Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.mft
File: lGIh95q-ptPAw0gGQlkN0K4Mqjs.mft (raw, json)
Hash identifier: A/GI13T1GQDist988qL8zCRUCQXnpDp5BwElA09Drlo=
Subject key identifier: D6:05:04:E0:12:07:8B:12:7A:74:DA:F3:39:D7:7B:EE:76:1C:57:9E
Authority key identifier: 94:62:21:F7:9A:BE:A6:D3:C0:C3:48:06:42:59:0D:D0:AE:0C:AA:3B
Certificate issuer: /CN=946221f79abea6d3c0c3480642590dd0ae0caa3b
Certificate serial: 019873E26767743533153CFCDAC617CA3C2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lGIh95q-ptPAw0gGQlkN0K4Mqjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.mft
Manifest number: 1317
Signing time: Mon 04 Aug 2025 07:01:14 +0000
Manifest this update: Mon 04 Aug 2025 07:01:14 +0000
Manifest next update: Tue 05 Aug 2025 07:01:14 +0000
Files and hashes: 1: lGIh95q-ptPAw0gGQlkN0K4Mqjs.crl (hash: La0sS3kbBHit/RXT3F0hrIdnqH3OlJrxAzfpNpth0Xc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lGIh95q-ptPAw0gGQlkN0K4Mqjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:67:67:74:35:33:15:3c:fc:da:c6:17:ca:3c:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=946221f79abea6d3c0c3480642590dd0ae0caa3b
Validity
Not Before: Aug 4 07:01:14 2025 GMT
Not After : Aug 5 07:01:14 2025 GMT
Subject: CN=d60504e012078b127a74daf339d77bee761c579e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4a:22:41:db:13:57:af:95:99:55:4b:e4:aa:
dd:7d:ec:18:b3:bd:24:fd:06:c6:7e:25:d8:fa:4d:
52:6f:ff:8e:7c:2b:97:4b:b1:aa:e2:ef:32:e7:30:
51:26:ff:57:cd:a4:ea:6e:8c:fb:8d:34:f1:e2:de:
33:7f:3e:27:e6:db:d5:95:d4:c0:41:a5:0d:71:cd:
a7:52:3e:0a:b5:31:15:6b:69:19:db:7f:b2:15:0e:
62:20:46:11:c7:ab:7d:cb:91:03:8e:2a:01:1a:12:
1e:1c:fd:19:49:2f:4d:35:12:87:5f:28:f5:71:8a:
9a:f1:5d:0c:7a:84:b8:b5:df:02:14:bd:39:70:45:
5c:b9:58:ee:cb:c7:24:28:da:64:1d:5e:b1:d9:0c:
f2:6f:4c:f6:7b:f4:ec:90:06:bd:72:c0:7d:4d:c6:
ea:21:e3:de:63:b8:78:2e:3f:1b:6b:d1:5d:09:6a:
da:2e:71:a5:74:c0:77:ee:0d:81:11:b9:87:85:84:
02:25:7f:46:5d:d3:56:2b:53:a8:d3:16:be:3f:12:
33:8d:13:aa:10:e5:1f:25:d3:a7:31:9f:31:28:d2:
45:b9:2a:32:50:b4:b3:78:61:db:c2:cf:a1:5f:3f:
0e:a4:f7:fc:ff:7f:62:cf:e1:cd:84:ce:6e:98:37:
b0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:05:04:E0:12:07:8B:12:7A:74:DA:F3:39:D7:7B:EE:76:1C:57:9E
X509v3 Authority Key Identifier:
keyid:94:62:21:F7:9A:BE:A6:D3:C0:C3:48:06:42:59:0D:D0:AE:0C:AA:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lGIh95q-ptPAw0gGQlkN0K4Mqjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/8d9aa5-d52a-486f-b64c-7c605d32165d/1/lGIh95q-ptPAw0gGQlkN0K4Mqjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:c9:db:bd:84:63:13:60:6b:bb:af:7b:af:ad:6b:0e:81:4b:
9a:af:cc:01:8f:1d:c6:b0:4d:cf:90:23:a2:3b:6f:ee:d7:5e:
22:2d:8c:9b:8f:0e:c0:68:4c:77:5c:df:cc:ee:e8:c3:22:0a:
c7:97:65:bd:ca:10:de:ac:ba:7e:55:9c:51:b9:a7:97:0d:0a:
31:7c:0b:dc:79:85:59:4e:54:95:e9:da:47:b1:db:1e:d5:5a:
5d:4a:f7:73:7d:d0:76:0f:91:80:3d:c8:83:0a:57:40:f7:e9:
c7:c2:cd:8b:59:28:9b:53:51:80:f6:e8:7b:93:ec:02:e1:25:
be:bc:d8:57:06:ea:8c:01:19:87:6a:4a:f0:a3:a6:1a:aa:b7:
a8:80:cb:f8:ee:89:a4:81:2f:2d:8e:7d:b3:2c:0f:f8:a2:6f:
66:b6:6c:3f:c4:83:ef:e3:7f:aa:06:72:ea:d2:7b:9f:07:48:
2d:1e:93:bd:00:33:ae:54:aa:54:c1:5b:d7:c4:51:e0:95:78:
bf:53:ee:e3:9a:3c:a2:15:82:82:a4:80:6e:a6:0b:a2:3d:fa:
9a:a1:c5:84:5a:c3:2c:a2:75:dd:0c:bd:85:3b:63:75:87:7c:
98:66:95:1f:e3:01:87:8b:4c:02:f9:52:b0:51:9a:12:35:33:
80:73:50:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:59:04 2025 by rpki-client