Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
File: legTEe8dNuzG0SXjbILCb5FbDfc.mft (raw, json)
Hash identifier: C38bSkUwPHcE82Gtnf3AiGeezry3jfbO9vVU27nT3dA=
Subject key identifier: 7A:92:72:6E:05:04:F0:58:80:DC:01:5A:61:15:04:7F:C1:6A:9C:2F
Authority key identifier: 95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
Certificate issuer: /CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Certificate serial: 0199FBEBC5EDBE2D206A06F94CDDEA7AD752
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
Manifest number: 1244
Signing time: Sun 19 Oct 2025 10:02:36 +0000
Manifest this update: Sun 19 Oct 2025 10:02:36 +0000
Manifest next update: Mon 20 Oct 2025 10:02:36 +0000
Files and hashes: 1: WYTqj2Ru4b6Ds31lFp0qL0GBiG0.roa (hash: TiMpifh1/6heVxOwrxdYBK/lz/TeczLDX2jTHHgJqNw=)
2: legTEe8dNuzG0SXjbILCb5FbDfc.crl (hash: n4ZbfN26lA57n/8DvX5w5riT0abL47HiifY5eNSigiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:c5:ed:be:2d:20:6a:06:f9:4c:dd:ea:7a:d7:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Validity
Not Before: Oct 19 10:02:36 2025 GMT
Not After : Oct 20 10:02:36 2025 GMT
Subject: CN=7a92726e0504f05880dc015a6115047fc16a9c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:e2:db:be:ed:22:2f:f1:6c:70:7e:98:63:2b:
20:3a:16:7a:e7:40:09:89:12:16:5f:fd:5d:00:76:
ce:c3:a3:4a:a0:73:9a:e4:16:bb:8a:4b:f0:05:c6:
78:c1:db:38:1b:0e:54:13:4a:5f:37:35:6c:6c:df:
4a:c1:17:c9:b2:df:13:80:5e:7c:f7:6e:16:a2:51:
8d:c1:24:4e:06:99:73:db:73:b7:e6:47:cc:65:6a:
12:94:3a:d8:56:a0:5c:97:4a:33:f8:4e:d4:a4:e4:
fb:e4:5d:97:fd:fb:94:c4:09:8e:3d:92:c2:5b:da:
95:84:a5:23:5f:e6:59:33:76:a4:d7:9a:bc:49:53:
57:00:0e:dc:e3:7f:c5:b5:01:f5:38:d2:ab:96:bd:
3a:f9:28:a5:fd:b5:08:91:2b:84:25:97:5b:80:2f:
8e:f9:24:74:6c:86:01:3a:93:24:60:38:f2:4e:61:
96:2b:96:88:6f:fa:cc:bd:aa:8b:f4:89:d0:ee:cd:
32:e8:e1:86:e0:81:56:ac:ad:28:39:b7:46:41:2f:
46:f6:dc:0c:94:76:3b:87:30:83:09:26:59:af:63:
9d:93:1a:78:a1:7c:05:cf:5a:4c:2f:07:3c:21:d3:
88:ce:01:ae:f9:0d:a1:e9:e8:c1:45:ec:63:b2:79:
23:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:92:72:6E:05:04:F0:58:80:DC:01:5A:61:15:04:7F:C1:6A:9C:2F
X509v3 Authority Key Identifier:
keyid:95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:d7:5d:07:38:8d:5f:78:13:21:3e:25:82:12:63:5d:b3:4a:
c3:9e:00:fb:4e:9b:c2:ef:84:e1:83:48:9a:7c:2d:c3:34:95:
4a:2d:cd:bd:c2:f9:96:db:ce:e6:73:e9:1e:b8:92:80:cf:dd:
e7:f1:30:10:d0:2f:f0:67:92:30:0d:aa:3c:37:18:e5:66:f1:
0b:f2:3c:85:0d:51:3a:45:f7:38:7a:db:a4:15:9d:44:f8:11:
67:07:ab:d3:23:7d:20:76:19:80:f8:cd:00:59:47:0d:32:7b:
1e:0a:2d:e4:fe:60:a7:b3:42:c4:d0:9e:a7:3e:b3:37:b9:0e:
78:bf:77:74:b5:bb:46:90:80:b6:01:33:82:05:ad:8f:99:ef:
61:86:fd:c9:1e:59:55:00:5a:21:65:12:c7:2d:1e:40:d9:83:
77:ba:64:3c:37:12:5f:5f:e2:b4:9f:46:b8:3f:a6:8d:ce:93:
3a:90:2d:84:8a:d0:07:01:fc:8c:1d:61:0e:22:c8:c9:c1:23:
f7:2e:79:67:f9:87:70:ac:21:87:01:23:c3:7d:78:d4:bd:43:
85:02:e0:f6:bb:1e:bb:6d:71:c5:7c:50:9d:f3:3e:fd:24:52:
a8:e4:bd:29:56:6d:c9:a2:ae:f9:f2:62:23:a5:31:2b:79:6c:
d2:98:f4:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:13:26 2025 by rpki-client