Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: aj0RNTwczLF0IqCMGK3qUiE2toCA4hdF3zpsp9E6Rio=
Subject key identifier: 9C:52:FE:B4:EB:28:7A:D7:69:2B:28:60:17:6D:58:E9:08:44:DD:01
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 01988C58A786E2D0D5CE25DB3A5BDB9C2072
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 13C2
Signing time: Sat 09 Aug 2025 01:01:16 +0000
Manifest this update: Sat 09 Aug 2025 01:01:16 +0000
Manifest next update: Sun 10 Aug 2025 01:01:16 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: lNA4FM+QxEm1gxKBVNrV5dKTTywGV/BpvCICZOQPWRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 01:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:58:a7:86:e2:d0:d5:ce:25:db:3a:5b:db:9c:20:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Aug 9 01:01:16 2025 GMT
Not After : Aug 10 01:01:16 2025 GMT
Subject: CN=9c52feb4eb287ad7692b2860176d58e90844dd01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bb:32:10:1f:23:f0:c2:11:f2:84:91:b5:9e:
27:d1:e9:3c:9c:aa:3e:30:48:26:c7:35:60:7f:1e:
52:9e:14:d5:62:4c:db:3a:91:dd:3a:a4:07:f0:5f:
43:14:d1:a5:bb:bd:ae:23:a6:09:16:c6:29:75:ee:
3a:1f:92:cd:ba:19:1f:5b:47:33:93:a6:a1:71:63:
50:eb:7f:8b:08:09:e6:b0:3c:61:f5:88:0e:1f:c1:
b7:9d:a5:45:28:a0:03:12:f0:06:10:63:22:b4:ef:
bf:44:5c:33:7e:e7:06:c9:e1:fb:b6:dd:cd:63:04:
78:8d:d3:b5:d2:3a:b0:17:50:53:04:17:e7:6a:ce:
ad:d6:ad:4e:aa:34:13:90:1b:0a:0c:47:68:d2:ff:
74:87:cf:c5:0a:45:7f:d9:d6:b3:c1:dd:fa:cc:55:
19:dd:8c:a4:45:f2:ae:10:f4:2d:99:66:f5:79:eb:
f1:6a:e1:84:9e:37:68:7c:dd:17:5d:f1:15:ab:b1:
3a:cc:60:0f:0e:20:4f:52:8a:91:f8:f6:82:28:33:
09:78:7d:77:36:9d:79:ed:61:70:29:d6:4c:15:96:
cd:1f:f7:37:28:4a:6b:23:7a:1b:92:ef:8d:5b:16:
4d:b0:9c:fc:b5:f6:33:24:17:c5:39:60:ea:a9:04:
28:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:52:FE:B4:EB:28:7A:D7:69:2B:28:60:17:6D:58:E9:08:44:DD:01
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:52:00:7c:85:82:8e:af:b1:f0:d6:d3:05:30:6c:45:95:ed:
28:49:d1:3c:36:ca:58:8a:87:2a:97:80:1f:cc:c2:4f:af:bc:
1d:9c:e0:59:b9:a6:9c:94:68:a6:d2:db:8a:f7:08:7e:24:54:
a6:06:f3:c7:6e:de:0f:5a:87:33:18:8c:c2:5e:26:88:be:ef:
be:04:7a:35:84:93:ac:b7:01:09:8d:3d:48:81:77:e5:18:b1:
9a:98:d3:dd:e1:1b:a5:d9:0a:36:d9:e0:80:fd:86:15:9d:dc:
1c:ef:48:e6:fe:96:b8:ea:59:a8:8c:b1:5c:2b:90:36:41:bc:
20:7d:da:74:5c:27:78:31:31:d0:52:02:85:2c:47:51:5e:83:
91:5e:51:49:b1:f5:e5:68:ea:20:00:8b:9d:51:00:aa:4d:5e:
04:98:2d:15:25:86:c5:6a:60:74:06:75:6b:0e:3a:69:45:39:
a4:ff:a8:bc:da:12:3e:3c:f6:0c:2c:d6:55:86:a4:91:5d:ae:
f7:1b:d7:ab:6b:3e:fe:17:16:7f:3c:d6:bd:46:2f:66:30:2c:
22:4c:ae:32:10:1b:fc:27:5b:b5:91:bd:1b:2c:96:3d:40:a6:
17:99:f7:df:4e:12:d2:99:9b:83:dc:64:85:38:c9:df:36:94:
ab:61:03:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiMWKeG4tDVziXbOlvbnCByMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMjM2YjU0OGJhNTlhMmFiYjI1ODIzNDFkNTYwY2E4OTNm
NDk3NjMwHhcNMjUwODA5MDEwMTE2WhcNMjUwODEwMDEwMTE2WjAzMTEwLwYDVQQD
Eyg5YzUyZmViNGViMjg3YWQ3NjkyYjI4NjAxNzZkNThlOTA4NDRkZDAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0LsyEB8j8MIR8oSRtZ4n0ek8nKo+
MEgmxzVgfx5SnhTVYkzbOpHdOqQH8F9DFNGlu72uI6YJFsYpde46H5LNuhkfW0cz
k6ahcWNQ63+LCAnmsDxh9YgOH8G3naVFKKADEvAGEGMitO+/RFwzfucGyeH7tt3N
YwR4jdO10jqwF1BTBBfnas6t1q1OqjQTkBsKDEdo0v90h8/FCkV/2dazwd36zFUZ
3YykRfKuEPQtmWb1eevxauGEnjdofN0XXfEVq7E6zGAPDiBPUoqR+PaCKDMJeH13
Np157WFwKdZMFZbNH/c3KEprI3obku+NWxZNsJz8tfYzJBfFOWDqqQQoLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJxS/rTrKHrXaSsoYBdtWOkIRN0BMB8GA1UdIwQY
MBaAFC0ja1SLpZoquyWCNB1WDKiT9JdjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84NzFkOGItMjIxOS00NmM0LWE0OTAt
MjU3MTM2OWMyMDJiLzEvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84NzFkOGItMjIxOS00NmM0LWE0OTAtMjU3MTM2OWMyMDJi
LzEvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG1IAfIWC
jq+x8NbTBTBsRZXtKEnRPDbKWIqHKpeAH8zCT6+8HZzgWbmmnJRoptLbivcIfiRU
pgbzx27eD1qHMxiMwl4miL7vvgR6NYSTrLcBCY09SIF35RixmpjT3eEbpdkKNtng
gP2GFZ3cHO9I5v6WuOpZqIyxXCuQNkG8IH3adFwneDEx0FIChSxHUV6DkV5RSbH1
5WjqIACLnVEAqk1eBJgtFSWGxWpgdAZ1aw46aUU5pP+ovNoSPjz2DCzWVYakkV2u
9xvXq2s+/hcWfzzWvUYvZjAsIkyuMhAb/CdbtZG9GyyWPUCmF5n3304S0pmbg9xk
hTjJ3zaUq2ED2A==
-----END CERTIFICATE-----
Generated at Sat Aug 9 10:40:10 2025 by rpki-client