Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: mgNO92Akeg+jS9dypuUUe9GRmJeKJzydyREBBI0Plhg=
Subject key identifier: 4C:BC:FF:84:DA:73:65:2E:84:B4:53:3A:61:2F:37:EE:BD:1C:C3:CC
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 019A4E4F8A1FB1C2AD024A62BA224DB538E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 14AB
Signing time: Tue 04 Nov 2025 10:00:26 +0000
Manifest this update: Tue 04 Nov 2025 10:00:26 +0000
Manifest next update: Wed 05 Nov 2025 10:00:26 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: JjHo/WgXESJfopVzSDR8J1aUDe74Of26wYkYPpAiSLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:8a:1f:b1:c2:ad:02:4a:62:ba:22:4d:b5:38:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Nov 4 10:00:26 2025 GMT
Not After : Nov 5 10:00:26 2025 GMT
Subject: CN=4cbcff84da73652e84b4533a612f37eebd1cc3cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e5:95:10:2d:82:47:b2:90:e5:62:48:f9:3c:
6b:50:d2:64:af:4e:b7:c0:5e:58:b6:60:97:4d:20:
7a:ea:5f:42:41:54:97:55:c7:f1:63:79:3d:c6:09:
87:bb:03:06:e4:e5:f9:30:4f:7b:87:2f:93:07:16:
01:5a:6b:ec:28:5e:ba:0e:77:9b:0a:29:4f:e6:e5:
3b:ad:48:1b:38:82:cf:3f:cd:f5:b4:6b:81:c5:92:
0a:c4:44:08:6c:81:f7:a0:fa:23:5f:a9:df:e1:40:
63:08:24:ea:7e:83:cd:d4:69:76:38:12:0f:73:cc:
50:b9:1f:b8:9d:2f:ee:17:95:95:40:0f:5c:a8:c4:
63:5d:8c:a2:71:22:00:d9:50:39:a3:79:1b:e9:8f:
98:af:13:ce:5e:cc:ee:14:b8:1a:8e:c6:11:c9:46:
6a:de:22:02:e5:bc:a6:e1:8b:8e:8a:5f:6f:59:3c:
bc:9e:cd:09:6c:7e:b5:c5:19:d1:af:56:84:b3:fd:
71:4e:53:63:01:73:86:fb:5c:68:f0:c0:fd:84:6f:
9f:1e:48:28:32:7b:3d:2d:43:41:4c:02:0d:46:43:
88:cd:89:66:1a:7f:8e:a9:a8:c7:24:ed:b7:91:70:
82:d3:41:01:90:67:e9:01:30:e2:7a:da:ec:22:51:
50:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:BC:FF:84:DA:73:65:2E:84:B4:53:3A:61:2F:37:EE:BD:1C:C3:CC
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:53:34:6a:05:de:b7:b5:f0:29:e0:15:e4:68:e8:81:ee:2b:
c3:1a:12:3f:2d:59:79:fe:eb:b2:c2:64:42:08:c9:c5:60:d1:
9e:f6:87:ea:17:f4:15:6c:89:ed:8e:75:81:7e:8d:aa:f6:87:
3e:6a:48:b9:2e:04:5e:31:a6:16:d5:2a:75:a7:bc:1c:58:a7:
e9:f1:65:a6:ab:63:d2:ab:e7:20:cf:2e:5a:12:2a:43:c5:14:
f2:05:6d:c6:0e:79:02:bf:96:57:d5:bf:4b:37:ec:0a:a7:30:
90:c3:aa:a9:95:ac:2c:d5:2f:60:57:97:53:ad:8e:86:92:b6:
20:11:1d:fb:68:7d:a6:d6:58:8c:34:b8:50:b6:88:c1:ae:f4:
72:26:26:6d:15:5a:60:ad:ff:a2:cd:7d:6c:84:ad:84:ef:b4:
4e:eb:ec:b6:ba:e5:92:80:af:1a:6c:ce:96:74:11:03:c9:27:
35:a1:0c:3d:08:2b:02:d6:a7:21:f3:8d:18:8d:df:9f:e3:62:
fd:fc:70:8a:71:2f:ff:1c:38:60:59:45:4c:69:30:ae:ee:74:
13:ed:24:8a:b2:8b:a2:29:8f:9f:8e:74:d2:bb:14:2a:48:5f:
83:fb:46:39:69:d0:c7:f2:d5:e9:be:8a:3a:0f:4d:d8:b1:8f:
c4:af:42:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:55:32 2025 by rpki-client