Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
File: lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft (raw, json)
Hash identifier: Zzxi1n7heY3eVw/8y7z1BD57LdsagTk2bXneZpclYcg=
Subject key identifier: BA:24:17:90:B1:10:26:72:CC:C1:80:A6:63:8E:BD:6E:7D:A0:0C:64
Authority key identifier: 96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
Certificate issuer: /CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Certificate serial: 0199FE0FF3BFEEBA8F760BC23398D1F364C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
Manifest number: 0E9B
Signing time: Sun 19 Oct 2025 20:01:22 +0000
Manifest this update: Sun 19 Oct 2025 20:01:22 +0000
Manifest next update: Mon 20 Oct 2025 20:01:22 +0000
Files and hashes: 1: ew1zgYS28PrRo2_vyICjeeeZzZk.roa (hash: Fhi/oH9QUYxK/iP3UryNP+xQPg6T4wc9jRF/RdGEuMY=)
2: lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl (hash: ENCgqV1MTMC4CPmqj/IqG8I0nEsLJRFor/RZmmjBLT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:0f:f3:bf:ee:ba:8f:76:0b:c2:33:98:d1:f3:64:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Validity
Not Before: Oct 19 20:01:22 2025 GMT
Not After : Oct 20 20:01:22 2025 GMT
Subject: CN=ba241790b1102672ccc180a6638ebd6e7da00c64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:51:fa:8b:38:26:1f:f7:9a:ad:aa:40:b6:7f:
0e:5c:e9:0c:52:f3:d9:07:8b:cd:2c:c0:a0:43:26:
f8:df:16:b5:77:48:22:62:35:c9:58:c9:00:45:4a:
1c:bc:af:df:34:e0:85:43:22:35:69:bb:88:62:2d:
29:6e:4f:12:0f:f0:9e:fb:72:4a:d7:e4:9a:af:d4:
ea:43:c2:56:ef:c4:9d:0a:6c:73:57:da:94:dd:f3:
c8:30:64:f2:ad:66:78:c3:a7:c3:d1:62:6d:87:d9:
ec:d2:6a:03:0d:78:45:74:c1:75:f8:93:4a:3b:49:
37:ad:e0:ee:4d:0d:6f:19:65:cc:95:74:a3:41:3c:
34:27:b4:00:f9:ce:03:3e:f3:f7:1b:15:72:14:33:
6c:2b:1a:fe:74:3d:41:b0:04:0a:08:48:1a:de:6f:
2a:1b:05:6b:6f:8f:da:3b:cf:95:aa:81:ab:18:6d:
e7:a0:db:32:16:a4:f7:89:f2:62:1e:76:44:bd:26:
05:4c:f3:c0:fd:25:3c:b5:0c:d0:84:e9:34:73:26:
4b:ed:83:c2:28:5f:c0:34:6d:ef:3c:f6:ac:5c:bb:
13:a8:a9:a2:30:f3:0b:79:2b:d4:a9:d2:2f:9b:c6:
5f:ce:aa:bf:0b:69:1b:f4:87:79:9b:66:97:5e:db:
5c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:24:17:90:B1:10:26:72:CC:C1:80:A6:63:8E:BD:6E:7D:A0:0C:64
X509v3 Authority Key Identifier:
keyid:96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:43:e0:69:9a:e1:80:ab:b3:19:93:91:83:fc:5e:5f:c0:79:
8b:09:03:7c:c4:05:d0:16:3d:59:66:8d:29:9b:0f:4d:f2:e8:
6e:14:25:4a:c8:87:5d:3a:67:7b:58:24:64:a4:a1:cf:e9:8a:
52:5c:67:62:32:6a:68:4d:81:bc:57:d4:52:05:ab:1f:f3:bc:
6e:fe:df:64:0e:d3:6f:4b:58:d5:e8:d5:02:50:83:d5:a4:0a:
0c:3f:04:4a:5d:04:df:83:32:14:3b:87:c0:57:5e:45:dc:fa:
cd:f0:ea:75:bc:c0:12:63:14:4d:b6:3d:e9:0d:52:d0:a8:1e:
37:ab:69:29:bc:c8:90:58:ae:f5:51:46:79:d2:1e:1f:c0:05:
60:57:0b:7c:3b:49:38:12:38:78:d6:7b:51:90:9c:08:de:1d:
f5:b3:5c:ed:42:97:f6:0a:2d:76:dd:8a:6a:63:f6:9d:4c:0e:
1b:74:c4:5e:2a:64:e1:9b:e3:cc:5d:68:c6:9e:54:07:35:db:
dc:61:8f:c0:4f:30:f9:85:a1:01:46:87:a6:37:7f:c7:36:39:
4f:1b:b6:d0:9c:c9:42:f2:ab:b7:cd:f9:80:85:a1:13:64:46:
4e:81:f0:30:e8:b9:d7:ea:54:6e:1d:87:f3:92:90:64:9a:a7:
d0:f6:0a:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:02:50 2025 by rpki-client