Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
File: lefcaIWMBglOD0Moi0hlibSD4_M.mft (raw, json)
Hash identifier: bjE2LPaRmG/7j0codDBK8cDmuvMnvARdhWcocnTVM1I=
Subject key identifier: 20:DC:AF:CB:7A:DE:C5:05:14:BE:5E:38:FB:07:9E:4C:4D:A1:23:7A
Authority key identifier: 95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
Certificate issuer: /CN=95e7dc68858c06094e0f43288b486589b483e3f3
Certificate serial: 019CAB6BF52CA389B4D256455914F7E725C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
Manifest number: 0F61
Signing time: Sun 01 Mar 2026 22:01:44 +0000
Manifest this update: Sun 01 Mar 2026 22:01:44 +0000
Manifest next update: Mon 02 Mar 2026 22:01:44 +0000
Files and hashes: 1: lefcaIWMBglOD0Moi0hlibSD4_M.crl (hash: a+YvII6GWC76jTutY2oJQhtHIEX6+nFb/1ac7P9aiso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:f5:2c:a3:89:b4:d2:56:45:59:14:f7:e7:25:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e7dc68858c06094e0f43288b486589b483e3f3
Validity
Not Before: Mar 1 22:01:44 2026 GMT
Not After : Mar 2 22:01:44 2026 GMT
Subject: CN=20dcafcb7adec50514be5e38fb079e4c4da1237a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:16:8a:f5:a9:e1:8e:18:e6:df:12:53:b7:e8:
db:db:f9:7e:ed:50:01:89:a3:cb:e2:40:0c:17:8e:
ab:72:f9:14:25:61:3f:78:5f:02:90:ab:36:e5:c8:
11:d8:47:36:81:62:f3:f1:42:40:bf:91:86:e3:88:
14:1a:0d:57:69:27:7f:ea:d6:96:9d:34:d0:d7:7f:
a4:be:4a:75:e3:f5:00:34:64:b0:94:ea:ce:5f:cd:
5d:f1:22:04:56:32:f6:b3:48:f2:cd:64:50:6d:4d:
00:a9:5f:d2:4e:64:48:f6:05:01:af:03:13:db:b1:
d1:d4:92:ea:d0:43:40:0d:60:82:0d:26:58:5d:29:
db:c8:0d:30:82:b2:a0:be:58:2d:05:c7:84:68:29:
84:b9:72:1b:c9:89:28:ca:14:56:7c:5e:3d:a2:32:
fa:38:eb:7b:bc:46:3b:d4:a1:9b:b3:35:cb:f9:63:
ad:19:e9:e0:d7:a5:ad:50:64:f7:dc:45:dc:bb:8e:
47:c3:28:24:f8:2a:7b:47:c7:be:74:77:ef:84:d0:
b1:75:e4:98:27:72:ff:9d:6d:28:43:50:33:f6:d8:
cc:95:63:79:87:ea:76:2f:06:1d:1d:8f:6f:f9:63:
54:bc:02:5b:c9:3a:17:12:d5:2b:60:4c:4b:35:e7:
9b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:DC:AF:CB:7A:DE:C5:05:14:BE:5E:38:FB:07:9E:4C:4D:A1:23:7A
X509v3 Authority Key Identifier:
keyid:95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:f2:3b:06:45:eb:18:1e:af:68:1f:d9:4e:35:be:f7:c7:bb:
3b:f1:68:da:48:51:3b:86:42:1f:7f:46:35:41:72:f2:75:01:
65:77:2a:6b:3e:8c:c0:63:b7:98:af:53:c9:9b:33:25:ec:07:
92:5f:84:de:a9:80:83:31:2e:04:5b:8d:e0:8f:77:b6:60:5e:
b9:7a:7c:46:21:6e:98:8d:99:e4:80:8d:c0:e6:a4:e7:af:a0:
c2:c5:8a:b9:80:21:70:bf:7d:a5:56:2f:52:aa:1e:85:9d:e1:
9e:7a:cc:a9:59:ee:9b:5b:b2:7e:4c:ad:b3:6a:17:b9:88:0b:
44:1c:c3:dc:92:e8:7b:7f:53:a9:2c:87:0b:fc:09:28:48:4b:
6e:f9:85:58:8c:08:04:74:86:10:6e:2f:2b:5b:3a:29:b8:81:
2f:dc:27:f3:ae:f9:e4:89:c1:65:dc:aa:28:0c:8b:c2:e8:2d:
59:84:c2:71:29:7c:ef:87:53:86:16:42:01:01:0f:da:e6:c7:
73:da:bb:4b:e9:60:11:0e:3a:0d:ee:dd:2c:04:2d:01:a9:42:
6e:8a:fd:5f:46:32:67:24:8e:a9:93:97:c0:2b:1c:d9:5d:9f:
f7:a1:26:fd:cf:fd:dd:d9:6c:e0:56:89:18:96:b8:b1:3f:0e:
53:2f:2e:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:13:56 2026 by rpki-client