Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
File: lkptHqRrxAuqMavE9ByQZn7-Nu0.mft (raw, json)
Hash identifier: koAdgSZxeFuSLosjmEM7CDzVe6gZcH0HjYaObMv1xP8=
Subject key identifier: 97:F3:2D:16:2D:4F:6B:DF:35:63:62:6A:AB:C1:E5:DD:94:E0:69:A1
Authority key identifier: 96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
Certificate issuer: /CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Certificate serial: 019A4EF5C40DA4B5A65FA4D1D6BD8F49213C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
Manifest number: 07D9
Signing time: Tue 04 Nov 2025 13:02:00 +0000
Manifest this update: Tue 04 Nov 2025 13:02:00 +0000
Manifest next update: Wed 05 Nov 2025 13:02:00 +0000
Files and hashes: 1: lkptHqRrxAuqMavE9ByQZn7-Nu0.crl (hash: ZNlwtqW7GTCYHhOBiGtoJHwv5Jf0uK1+0PRyNMefc/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:c4:0d:a4:b5:a6:5f:a4:d1:d6:bd:8f:49:21:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Validity
Not Before: Nov 4 13:02:00 2025 GMT
Not After : Nov 5 13:02:00 2025 GMT
Subject: CN=97f32d162d4f6bdf3563626aabc1e5dd94e069a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:9d:fc:79:a3:e2:a7:71:45:f6:a4:f7:02:83:
ce:f1:3f:6f:3e:16:8f:7d:54:c8:5f:79:db:a3:4d:
c4:89:04:b5:53:14:a3:d6:e8:9c:dd:52:59:d3:b5:
95:17:09:96:55:3d:32:2a:28:9a:92:b3:18:9a:a2:
f2:22:9e:7d:f7:ad:9d:b6:3c:d1:01:43:6a:75:cd:
1f:ef:e5:1a:8b:21:d4:f4:a9:f8:1f:2f:d8:aa:3a:
03:36:bf:48:1c:8f:62:fc:96:17:7c:40:34:04:84:
9f:54:cc:ad:6b:6b:cc:fa:48:82:e4:7c:ac:8c:c8:
95:8d:b3:54:d4:99:57:1e:2e:c5:b7:9f:50:ba:45:
b9:e7:67:9a:b4:99:bd:65:dd:ad:da:8f:f9:c3:53:
63:3a:97:dc:1c:d5:33:77:2e:47:40:80:82:c8:6f:
46:35:f2:13:45:b7:20:bf:5e:be:7a:57:44:c2:0c:
c4:22:f3:b8:ea:20:4b:0e:40:97:bc:9a:ec:ec:b0:
39:c6:88:f1:d2:a0:5e:a3:bc:4e:d9:12:c4:f5:12:
a8:43:b7:78:99:8b:88:f3:ee:a7:1e:c4:10:fd:fc:
48:43:ce:4b:e2:c0:70:0a:7f:6c:12:ef:cb:38:df:
4a:a6:4c:96:45:ec:90:9e:df:18:4b:e4:51:a7:dd:
c0:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:F3:2D:16:2D:4F:6B:DF:35:63:62:6A:AB:C1:E5:DD:94:E0:69:A1
X509v3 Authority Key Identifier:
keyid:96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:56:46:e0:9d:cf:eb:dd:0b:c7:24:c0:b8:bb:09:74:a8:3a:
72:3e:98:61:c8:13:c6:f8:e2:25:57:1e:7e:6a:66:bf:85:bf:
be:86:93:c0:3c:df:08:f9:2c:85:ba:c1:15:2f:37:f2:25:33:
ec:c9:21:ac:67:f2:08:d7:62:ae:30:09:1b:31:86:b8:c4:0b:
89:19:ed:2d:03:0a:2a:c6:57:26:d3:75:e7:6a:38:63:25:01:
44:ca:83:ff:cb:60:c1:32:a3:2e:9f:a7:8f:6e:09:b7:62:0e:
03:47:a4:2f:f9:00:9c:6c:39:39:a8:1d:90:45:c5:fe:3d:4c:
c6:6b:2f:8e:a0:8e:b7:43:ed:7a:e5:b6:c0:56:db:5d:0c:d8:
f0:5f:bc:4b:89:29:5c:1d:ef:f7:68:7b:89:57:b3:61:eb:00:
cc:5b:04:9c:cc:cc:34:ae:0d:48:ed:b9:03:ef:25:14:e2:a4:
86:52:e5:4a:e6:3c:db:17:51:e1:33:aa:3d:9d:da:46:75:dc:
ed:c2:22:c8:c1:31:74:dc:d7:da:6c:7f:cc:86:c4:b1:25:c2:
98:97:3c:f1:4d:80:b2:52:b5:c0:16:82:2f:76:b9:59:0b:2f:
b9:6c:98:08:05:89:0c:3a:c1:37:38:57:ea:79:27:af:d5:96:
0c:8b:c5:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:47:43 2025 by rpki-client