Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
File: LrlwnvMbddaOIgiqvyosPD2Hb8E.mft (raw, json)
Hash identifier: tVoY1CDs2KHFe7XmWeaZU+6f1FxU8CWdjfCMn9QA+x0=
Subject key identifier: D0:BE:16:D3:A4:5D:46:1A:EA:B2:09:5B:15:0C:2F:D2:0D:43:BD:20
Authority key identifier: 2E:B9:70:9E:F3:1B:75:D6:8E:22:08:AA:BF:2A:2C:3C:3D:87:6F:C1
Certificate issuer: /CN=2eb9709ef31b75d68e2208aabf2a2c3c3d876fc1
Certificate serial: 01987E2F0370251CCD367AE848F8C68E20CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
Manifest number: 161A
Signing time: Wed 06 Aug 2025 07:01:06 +0000
Manifest this update: Wed 06 Aug 2025 07:01:06 +0000
Manifest next update: Thu 07 Aug 2025 07:01:06 +0000
Files and hashes: 1: LrlwnvMbddaOIgiqvyosPD2Hb8E.crl (hash: NXir71fkB0DsAK3RT1t4WSDKJapUpWA2MhWtdvx2axs=)
2: pb4QZ95Peoa-v89w9IfVF9OInYI.roa (hash: mVmSldgY3RuIKYBpTP9fbMVJ33NM7M6bAyGk/0LxYwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 07:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:2f:03:70:25:1c:cd:36:7a:e8:48:f8:c6:8e:20:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eb9709ef31b75d68e2208aabf2a2c3c3d876fc1
Validity
Not Before: Aug 6 07:01:06 2025 GMT
Not After : Aug 7 07:01:06 2025 GMT
Subject: CN=d0be16d3a45d461aeab2095b150c2fd20d43bd20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:71:93:6a:ee:38:d6:1d:2c:1e:38:ec:f8:cc:
53:30:1a:e3:e0:52:06:e1:33:c4:cc:d5:9f:7b:ba:
1c:88:04:4e:d8:1b:0b:3c:16:de:d2:ce:e4:6b:97:
e3:8c:1a:57:8b:77:6c:16:e6:dd:95:f3:44:48:24:
c9:e1:8d:b6:6b:73:dc:b7:1e:56:e7:da:2d:6b:b6:
da:3a:85:eb:c2:aa:16:ec:e9:4f:73:ff:88:01:2a:
72:95:ac:59:e3:70:dd:30:90:56:d7:50:6b:dc:1a:
a4:d6:1b:a0:50:0b:65:5e:af:b8:da:bf:11:05:7b:
79:0f:6a:50:d7:a6:60:6d:90:01:1e:88:ab:7e:bf:
2e:82:f9:77:06:a3:1b:55:51:5f:b6:2d:7a:ce:bf:
b8:82:96:3a:62:74:09:9d:a4:11:35:11:65:d5:df:
e4:36:3f:d2:40:5f:c0:13:ce:f3:96:3d:3c:fd:c8:
08:c7:71:97:85:32:92:3b:06:50:d8:9d:0f:38:48:
fe:fd:c4:9b:8a:4f:b7:81:37:6c:91:e9:d1:1b:75:
bc:1a:65:4e:80:50:c9:3c:9c:80:de:40:03:93:de:
3c:1a:35:be:83:53:91:f4:fe:0b:25:e9:86:b3:bf:
7d:79:8e:cd:33:72:26:b0:a6:71:78:0f:d5:1f:36:
da:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:BE:16:D3:A4:5D:46:1A:EA:B2:09:5B:15:0C:2F:D2:0D:43:BD:20
X509v3 Authority Key Identifier:
keyid:2E:B9:70:9E:F3:1B:75:D6:8E:22:08:AA:BF:2A:2C:3C:3D:87:6F:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:96:d8:76:2c:35:27:47:05:07:0f:92:f9:86:8a:b4:0d:7c:
97:fc:7d:cd:30:31:c0:25:76:93:80:a3:87:3d:0a:a1:6a:49:
7d:81:4e:ad:cd:3a:cc:f1:5b:90:99:33:9a:19:a7:2a:b3:bb:
e2:3d:e4:25:83:39:52:e2:2e:f8:da:4f:21:d8:a6:ff:4a:47:
e5:62:bf:33:a1:f7:bf:4e:6a:b0:71:d9:1e:90:bf:f6:93:42:
ce:a8:76:ab:d8:33:74:d2:84:c1:9a:49:85:79:b2:ab:f2:21:
90:cb:d3:46:77:f1:9c:ab:95:d4:2d:24:00:68:cf:a2:e0:68:
55:36:9d:54:c0:65:f3:04:4e:37:37:a0:24:95:c9:1e:40:e2:
a7:01:ff:f1:81:cb:6b:c5:d8:3b:d2:f0:43:2a:64:49:6c:af:
3e:4d:5b:e1:55:e0:59:bb:d2:fd:6f:35:61:97:a4:14:67:27:
69:f3:64:23:fc:88:36:9e:bc:47:15:fa:f6:ec:2a:48:34:09:
0e:72:4b:6d:e4:27:30:58:33:d7:5f:9d:fa:5f:0c:ce:a7:fe:
c5:26:d7:44:f3:f3:2b:af:47:18:4d:ee:12:76:27:53:1e:b7:
08:9b:a1:7c:bd:d6:ce:c1:ad:88:11:b8:43:27:f0:5b:21:56:
65:46:9b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:10:19 2025 by rpki-client