Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
File: lefcaIWMBglOD0Moi0hlibSD4_M.mft (raw, json)
Hash identifier: RMqc2lyU7inxqFJrHnQN/vlSvqCGtWWXEXhoilBlPxU=
Subject key identifier: 33:ED:A8:7D:04:36:68:8A:93:1E:70:38:C4:D4:1C:7C:D4:8A:92:9D
Authority key identifier: 95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
Certificate issuer: /CN=95e7dc68858c06094e0f43288b486589b483e3f3
Certificate serial: 0198D4740F646606756685230EBFA42657D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
Manifest number: 0D64
Signing time: Sat 23 Aug 2025 01:03:52 +0000
Manifest this update: Sat 23 Aug 2025 01:03:52 +0000
Manifest next update: Sun 24 Aug 2025 01:03:52 +0000
Files and hashes: 1: lefcaIWMBglOD0Moi0hlibSD4_M.crl (hash: tCOeT5dvc5lvhnq4KjWksdR+Ixhy9B/ikLsojnNV9qE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:0f:64:66:06:75:66:85:23:0e:bf:a4:26:57:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e7dc68858c06094e0f43288b486589b483e3f3
Validity
Not Before: Aug 23 01:03:52 2025 GMT
Not After : Aug 24 01:03:52 2025 GMT
Subject: CN=33eda87d0436688a931e7038c4d41c7cd48a929d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d2:49:b9:4e:b5:81:89:cf:d5:c7:81:53:14:
c2:47:87:d5:bd:cf:9c:58:a4:19:34:a5:f9:a6:f2:
54:f7:1f:4b:05:c5:5b:a6:27:0e:ac:cf:15:15:fd:
87:40:3b:71:4f:a5:92:c4:61:0f:27:a8:71:c0:89:
7b:ec:dd:bd:87:9e:c8:d5:d3:80:b4:38:aa:90:c6:
14:96:88:6c:78:7b:0e:9c:60:02:3a:90:49:4d:46:
64:53:5a:ea:91:08:74:fd:95:9a:09:4f:2f:c0:3e:
ae:fb:10:4c:32:e9:75:17:9d:04:39:40:c1:28:6b:
59:96:dd:c3:c0:96:99:4b:1e:a4:bd:07:cd:25:a7:
41:e8:f2:45:38:6b:6a:d5:5f:50:e5:15:eb:e9:c3:
47:88:b0:ca:69:b6:39:e2:95:d2:a2:e2:3b:64:cf:
76:78:fa:6f:3a:fa:aa:95:18:d0:6d:d9:79:25:3a:
ad:74:ba:a2:44:d0:d4:70:99:64:7b:93:18:b6:b6:
65:1d:4a:29:25:55:04:06:bd:a1:65:89:ab:d8:e2:
7b:4e:c8:b6:a5:6f:7a:fb:f2:ce:3b:8f:9d:dd:d4:
67:59:74:53:e6:ca:4b:16:8b:0d:a2:0e:87:89:f3:
25:d9:61:0b:77:a4:70:aa:6d:18:af:e9:4a:30:96:
07:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:ED:A8:7D:04:36:68:8A:93:1E:70:38:C4:D4:1C:7C:D4:8A:92:9D
X509v3 Authority Key Identifier:
keyid:95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:c8:35:4d:03:ab:5d:93:b2:82:13:e6:1d:f8:13:6d:85:ad:
9d:78:b6:76:e6:d3:3e:0b:b6:f0:97:27:5e:94:33:8e:e2:de:
bc:c9:d2:1e:f8:71:00:cd:a1:8e:e2:9a:c9:7b:86:0d:a3:b6:
08:d7:61:a6:aa:eb:b3:00:f3:9d:2e:31:0f:38:a3:e2:6b:2f:
a2:83:61:3b:72:28:41:70:a1:d6:a8:95:ac:23:de:f6:e9:84:
f7:80:e2:34:60:87:24:b6:6f:dc:96:45:3c:f7:d5:6b:31:32:
3c:c0:46:20:cd:69:71:39:74:4b:9a:a3:c6:d7:7c:ed:37:4a:
4b:41:1a:cc:0d:8c:9b:53:ef:cb:2b:ed:e2:f6:87:1e:cf:8f:
9f:03:2a:ae:bb:4d:06:ce:67:1c:cf:95:83:72:90:ad:56:7a:
84:a2:8c:f4:ea:2e:63:22:d6:bc:28:bb:09:e2:35:b9:a1:66:
b7:13:f7:c3:61:ff:ae:b3:04:8e:08:ea:81:e1:92:74:04:ec:
c4:3e:5e:7b:af:ea:ef:79:aa:ff:51:77:83:be:d4:b2:3c:e5:
14:d3:39:42:e9:c2:e5:b9:2d:34:2c:e4:15:1a:f1:f2:1a:2f:
0c:b7:65:29:c7:0a:9c:71:c9:8f:0b:4c:90:37:4b:b6:b4:d6:
13:0b:a4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:00 2025 by rpki-client