Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
File: Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft (raw, json)
Hash identifier: HgFg8mfwVLR/Nd5G9NIIMTNQJn9+B3FvBh4WeZ7uNSU=
Subject key identifier: 8A:6A:1B:33:1F:1C:6A:C1:91:C1:0D:BA:50:E9:99:00:86:07:8F:0A
Authority key identifier: 2D:EA:78:B1:2D:43:5B:97:DE:FB:F9:2C:74:26:5C:34:33:BB:D0:29
Certificate issuer: /CN=2dea78b12d435b97defbf92c74265c3433bbd029
Certificate serial: 0199FC8F8E51029535DFE0206202343E1DB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
Manifest number: 0B36
Signing time: Sun 19 Oct 2025 13:01:30 +0000
Manifest this update: Sun 19 Oct 2025 13:01:30 +0000
Manifest next update: Mon 20 Oct 2025 13:01:30 +0000
Files and hashes: 1: Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl (hash: tUc6PIZRib3Cxs25YtQDY6UJ1qapAYflpZ3GHyyOzX8=)
2: qHOxf7Ag_8u24Noxu2kog83ptRg.roa (hash: oxynD/JaNR7ZZdHYCXCJyIHb4WE74vGw/oNyjiWqUm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:8e:51:02:95:35:df:e0:20:62:02:34:3e:1d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dea78b12d435b97defbf92c74265c3433bbd029
Validity
Not Before: Oct 19 13:01:30 2025 GMT
Not After : Oct 20 13:01:30 2025 GMT
Subject: CN=8a6a1b331f1c6ac191c10dba50e9990086078f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:be:ab:94:af:91:7c:a1:a3:a8:84:fe:88:bf:
44:6b:49:4e:93:f6:8a:5b:f8:28:5a:93:06:1e:bc:
2a:f9:f8:4c:52:06:ed:62:e5:c3:e6:58:ed:f3:f0:
74:29:6d:85:8d:8d:4c:16:db:c0:2e:19:6a:53:43:
8f:62:1a:aa:e0:ae:19:e9:0f:05:f3:44:fa:fd:d9:
fe:2a:7d:85:61:55:23:f0:31:e2:2a:3a:72:dc:e1:
cb:3b:d3:0d:25:c8:cf:eb:8b:13:68:47:71:e1:3e:
d2:b2:77:60:88:0d:09:f2:3f:bf:72:b6:7c:94:b6:
e3:9a:bb:b2:39:93:74:07:52:ff:96:7f:3f:9f:40:
8b:13:54:c8:a7:fc:34:e3:0c:0d:f4:a1:7a:9c:0e:
21:6f:64:2a:f7:c7:a5:02:1d:83:24:71:82:7e:4d:
5e:51:83:6b:4d:77:2c:f8:de:72:20:e3:6a:1c:dc:
42:a7:ba:30:a7:4b:41:47:f9:f4:f5:d0:21:09:c4:
b0:56:01:0d:d4:08:cc:9f:d1:e6:7a:1f:c9:29:f2:
76:d9:36:e1:d0:22:1e:23:58:e8:29:44:32:9d:db:
9e:a3:33:81:74:15:f4:ee:e2:f2:f1:73:f8:3a:9a:
db:21:d8:ac:29:22:46:66:6f:38:d7:3c:d2:c7:0e:
b4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:6A:1B:33:1F:1C:6A:C1:91:C1:0D:BA:50:E9:99:00:86:07:8F:0A
X509v3 Authority Key Identifier:
keyid:2D:EA:78:B1:2D:43:5B:97:DE:FB:F9:2C:74:26:5C:34:33:BB:D0:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:55:64:4a:b1:81:39:a2:03:74:75:ea:7f:e9:c1:6a:e3:59:
a9:81:92:bc:3e:5d:9b:f6:f5:bb:89:60:87:6e:72:54:c2:99:
44:b0:48:aa:d9:1a:20:d4:f3:c5:dc:5d:d6:be:f5:9f:0b:cb:
39:02:4a:9d:0f:cf:01:b1:a2:ed:3f:44:0c:40:fe:de:af:57:
6b:11:60:cd:0f:cb:5a:34:c6:65:51:63:18:db:9b:a6:e5:8a:
38:7b:99:49:2f:55:af:3a:00:0c:5a:bc:8e:7c:a9:6d:34:ab:
7c:07:83:2b:69:d7:0b:ef:e4:dd:ba:a8:c8:95:c0:8a:f6:23:
df:54:77:d7:b3:d7:ca:bf:d1:db:c7:fe:05:c5:e3:af:48:bf:
d2:f4:7f:ac:87:76:55:6a:48:f9:2b:d8:2f:c8:ca:12:47:d8:
7d:ca:32:8b:96:97:f4:36:90:e4:5a:80:d2:df:49:2b:d1:b6:
fa:9c:ed:32:41:87:9f:65:61:ee:22:09:c4:db:7e:04:4d:7a:
49:1b:5d:db:fe:b4:fb:de:0f:45:5a:2d:33:b3:09:53:06:2f:
a8:f2:a6:93:83:6d:7d:c6:b8:f2:ba:8c:da:bb:d5:fa:ac:b0:
e9:0b:41:c6:32:12:4a:7a:66:55:71:f8:06:87:82:13:a8:ec:
58:cf:33:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:33:51 2025 by rpki-client