Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
File: LofD1fRf7zjBBbk91E3ST1vuYOc.mft (raw, json)
Hash identifier: qXF/4pA6EEjvnQxWb1u2IB+2C+Q5zp5VbQikc0d6Ack=
Subject key identifier: 80:7A:F4:ED:F8:D9:60:FE:6D:67:55:92:42:44:4C:9A:F7:7A:EC:5E
Authority key identifier: 2E:87:C3:D5:F4:5F:EF:38:C1:05:B9:3D:D4:4D:D2:4F:5B:EE:60:E7
Certificate issuer: /CN=2e87c3d5f45fef38c105b93dd44dd24f5bee60e7
Certificate serial: 019A4EF5BF561A674896DA848ECBEA2921A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
Manifest number: 0F5D
Signing time: Tue 04 Nov 2025 13:01:59 +0000
Manifest this update: Tue 04 Nov 2025 13:01:59 +0000
Manifest next update: Wed 05 Nov 2025 13:01:59 +0000
Files and hashes: 1: LofD1fRf7zjBBbk91E3ST1vuYOc.crl (hash: 9c4rXVO1k2qR0+9KfhcvB70Rd7rEzd8kWNf3t8kqUHM=)
2: QDqzI6mtk0OSKHPd6aEPhi6zaB8.roa (hash: EsH+qC6DrpZNrpMwjRlDLqXBAg493TRAVaOfxpJfUMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:bf:56:1a:67:48:96:da:84:8e:cb:ea:29:21:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e87c3d5f45fef38c105b93dd44dd24f5bee60e7
Validity
Not Before: Nov 4 13:01:59 2025 GMT
Not After : Nov 5 13:01:59 2025 GMT
Subject: CN=807af4edf8d960fe6d67559242444c9af77aec5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:42:a8:f5:a6:f6:a0:67:06:41:94:60:97:15:
7f:51:e6:86:48:01:1e:b3:d5:02:50:84:55:ac:3c:
03:fe:68:18:00:8e:2c:67:ad:5c:18:34:18:f2:d9:
ea:67:36:89:cf:00:36:71:89:e4:31:90:66:c0:dd:
be:a8:3f:26:6b:79:4b:d6:ea:0f:0d:38:84:02:18:
b4:69:72:78:15:90:67:af:17:0a:6d:b7:47:c2:b4:
cc:ea:4f:00:86:d8:41:fc:97:f0:b0:05:d6:3a:f6:
0f:4c:ca:4a:5f:d9:3a:f7:ab:b6:f3:a8:47:96:06:
4a:95:91:39:e8:32:91:47:e6:6c:d6:60:16:9c:81:
2e:d0:05:9e:e6:3f:52:dc:41:a0:d4:8e:fa:a8:14:
cb:b3:da:20:86:b7:fd:d5:52:f5:f9:ca:65:32:b1:
e5:95:5d:04:ad:ce:06:a4:9f:20:ed:4f:75:cd:65:
ac:f9:a4:83:25:55:fb:99:45:66:1f:f2:fd:dd:0c:
cb:2b:bb:38:9b:ab:bf:65:ca:54:bc:98:f8:4e:a1:
52:1e:7f:55:b9:ed:79:15:85:bd:88:5d:2b:5f:d3:
b0:6e:3a:86:06:92:85:95:13:79:32:e3:39:c9:50:
c0:f9:59:6d:d9:66:a9:3c:36:f7:c5:d4:2e:39:69:
78:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7A:F4:ED:F8:D9:60:FE:6D:67:55:92:42:44:4C:9A:F7:7A:EC:5E
X509v3 Authority Key Identifier:
keyid:2E:87:C3:D5:F4:5F:EF:38:C1:05:B9:3D:D4:4D:D2:4F:5B:EE:60:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:bc:14:1f:db:53:93:52:07:05:e5:6c:50:f0:5f:8c:b0:04:
97:cd:9b:a4:48:fc:6d:b6:cc:a0:8f:21:5c:1d:e3:c7:38:01:
9a:94:b8:04:e3:67:51:3a:77:89:52:2c:a2:3a:a6:fe:7c:c5:
f1:77:44:31:df:ac:b4:d1:b7:78:13:2e:9d:ee:af:ae:6e:7b:
11:a4:16:b8:29:19:26:d2:ca:da:1f:41:1c:22:ca:7c:95:c1:
01:15:87:39:06:1a:01:a3:04:04:73:23:15:89:80:bd:9e:41:
4a:19:80:2f:33:e0:21:7d:90:e0:9e:b6:22:29:cc:e3:1c:eb:
a3:a1:87:f2:f2:73:01:a0:8c:a7:9f:f3:b8:31:13:64:89:31:
61:94:31:af:27:76:94:c6:31:98:44:6d:2a:2b:b1:c2:1d:29:
ef:0a:4b:4a:1c:de:94:af:30:ba:6d:20:98:d4:3f:7f:4b:89:
76:d4:94:47:18:c1:b0:df:ec:55:0e:3f:5d:6a:83:72:4c:7e:
a1:d6:79:f9:d3:fd:05:08:d7:4d:ae:76:e6:9d:bd:56:8c:43:
82:b1:d9:96:c7:03:5e:f3:af:12:06:8b:b8:12:0a:5d:5a:2f:
91:fd:6c:9c:74:63:59:7a:af:b9:ab:f3:a5:d6:06:d3:f0:a3:
25:24:6d:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:43:27 2025 by rpki-client