Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft
File: Le43b1HIyKVVUo1MFesfTKOZxJE.mft (raw, json)
Hash identifier: vmaSTWP+dy4NLsCdqP2lK/JD88Gqd0LjBwLtDC9C78Q=
Subject key identifier: 2A:59:2D:B6:F2:CD:7A:20:21:A5:B7:47:05:F4:5C:75:6D:CA:B5:38
Authority key identifier: 2D:EE:37:6F:51:C8:C8:A5:55:52:8D:4C:15:EB:1F:4C:A3:99:C4:91
Certificate issuer: /CN=2dee376f51c8c8a555528d4c15eb1f4ca399c491
Certificate serial: 01988B0FAF053A17477A0BFDEBB8A9D72866
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Le43b1HIyKVVUo1MFesfTKOZxJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft
Manifest number: 161F
Signing time: Fri 08 Aug 2025 19:01:57 +0000
Manifest this update: Fri 08 Aug 2025 19:01:57 +0000
Manifest next update: Sat 09 Aug 2025 19:01:57 +0000
Files and hashes: 1: Le43b1HIyKVVUo1MFesfTKOZxJE.crl (hash: cWCBNkBZLagt09fsmnnhz/GpObtzHtDpHJazUuxF+NA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Le43b1HIyKVVUo1MFesfTKOZxJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:af:05:3a:17:47:7a:0b:fd:eb:b8:a9:d7:28:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dee376f51c8c8a555528d4c15eb1f4ca399c491
Validity
Not Before: Aug 8 19:01:57 2025 GMT
Not After : Aug 9 19:01:57 2025 GMT
Subject: CN=2a592db6f2cd7a2021a5b74705f45c756dcab538
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4c:44:0c:eb:3d:a1:4b:19:53:20:de:2f:7d:
a6:fc:eb:63:65:53:2c:c0:60:2d:5b:bc:83:f3:be:
7b:a6:85:cc:7a:d3:07:43:b2:d2:3c:16:6c:19:29:
f9:ac:d5:e6:a6:0c:b8:5e:85:fc:7c:bf:b9:25:da:
01:a4:3e:df:8d:e3:6f:ad:fc:5b:f1:25:fc:80:ac:
47:b4:e9:78:9e:22:5c:15:c4:2c:45:f9:86:5e:a8:
83:25:00:98:46:87:6a:80:25:1d:94:d1:a0:04:9c:
d0:e0:02:e7:d0:0a:d8:ef:21:db:51:10:a6:b7:09:
e4:d2:4a:06:e3:00:d3:6a:8e:71:3e:f7:19:9f:19:
1d:a9:27:35:9c:50:a9:93:53:b9:20:90:43:fc:59:
48:ea:30:80:a7:61:6e:2e:39:cc:33:a1:d7:08:6f:
b1:1c:dc:c3:b1:61:4a:3e:cc:4a:27:b5:fe:d0:1f:
a3:70:80:66:e5:0a:24:89:a7:e8:cd:82:bc:0f:a7:
2e:e9:28:0d:2c:fc:76:75:f8:44:53:c8:5f:b6:44:
5e:be:6a:09:cf:3e:1e:1d:1c:06:d0:2d:cb:ea:fe:
42:c0:a1:25:55:52:36:58:b2:61:8b:bd:b4:b8:d0:
75:72:a9:cd:7f:b3:04:86:03:0e:bc:d4:5e:e5:3e:
cf:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:59:2D:B6:F2:CD:7A:20:21:A5:B7:47:05:F4:5C:75:6D:CA:B5:38
X509v3 Authority Key Identifier:
keyid:2D:EE:37:6F:51:C8:C8:A5:55:52:8D:4C:15:EB:1F:4C:A3:99:C4:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Le43b1HIyKVVUo1MFesfTKOZxJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3be097-28f4-49e8-ad25-ff5cbdac5845/1/Le43b1HIyKVVUo1MFesfTKOZxJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:66:d9:2c:85:3a:26:42:8c:1a:55:48:6f:46:e0:1c:75:2e:
7e:fd:17:21:ca:dd:b8:a8:a7:8b:f6:0f:e1:2f:7a:0e:d2:e3:
4a:d1:b1:6f:4c:6a:b0:50:0b:71:d3:e9:30:ee:0e:5e:d7:3f:
64:3a:40:21:b0:07:77:87:99:21:61:58:05:38:32:e1:03:b5:
65:9f:94:12:b8:f4:fd:62:98:11:17:a0:61:d1:bb:48:be:4f:
88:5e:3b:a4:6c:01:27:4c:66:d8:29:33:e3:48:17:e5:1b:26:
29:1a:32:28:14:35:7d:7a:fd:76:8d:b6:dc:58:64:c4:d4:51:
c5:f7:04:38:be:c9:98:de:bc:7e:f7:71:6f:ad:c9:2b:4e:a3:
7e:0c:d9:52:7b:8d:3b:41:f2:90:41:04:8f:23:47:d2:94:68:
cb:f0:5a:02:01:aa:bc:c7:40:06:76:ac:4f:ee:5f:b5:da:c7:
8a:0c:8d:4c:30:94:bc:77:7d:cf:fa:df:49:27:dc:56:b9:52:
07:86:61:d4:63:e7:00:91:a5:37:e0:c7:00:8c:98:07:ac:f8:
a0:9b:6e:a3:30:66:aa:87:35:22:d3:a5:1f:3b:45:99:75:df:
35:8b:f6:f0:eb:70:22:80:37:8c:19:b6:08:3c:60:7a:55:4a:
4a:1b:5d:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 00:59:45 2025 by rpki-client