Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
File: ltTArxW-ONL8XjD-NFdHXTS3g5o.mft (raw, json)
Hash identifier: tfOuD4NKcernX2lLdTu+A191kYtJ/R3IoQ+mlB/OYvg=
Subject key identifier: 63:97:97:C4:3C:2F:94:CE:4D:72:43:98:24:1F:1D:6F:A4:50:98:D6
Authority key identifier: 96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A
Certificate issuer: /CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a
Certificate serial: 01988B0FC759FA8A07C717DF76FCFDA95639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
Manifest number: 1293
Signing time: Fri 08 Aug 2025 19:02:03 +0000
Manifest this update: Fri 08 Aug 2025 19:02:03 +0000
Manifest next update: Sat 09 Aug 2025 19:02:03 +0000
Files and hashes: 1: ltTArxW-ONL8XjD-NFdHXTS3g5o.crl (hash: +EwsmuXlVi9Nq4i8muF1zH9Rmh3XPPTjekr3lhXcmkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:c7:59:fa:8a:07:c7:17:df:76:fc:fd:a9:56:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a
Validity
Not Before: Aug 8 19:02:03 2025 GMT
Not After : Aug 9 19:02:03 2025 GMT
Subject: CN=639797c43c2f94ce4d724398241f1d6fa45098d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6b:c0:1c:ff:3c:03:c2:94:0f:97:fe:76:cf:
b5:d3:ad:c2:5e:81:8f:14:88:47:49:6d:c3:11:7b:
df:2b:66:18:1c:ca:81:73:1b:3c:64:c8:63:f3:1a:
11:c6:e3:8f:4d:18:d5:8f:a5:dd:77:55:d1:36:db:
ca:93:48:65:ca:ac:f9:68:ba:da:aa:5d:61:67:de:
1a:1e:5c:5f:7f:48:d7:0d:1e:43:29:d0:95:b9:c1:
76:44:83:3a:ab:48:b8:5e:56:d8:ee:d1:ab:8c:4b:
48:fa:cb:16:a2:12:27:7a:4c:fd:b0:0e:be:8c:3d:
38:d9:b3:ea:cc:1b:56:c7:8d:22:2a:8b:81:6a:ae:
ee:8b:cc:a9:20:35:c9:02:40:64:85:d7:83:25:b8:
e5:14:58:a2:85:d7:86:e6:92:a4:38:73:f6:39:34:
48:77:d7:41:08:62:55:1c:ed:9f:8a:02:18:ef:61:
e2:07:c2:62:50:58:11:d8:23:65:2d:e0:6d:ed:57:
60:a3:29:dc:20:65:09:63:ca:c5:09:9c:ab:76:6e:
98:74:b9:aa:62:ce:df:5b:2c:7e:54:d7:a1:52:c9:
69:2c:97:0f:41:4e:95:f8:ac:ad:e2:99:e0:3e:a8:
88:85:a1:a7:88:b5:bd:ae:60:63:e3:10:c9:85:fd:
23:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:97:97:C4:3C:2F:94:CE:4D:72:43:98:24:1F:1D:6F:A4:50:98:D6
X509v3 Authority Key Identifier:
keyid:96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:02:35:60:2c:66:bc:d4:bb:af:46:58:f5:c1:77:44:b6:d9:
64:59:0b:63:f5:0a:51:2c:4a:fe:00:c0:29:b9:5e:f8:f2:48:
21:1c:5c:36:90:53:d2:2e:58:35:d9:fa:04:9f:19:a0:b8:1a:
1d:1d:fd:63:33:2c:ab:47:00:ed:03:18:09:a5:59:02:f3:34:
bd:e2:08:67:c6:bc:97:b4:44:69:7e:97:75:f3:2f:8e:b0:12:
70:fb:0f:e4:8b:f1:37:62:f5:59:e5:2d:75:bd:6c:fa:19:23:
49:00:c9:5e:5e:e9:b0:06:fe:45:a7:c9:b2:f3:2b:a8:f6:90:
65:3a:63:c5:db:ed:4e:02:5f:f9:42:d3:5b:74:16:99:f5:95:
ad:d7:84:97:80:9c:44:ec:0f:e1:85:6d:e8:1e:81:34:fb:44:
b1:82:1f:c3:62:56:8e:02:80:a4:20:a4:a7:be:f1:b7:fa:fd:
47:ac:11:3a:0e:d9:ab:d0:5d:2e:f6:fa:bf:4d:ec:23:bd:cd:
82:02:ca:82:3b:d7:75:bd:ad:4a:4d:c5:42:72:79:c7:dc:e6:
eb:1e:18:df:b8:b1:2d:fa:4a:63:69:73:7c:79:95:86:ff:1c:
03:db:e4:2a:f7:c6:84:3e:65:44:f1:a0:83:f1:de:db:44:62:
d0:e5:e5:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:35:08 2025 by rpki-client