Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
File: lkptHqRrxAuqMavE9ByQZn7-Nu0.mft (raw, json)
Hash identifier: AxGUP1QRN44cYCmcoBobXxM5c4cDabNwb0p8PspW6bU=
Subject key identifier: 80:FD:69:1D:1F:99:7C:91:3C:4D:5F:BD:38:13:F3:07:75:07:81:52
Authority key identifier: 96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
Certificate issuer: /CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Certificate serial: 019896A5EE9AFFAF191BEDFF7E00752CDF45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
Manifest number: 06F5
Signing time: Mon 11 Aug 2025 01:01:53 +0000
Manifest this update: Mon 11 Aug 2025 01:01:53 +0000
Manifest next update: Tue 12 Aug 2025 01:01:53 +0000
Files and hashes: 1: lkptHqRrxAuqMavE9ByQZn7-Nu0.crl (hash: xfOEwOjizRuwcZzUVtcd8kqFOH/B/QVjvvQXx7aaHMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:ee:9a:ff:af:19:1b:ed:ff:7e:00:75:2c:df:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Validity
Not Before: Aug 11 01:01:53 2025 GMT
Not After : Aug 12 01:01:53 2025 GMT
Subject: CN=80fd691d1f997c913c4d5fbd3813f30775078152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:77:39:10:dc:c2:0a:f7:c1:00:15:9a:13:19:
ae:50:c2:ac:86:60:9f:82:b9:08:2e:a5:0f:57:09:
00:2d:39:27:d2:0a:ea:ca:93:66:b0:e5:4f:93:0d:
bc:d5:d0:19:b3:42:2b:59:8b:46:c4:ca:16:7a:4e:
b4:86:d3:f5:20:9b:9b:2e:84:8f:7c:8d:b7:19:2a:
dc:25:85:0d:25:c3:aa:df:65:07:fb:69:c4:47:92:
3f:dd:98:3e:26:29:b2:df:24:57:7a:45:01:ae:36:
79:d8:0d:b2:6d:a7:e0:9c:4b:cb:9f:88:e2:e5:50:
35:7d:4f:52:09:4e:be:04:af:eb:6f:ad:89:35:46:
dd:d2:02:48:86:f4:76:dd:66:a7:01:31:1e:42:24:
12:c3:f4:ac:fc:4c:73:4a:4a:9c:4a:cc:13:29:5d:
4f:e2:32:70:25:30:06:60:9b:3d:0d:92:32:01:be:
8e:5a:68:0c:72:f8:53:f7:74:dc:96:96:7c:dd:f9:
c9:c7:fa:76:f9:9f:06:e2:ba:8b:ff:af:11:11:6a:
41:46:fa:a2:9a:9e:92:5e:ab:cc:b7:c2:80:6a:66:
61:b4:58:cb:2a:42:6e:2a:d6:87:71:69:4f:44:aa:
51:df:5a:5a:f7:70:8e:22:0e:a8:00:10:dd:90:f6:
24:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:FD:69:1D:1F:99:7C:91:3C:4D:5F:BD:38:13:F3:07:75:07:81:52
X509v3 Authority Key Identifier:
keyid:96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:8e:c1:9b:da:e6:64:57:85:8a:61:cb:f6:48:b4:ee:a4:ff:
1c:81:a9:d6:49:e5:55:54:eb:65:7b:de:da:02:8d:33:67:39:
da:42:2f:82:7a:b2:07:55:0e:5e:cb:14:d7:ed:af:46:bd:d6:
50:b5:75:db:88:d1:d5:2f:09:05:c0:61:60:a4:8b:94:40:77:
9b:40:1b:24:74:cb:f6:cf:66:14:47:c4:45:82:df:77:2c:06:
22:12:04:e4:7a:94:dc:3c:7b:08:fe:82:cc:02:23:fb:7c:eb:
72:5c:f6:32:ac:e3:25:47:09:f3:b5:a6:5f:e9:63:df:73:95:
72:e5:bc:4a:4b:31:12:f7:36:78:28:1d:4e:8b:46:e4:62:0b:
a3:0a:78:27:1d:5c:a9:ff:95:3d:1c:13:a9:d6:85:5e:39:1b:
60:81:02:44:b8:fc:3c:fd:db:89:b1:ff:0a:e6:d1:35:0e:e9:
fb:da:00:a6:b8:3c:b7:3b:e3:de:e9:aa:af:66:9f:68:e4:a2:
4b:9e:af:5a:33:9f:d3:00:cf:d8:03:01:73:3c:b4:a4:19:f3:
19:72:1d:38:a8:c9:4e:3a:c5:3c:d3:79:70:39:fa:2f:ca:78:
04:fe:69:70:66:62:60:a5:ac:c7:0d:90:f6:4b:8c:d8:65:3b:
bf:bb:85:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 06:28:16 2025 by rpki-client