Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
File: L42NDO68zXW2BrpJaPXHlG6NR8A.mft (raw, json)
Hash identifier: Np8xA2nqbWA93gnlSkXPaf4asuxzStw0huc1YThIWZs=
Subject key identifier: 22:7E:58:CB:A7:A6:4D:BD:EC:95:18:63:7B:0A:A8:57:05:6C:FA:0F
Authority key identifier: 2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
Certificate issuer: /CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Certificate serial: 0198D5F1AEEA86A3D53EC5B3796A7E54B6D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
Manifest number: 0C37
Signing time: Sat 23 Aug 2025 08:00:42 +0000
Manifest this update: Sat 23 Aug 2025 08:00:42 +0000
Manifest next update: Sun 24 Aug 2025 08:00:42 +0000
Files and hashes: 1: KvErQkIa-7bptS15YPSXyRA9CSc.roa (hash: oCFio8e2SnoXuYWAJDUSo/+OUQCG41H/KpmIERPwk3M=)
2: L42NDO68zXW2BrpJaPXHlG6NR8A.crl (hash: +aMbz86mwR5NbpSyu/Pa+t3CoiKSv2ci6YgB/sl8UJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:ae:ea:86:a3:d5:3e:c5:b3:79:6a:7e:54:b6:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Validity
Not Before: Aug 23 08:00:42 2025 GMT
Not After : Aug 24 08:00:42 2025 GMT
Subject: CN=227e58cba7a64dbdec9518637b0aa857056cfa0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8c:31:64:fb:4f:3f:ed:1d:d1:9d:0f:81:63:
13:ea:a6:2e:41:82:d3:d3:d8:ec:61:7d:b7:6a:78:
ac:ca:b8:cb:5f:08:51:84:6b:3e:aa:d9:cc:6d:4f:
ba:5b:cd:21:04:c4:9a:e4:a2:51:f9:b5:ce:1a:3e:
15:8c:2a:3e:50:46:53:ac:8b:e7:21:e5:68:27:19:
95:13:42:9b:86:15:b7:0c:dd:23:57:32:e8:c9:a4:
a3:49:01:a2:58:04:78:25:4a:fc:b0:ee:00:ef:f7:
f5:12:2b:1d:3b:71:9d:5f:87:ea:35:59:61:e0:14:
49:8c:79:ff:75:23:a7:5a:e8:ba:07:97:3c:cd:c5:
cf:39:52:87:84:40:99:4e:09:88:56:99:a8:65:87:
63:e5:7b:d7:67:66:f9:8f:76:15:36:06:79:56:67:
3b:52:47:b8:1c:70:17:b4:6b:85:fd:5e:91:b1:c2:
47:1a:f2:cb:0e:f1:30:2d:6a:a0:d2:c3:b2:61:9e:
fe:c3:68:8d:d5:2e:08:89:59:49:09:f7:d1:0a:7b:
1c:07:42:7d:e8:a5:d5:be:54:d3:3f:5f:38:f7:bd:
49:e9:41:85:38:db:d2:18:7f:b9:12:c7:bf:0d:85:
b9:0b:66:9c:27:d3:d2:a2:77:13:5d:81:27:2b:d5:
e4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:7E:58:CB:A7:A6:4D:BD:EC:95:18:63:7B:0A:A8:57:05:6C:FA:0F
X509v3 Authority Key Identifier:
keyid:2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:10:d4:19:a1:ce:eb:ad:a6:db:09:1d:be:30:eb:d3:0d:94:
25:e8:d8:7d:69:72:fa:90:ef:dc:b6:84:52:5c:47:b1:32:75:
1d:37:8c:67:e1:44:74:be:fe:70:13:ba:e3:4f:30:8a:00:09:
5e:cb:3c:b1:60:fd:02:3f:0e:47:9c:75:7d:0b:28:4e:2d:d5:
78:9e:87:c2:6d:10:ea:60:cf:e1:1d:3a:19:1c:44:47:ee:86:
15:40:19:54:90:ef:0c:bb:d8:f3:2d:e2:3a:e5:fd:0a:91:a4:
7e:49:f2:da:71:a4:67:83:50:a9:e9:87:27:9b:8f:24:3d:76:
0e:5d:a5:9a:e1:b8:e2:a3:26:a4:57:56:cb:b2:40:34:a0:0b:
29:e8:f4:8b:2e:5e:0a:d8:db:d4:53:6e:49:6d:55:6a:c3:17:
11:1c:3a:e1:c5:d2:71:07:c8:52:12:e1:c5:e2:a3:74:97:18:
b6:e5:ff:34:19:89:a3:ea:0f:81:e7:a9:08:8b:d1:96:27:05:
0f:e4:fc:d5:86:4d:ea:9b:af:25:72:35:c3:3e:89:4c:18:86:
76:f9:95:96:52:a2:de:df:5a:b4:20:25:8e:93:6e:a6:21:3d:
9f:41:c2:57:ba:4e:56:2d:f9:ec:45:6f:a6:5d:f5:49:9f:c9:
e5:71:00:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:32:50 2025 by rpki-client