 GMT
Not After : Oct 20 10:03:00 2025 GMT
Subject: CN=888b4d4d1bc3e21228f269de79d792984fdaa267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2c:0a:62:1d:9b:55:dd:ed:7b:f2:19:d0:b3:
7f:61:c6:9d:28:fc:aa:8f:78:d5:a3:48:e7:cf:e8:
b9:d4:eb:0e:48:80:d6:76:17:91:a4:05:a7:e5:6d:
b2:f1:a7:2a:0e:cd:6d:2d:04:02:7f:b5:67:3a:0a:
e6:96:21:3a:45:8c:fe:22:b8:d3:f8:94:97:7b:de:
81:31:e5:e2:7f:13:cf:1b:bf:80:bb:6c:b5:e2:b6:
67:f0:af:10:20:bf:5b:bc:d5:8b:71:9b:e3:3a:ce:
09:46:54:15:7f:d9:4f:a9:be:26:bf:b5:f7:ca:31:
a1:9f:5e:19:04:46:71:ea:c1:a0:ee:da:76:be:1d:
8b:da:f1:78:ba:ed:76:7a:59:80:c2:da:06:ed:de:
3c:47:1b:d5:a2:83:22:ca:51:8a:40:d5:d2:d4:39:
aa:d2:17:73:4d:54:f2:7a:b7:3f:45:68:be:45:f9:
fe:a4:b6:ec:ee:71:ef:4a:ac:71:50:29:7d:8a:d7:
ef:86:e9:3c:94:e9:c3:0d:33:4c:a7:f5:22:10:7c:
61:27:fb:fb:fb:9d:81:97:21:51:22:c1:34:c5:a0:
97:e3:c3:62:82:19:f1:20:85:12:32:a0:7d:99:47:
a1:ab:54:e6:5a:a3:99:38:b3:bd:f0:55:5d:00:e2:
ec:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:8B:4D:4D:1B:C3:E2:12:28:F2:69:DE:79:D7:92:98:4F:DA:A2:67
X509v3 Authority Key Identifier:
keyid:95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:41:38:23:55:8d:e9:45:43:c1:73:40:00:4c:0a:86:97:4b:
64:a8:8f:08:0e:bb:c7:0f:a8:a6:56:01:4d:b1:25:a9:8b:a2:
0d:6b:8f:8f:d6:68:f5:f6:27:cd:17:eb:84:d9:06:cc:a6:3c:
fe:cf:6e:7a:5c:58:d5:c3:c8:29:e0:ec:5c:e5:e5:1c:5d:f1:
88:f5:ea:b3:bf:31:82:ad:c3:34:17:12:00:d3:37:c2:99:ba:
cd:c6:71:45:9f:37:44:ae:e4:80:5e:50:e7:51:ac:95:43:f1:
23:10:c3:88:e2:1a:60:86:ba:2e:84:07:4f:0b:09:2d:24:6a:
0d:b7:20:82:7a:57:4f:10:91:b7:b7:3b:65:2b:c7:2a:6b:12:
c2:f7:49:bf:33:af:35:f4:47:a0:60:53:b7:d7:1e:09:96:fb:
e3:31:1d:25:54:67:bb:e8:f4:3b:b9:5d:cd:1c:57:6f:2e:26:
f5:b5:36:9e:4e:44:be:51:b4:79:31:2a:0e:42:a7:56:7a:ad:
52:f8:ea:2a:b7:35:58:59:d6:75:5e:14:57:ec:89:18:33:29:
85:c9:af:d3:65:45:41:85:73:77:25:46:a4:7b:2c:4a:c3:7f:
6b:e9:4f:8a:da:1a:87:9b:ab:90:14:c5:c1:ec:30:39:9b:80:
db:c3:cf:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:58:38 2025 by rpki-client