Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
File: PtWjaKny40iTSpFIiEVZQ2I_lus.mft (raw, json)
Hash identifier: O7Cb9VY97y8rlIf0tAg8UBRrBIBWyHvGaQP++M2n0Fw=
Subject key identifier: 92:30:26:EA:E3:6B:A5:34:34:A8:1A:AC:21:21:2E:59:42:3D:75:D2
Authority key identifier: 3E:D5:A3:68:A9:F2:E3:48:93:4A:91:48:88:45:59:43:62:3F:96:EB
Certificate issuer: /CN=3ed5a368a9f2e348934a914888455943623f96eb
Certificate serial: 019896A6F1D1B74314512B1D487643775F60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
Manifest number: 120C
Signing time: Mon 11 Aug 2025 01:02:59 +0000
Manifest this update: Mon 11 Aug 2025 01:02:59 +0000
Manifest next update: Tue 12 Aug 2025 01:02:59 +0000
Files and hashes: 1: PtWjaKny40iTSpFIiEVZQ2I_lus.crl (hash: 2x1zhdSvtn9W6xwvbLVC9G/bOz2c7le6eVnsy7zsKBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:f1:d1:b7:43:14:51:2b:1d:48:76:43:77:5f:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ed5a368a9f2e348934a914888455943623f96eb
Validity
Not Before: Aug 11 01:02:59 2025 GMT
Not After : Aug 12 01:02:59 2025 GMT
Subject: CN=923026eae36ba53434a81aac21212e59423d75d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:d1:6c:71:f9:d0:ec:09:98:ff:64:a9:dd:bb:
6f:57:29:61:73:e4:78:bf:d6:41:93:b9:22:90:49:
9b:95:7a:d4:ac:25:35:87:5c:a0:54:e9:dd:13:3d:
4d:c4:83:70:76:3e:8b:4a:a8:21:fa:0f:a0:97:25:
20:f4:51:c7:27:0d:6f:d9:2a:85:91:38:4e:29:2b:
9c:20:d9:0f:87:53:9e:44:f0:c2:6c:84:af:0c:47:
86:ee:a0:c9:cf:1b:2d:cd:39:c1:38:0c:df:41:29:
e8:ae:d5:27:37:e3:b3:7b:6b:9b:2e:17:cf:29:d2:
47:f8:4e:07:da:01:7b:5c:2d:24:bc:b1:3a:bb:cc:
c2:b7:15:97:cd:f6:89:d9:44:56:72:27:7a:c9:ee:
61:76:48:e7:bc:f1:40:be:e7:30:e1:86:84:ba:20:
9e:66:23:04:7c:4a:8b:4f:9d:a3:19:35:60:d3:0b:
61:a9:7c:18:1b:88:43:d4:a6:17:71:10:b0:e5:25:
9a:c4:c1:9d:39:99:80:1b:8c:88:c8:0e:94:91:a4:
eb:11:5c:86:5f:f2:48:24:b5:ea:ed:9e:25:8e:69:
25:ff:1c:f8:2f:74:7a:4e:32:d0:28:7d:f8:b4:a5:
a4:48:23:3f:78:14:42:f4:b0:87:b5:af:a1:2e:0f:
5a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:30:26:EA:E3:6B:A5:34:34:A8:1A:AC:21:21:2E:59:42:3D:75:D2
X509v3 Authority Key Identifier:
keyid:3E:D5:A3:68:A9:F2:E3:48:93:4A:91:48:88:45:59:43:62:3F:96:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:22:03:17:6b:21:c8:73:5b:30:b3:92:3e:42:34:23:5f:6f:
fb:fe:ab:cf:08:70:36:b4:a8:86:cd:5b:01:03:58:94:ed:c0:
41:0d:4d:b6:69:78:da:53:13:5a:a4:8b:1e:84:d0:fb:f7:da:
4b:7e:e8:67:78:cc:54:61:07:a8:76:11:bb:05:0d:4c:4f:ac:
3b:32:05:b3:05:70:0d:06:53:48:b2:fa:c4:ba:9f:3b:a4:f2:
b8:de:6d:e8:72:e7:bd:f8:4e:13:72:df:7b:d7:eb:60:84:81:
bc:94:8f:29:44:1a:0e:b5:45:40:8a:ad:46:17:70:21:e0:14:
0a:8b:67:a9:2e:c4:be:40:ef:33:49:7f:5a:cf:34:22:7a:fc:
b0:1d:9e:86:93:8d:c0:47:74:b1:49:12:12:47:cf:75:32:eb:
77:cf:fb:0b:e9:06:d4:60:4c:d6:d8:21:7a:f0:49:40:93:f7:
76:9e:f4:b2:f0:4b:22:39:d5:7c:94:e8:f4:5b:11:f8:48:01:
9f:9d:c8:f0:80:8e:31:96:08:92:48:f9:c2:92:67:86:ca:f2:
b7:0a:39:86:18:85:d5:29:f2:77:5d:6f:e6:97:10:2e:08:7a:
0f:fc:5d:56:23:b7:d2:c4:2b:a8:ee:f0:fa:a5:02:9f:90:b3:
f1:53:0a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 05:54:15 2025 by rpki-client