Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
File: L42NDO68zXW2BrpJaPXHlG6NR8A.mft (raw, json)
Hash identifier: AoQVnGIbw726AzZtAPc3kKMqIgmdq8zCpDFH1jaR+Zs=
Subject key identifier: BD:AA:16:BD:B4:B2:3A:D1:4C:08:DC:2E:42:6E:D8:9A:EA:C9:AB:55
Authority key identifier: 2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
Certificate issuer: /CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Certificate serial: 0199FD6B26EF3770273C6DDA33C9AF10E15F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
Manifest number: 0CD0
Signing time: Sun 19 Oct 2025 17:01:21 +0000
Manifest this update: Sun 19 Oct 2025 17:01:21 +0000
Manifest next update: Mon 20 Oct 2025 17:01:21 +0000
Files and hashes: 1: KvErQkIa-7bptS15YPSXyRA9CSc.roa (hash: oCFio8e2SnoXuYWAJDUSo/+OUQCG41H/KpmIERPwk3M=)
2: L42NDO68zXW2BrpJaPXHlG6NR8A.crl (hash: r6irlwvyrP3TQHnedZzGxO8Clhk27q+FHp5H+qWWntA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:26:ef:37:70:27:3c:6d:da:33:c9:af:10:e1:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Validity
Not Before: Oct 19 17:01:21 2025 GMT
Not After : Oct 20 17:01:21 2025 GMT
Subject: CN=bdaa16bdb4b23ad14c08dc2e426ed89aeac9ab55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:56:22:5d:d2:ae:a3:5c:94:a2:d4:0c:fb:c7:
92:37:51:f7:a2:c6:fa:e1:ed:8e:62:28:9e:5b:d5:
91:54:13:72:42:cc:a8:8e:88:b1:39:48:eb:c3:18:
a3:77:03:f1:7e:6f:1d:a6:0c:b0:2c:06:6d:47:54:
91:f7:3d:3f:ea:31:24:2b:2b:3a:1c:7d:d4:ee:83:
6f:b3:b2:4e:14:b7:d4:fc:c9:ee:87:08:c9:1e:2a:
85:25:82:8c:d4:bc:b1:f7:55:4e:1d:1b:ac:d3:a7:
8b:6e:ff:d4:31:54:45:84:4a:01:a5:2b:79:74:d9:
fa:24:1d:9c:67:52:eb:ad:87:0c:6d:27:9a:78:c2:
69:3c:d7:87:a3:4d:0f:d8:13:f2:c1:16:ee:93:d6:
05:4c:45:ed:e7:8e:5d:87:6a:21:99:7e:ed:3b:f9:
a1:e8:a3:78:a2:ee:68:ed:b7:03:9e:b0:43:0c:ad:
3b:b2:53:bc:25:f3:81:b0:bf:45:20:84:79:cd:22:
e3:2e:e4:c6:ea:74:12:37:09:80:a6:c3:9a:ba:68:
aa:2a:7f:5e:b3:52:a7:3d:b7:6d:f6:6c:a9:bd:88:
c0:16:7e:5f:02:2d:c6:a9:8d:57:69:05:77:c2:ab:
3b:b6:ee:11:93:6e:88:83:b0:05:96:15:59:cc:63:
69:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:AA:16:BD:B4:B2:3A:D1:4C:08:DC:2E:42:6E:D8:9A:EA:C9:AB:55
X509v3 Authority Key Identifier:
keyid:2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:71:ae:65:65:65:ec:03:03:86:8b:80:8d:81:30:40:9f:0e:
38:88:df:c8:a2:82:26:be:a3:82:c1:4c:67:35:4c:41:d9:fe:
dc:7a:b6:d0:6d:df:7f:cd:a6:3b:45:31:f3:6b:5f:4a:e1:a7:
87:91:f7:4f:df:e0:a6:6a:3c:a5:c1:86:7e:ce:f2:1e:b8:a1:
c6:43:7b:22:50:7a:1f:84:59:86:4f:ec:e0:fb:44:ba:c1:65:
5e:cb:f3:f5:f1:30:9b:de:20:f0:bb:d2:10:72:e9:dc:11:71:
70:3d:1d:fb:df:aa:e6:45:b5:de:de:3c:eb:7f:73:99:15:32:
6a:38:33:6c:36:1f:d5:cd:42:c2:0f:b5:e9:18:e9:ed:fb:03:
e4:3e:84:33:81:30:56:0c:87:2a:bb:04:4c:4a:6c:98:c6:6b:
6f:20:c6:83:15:b1:24:b0:3c:96:14:60:52:5e:44:2c:30:5c:
e9:2f:e9:1c:e2:39:97:f7:75:da:24:16:82:d8:c1:0b:05:72:
a1:e9:2c:27:de:7c:9f:37:55:54:ac:54:56:a9:35:dd:03:27:
38:40:f7:0b:80:1e:b3:53:59:16:9f:9c:4a:96:9f:63:1f:9a:
c1:b9:f3:b5:99:80:ac:8c:5f:75:9c:61:0f:89:0c:f9:68:cc:
56:82:d2:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:59:45 2025 by rpki-client