
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
File: sLQvCUy6l0wfrsa97BVg9mOHiRE.mft (raw, json)
Hash identifier: 7LGhx48I0KK4C8NllmaYcws7fUbtacNU59wYsnYM8F0=
Subject key identifier: 60:43:2B:AA:4C:42:04:16:C1:A7:F1:DB:22:56:CA:72:33:F6:72:8C
Authority key identifier: B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11
Certificate issuer: /CN=b0b42f094cba974c1faec6bdec1560f663878911
Certificate serial: 019896A4CD8933899A7CA5BAC35A6A12685B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
Manifest number: 12BA
Signing time: Mon 11 Aug 2025 01:00:39 +0000
Manifest this update: Mon 11 Aug 2025 01:00:39 +0000
Manifest next update: Tue 12 Aug 2025 01:00:39 +0000
Files and hashes: 1: sLQvCUy6l0wfrsa97BVg9mOHiRE.crl (hash: J4haSDWj95E/LuVhRlU9Y+JXn1rRyLX+sY+p514NMQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a4:cd:89:33:89:9a:7c:a5:ba:c3:5a:6a:12:68:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b42f094cba974c1faec6bdec1560f663878911
Validity
Not Before: Aug 11 01:00:39 2025 GMT
Not After : Aug 12 01:00:39 2025 GMT
Subject: CN=60432baa4c420416c1a7f1db2256ca7233f6728c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a1:e9:3e:1f:54:9b:54:37:12:69:0b:cf:7e:
4e:79:96:4b:9c:b5:28:bf:c0:f3:39:51:ee:58:3e:
64:cf:65:63:e9:24:33:24:6d:4a:9c:b0:16:69:f9:
b9:c4:5c:5a:8b:e3:b6:d6:8f:d5:58:18:21:e4:5a:
c3:c5:c4:1a:0c:43:fa:af:b0:9f:60:20:6a:1b:01:
6c:f4:30:63:0e:8c:08:99:5a:f6:43:83:01:64:79:
c4:a7:70:14:8d:90:af:6d:16:e3:2b:02:7b:e4:65:
c9:15:dc:fb:e2:80:dc:7a:c0:18:43:1f:bd:83:26:
29:4e:e4:06:60:69:1a:fd:61:2c:d9:55:52:ed:57:
af:47:d9:1b:a7:cd:7d:7f:81:54:f3:1e:a8:47:c7:
7e:5f:30:61:b2:9f:e9:a7:b4:5e:b6:04:ea:17:0c:
23:62:bb:18:67:c3:41:39:39:bb:d9:e9:35:5a:01:
67:95:cc:ed:ce:83:ea:95:91:92:e6:8c:87:5e:8c:
a4:90:82:65:ae:0a:e5:33:66:b2:bb:fa:db:db:bd:
43:67:65:53:06:e3:65:23:5e:dc:8a:07:c2:21:ea:
5a:a2:fb:d0:d8:b9:df:7a:73:e9:14:2d:93:db:72:
f3:9a:eb:2a:41:a6:95:00:ab:7d:6b:81:53:2a:8f:
ad:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:43:2B:AA:4C:42:04:16:C1:A7:F1:DB:22:56:CA:72:33:F6:72:8C
X509v3 Authority Key Identifier:
keyid:B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:81:33:2a:dc:90:78:e3:6b:51:ee:1d:4f:44:a4:a0:df:4c:
52:7b:be:3c:c2:4d:75:3a:a1:6b:d5:e4:b1:12:1f:a5:be:c5:
f4:36:41:11:db:6b:b9:03:50:b5:b5:86:41:2e:be:6b:7c:f3:
36:c2:e3:01:4c:8f:76:e6:6d:41:61:1f:53:cd:80:db:36:e5:
91:10:93:a9:11:d3:e5:cc:10:cc:68:ce:f2:99:7f:35:92:a2:
30:ce:c1:96:e5:fb:9b:4f:91:9e:cb:01:20:d8:52:5c:0e:36:
77:4c:29:93:04:89:d4:e0:42:4f:99:80:0d:57:47:76:c5:c0:
8d:85:5b:f5:0f:48:5d:45:98:d7:d1:1a:5b:98:b6:f1:b8:90:
52:27:ae:7d:75:03:69:7a:bb:7f:5a:82:aa:d7:ea:7c:23:1a:
fc:e3:5f:98:bb:18:83:f1:0a:16:f3:60:ff:98:47:0a:59:b9:
06:42:88:db:ca:66:8e:1c:a6:71:c5:71:1e:9d:50:86:f7:51:
59:f4:73:9d:f2:5c:1d:63:1d:45:ef:25:b2:18:a0:05:42:32:
17:0b:20:a5:e8:57:ef:d2:0d:62:68:a9:e2:25:fb:b8:ed:89:
bf:66:73:20:56:72:26:25:c1:9d:3e:b6:cf:2b:47:fc:6f:bb:
35:03:a7:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 08:43:58 2025 by rpki-client