
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
File: Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft (raw, json)
Hash identifier: pRAS5N3xKzLBuQOyfqvMcsYvLfVju+l8VrrGdDGV86U=
Subject key identifier: 6B:B3:C9:C2:46:0A:38:D7:FB:13:E3:50:71:EE:9B:06:2F:AD:D9:BC
Authority key identifier: 2D:EA:78:B1:2D:43:5B:97:DE:FB:F9:2C:74:26:5C:34:33:BB:D0:29
Certificate issuer: /CN=2dea78b12d435b97defbf92c74265c3433bbd029
Certificate serial: 0198D515FF495D941281EC06BD1F3EE9C0D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
Manifest number: 0A9D
Signing time: Sat 23 Aug 2025 04:00:45 +0000
Manifest this update: Sat 23 Aug 2025 04:00:45 +0000
Manifest next update: Sun 24 Aug 2025 04:00:45 +0000
Files and hashes: 1: Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl (hash: hLCRhJ99JZa5pw7ZSxzdO9/BkB3OyovYZAQGc6myoBM=)
2: qHOxf7Ag_8u24Noxu2kog83ptRg.roa (hash: oxynD/JaNR7ZZdHYCXCJyIHb4WE74vGw/oNyjiWqUm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:ff:49:5d:94:12:81:ec:06:bd:1f:3e:e9:c0:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dea78b12d435b97defbf92c74265c3433bbd029
Validity
Not Before: Aug 23 04:00:45 2025 GMT
Not After : Aug 24 04:00:45 2025 GMT
Subject: CN=6bb3c9c2460a38d7fb13e35071ee9b062fadd9bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e2:8d:40:08:bf:93:eb:a8:57:cb:af:fb:f1:
fe:a0:06:62:cf:02:7a:6b:f9:82:b1:03:df:1b:4b:
33:66:b4:07:68:12:36:dd:bf:84:36:29:19:5f:ef:
6a:39:66:da:f2:f4:4f:aa:28:48:ae:da:c5:0e:7b:
1c:50:a4:b4:18:5f:06:00:1d:ef:e8:81:41:4d:90:
35:00:7e:e8:e2:9a:28:6f:02:27:27:e5:ff:e3:61:
7e:a8:d7:d4:74:ef:6e:b1:46:d1:70:ae:0e:4f:88:
7a:d2:2c:03:4c:e8:c7:12:0c:24:93:68:4a:94:9c:
18:5d:72:29:41:d6:e3:7a:28:cb:ae:97:58:9e:50:
97:5f:87:15:9d:ad:c3:d0:ef:fa:d8:f4:2b:e1:eb:
45:e3:6f:d5:a7:1e:73:da:e3:c5:0b:73:90:a1:f1:
cc:bc:be:be:4e:8a:6b:33:a0:62:33:bc:4a:06:76:
77:65:70:b3:5a:29:9c:77:28:6d:68:ed:e2:2c:fa:
e6:54:dd:72:0b:ec:5e:ab:8c:71:94:88:8b:df:0f:
62:5c:4c:5f:e2:45:8f:5e:b5:28:0a:c0:bc:01:ed:
c7:d6:90:1b:30:0a:98:7d:a4:89:b4:90:95:45:f1:
df:68:0a:b8:9d:7d:bb:cb:fd:e7:86:44:ab:db:b8:
df:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B3:C9:C2:46:0A:38:D7:FB:13:E3:50:71:EE:9B:06:2F:AD:D9:BC
X509v3 Authority Key Identifier:
keyid:2D:EA:78:B1:2D:43:5B:97:DE:FB:F9:2C:74:26:5C:34:33:BB:D0:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:cf:f1:fa:fe:b2:04:0d:c7:ce:86:4c:c2:89:b9:3c:4c:66:
74:b9:6d:cf:66:52:48:81:c7:c1:4f:cd:94:0a:a0:38:3a:f6:
21:74:a9:7b:97:96:d6:3f:86:bc:b6:db:9e:02:ba:60:a7:20:
a1:62:3f:0e:26:0f:04:31:e9:c6:b8:52:a9:58:41:f2:2b:e0:
65:36:75:0c:45:d5:06:e2:d2:37:b7:3f:80:e1:ee:ff:12:b5:
30:a5:a5:8c:ba:eb:e7:b1:00:73:a2:ad:0a:19:4d:e1:eb:ca:
6c:d4:56:e4:90:34:37:d3:63:e4:13:b8:1c:74:bb:2c:1c:09:
be:49:c2:87:a2:64:01:35:93:05:23:04:37:9b:2f:ef:b9:0c:
c0:62:9f:54:a4:70:57:d1:ac:af:68:aa:20:b3:2e:38:6a:71:
05:f2:c1:f8:a2:7a:8f:b1:01:1a:45:fd:6c:77:16:ff:3f:2d:
6c:8e:4a:8f:4a:71:31:9d:aa:13:4f:22:d4:b2:25:45:2e:aa:
bb:a8:ff:a5:28:99:6d:f9:99:fc:bd:62:81:9d:64:f1:f7:8c:
83:55:ae:e3:6c:22:2e:c3:99:81:11:80:60:85:47:08:3b:af:
e1:89:08:c3:f2:92:cd:e1:a6:38:e0:2e:57:00:eb:21:0a:91:
10:d8:31:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:03:06 2025 by rpki-client