Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft
File: LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft (raw, json)
Hash identifier: ggl1sK0wRWoGRg+BM0Uy7M1nKp20IYIX57wmSoCex1U=
Subject key identifier: 12:09:C6:C4:18:CC:A2:0A:C0:A8:ED:97:61:11:78:A9:91:26:0D:16
Authority key identifier: 2C:98:22:00:8D:9C:C7:01:2D:60:30:42:9B:28:D8:58:DB:BA:CA:43
Certificate issuer: /CN=2c9822008d9cc7012d6030429b28d858dbbaca43
Certificate serial: 019A4EF430813C7C149EED9570008C716FD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft
Manifest number: 0E6D
Signing time: Tue 04 Nov 2025 13:00:17 +0000
Manifest this update: Tue 04 Nov 2025 13:00:17 +0000
Manifest next update: Wed 05 Nov 2025 13:00:17 +0000
Files and hashes: 1: LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl (hash: nyWRixBzApk+VvCaLDShxnCbMFc4enyJS5HdorjXgvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft
rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:30:81:3c:7c:14:9e:ed:95:70:00:8c:71:6f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c9822008d9cc7012d6030429b28d858dbbaca43
Validity
Not Before: Nov 4 13:00:17 2025 GMT
Not After : Nov 5 13:00:17 2025 GMT
Subject: CN=1209c6c418cca20ac0a8ed97611178a991260d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f1:01:4a:e3:37:fd:a2:19:31:fa:9d:d7:80:
9a:fe:37:70:07:0f:6c:e8:df:5f:99:97:62:c9:d2:
b2:37:2f:08:6f:b2:12:14:0f:e9:c3:da:19:35:4b:
26:a1:69:96:36:a7:46:42:b9:7a:e3:b7:54:cc:b1:
af:90:38:13:9a:9c:d7:fc:13:2c:55:44:41:cf:11:
b1:ca:9b:b0:c2:4b:b7:f2:c3:97:74:26:38:87:90:
a0:50:2f:58:e5:5f:9a:0f:6a:f3:e8:95:37:b6:e4:
76:5c:c4:c6:1c:18:f9:b3:3d:c0:a6:79:5a:90:ec:
86:d4:44:ac:9e:73:0e:0e:4a:c6:32:b1:89:79:21:
33:35:da:5c:59:69:8b:64:14:09:52:65:d7:77:29:
9e:10:25:f8:b7:24:5f:88:d1:bc:47:3a:3b:4f:aa:
79:5f:01:cc:54:30:51:d2:3b:d3:13:f1:88:f2:b7:
4a:bd:78:3b:a7:ba:6a:9f:bd:ec:1e:78:bd:34:ab:
7b:9f:51:4f:31:9c:76:bc:a6:e9:f8:09:2b:5f:0d:
c3:07:cb:b0:3a:32:b0:cc:0a:70:4e:23:f2:67:d1:
b9:2a:49:e8:bb:a3:31:db:f1:d0:63:9c:70:fb:58:
9a:fc:ae:10:80:d4:d0:95:4b:0f:ea:5e:4e:4b:bb:
d2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:09:C6:C4:18:CC:A2:0A:C0:A8:ED:97:61:11:78:A9:91:26:0D:16
X509v3 Authority Key Identifier:
keyid:2C:98:22:00:8D:9C:C7:01:2D:60:30:42:9B:28:D8:58:DB:BA:CA:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:99:71:a8:dc:5c:d5:ef:b5:99:be:3a:1c:8b:12:5f:af:37:
17:46:ef:8f:23:8c:30:0d:d7:c2:3d:9e:85:74:95:59:1f:65:
5b:c5:88:fd:01:41:bd:ad:f4:0c:b4:cc:a0:21:bb:53:f3:a0:
0f:0f:8d:d0:20:bd:b5:d3:b7:91:d6:34:08:42:fa:f2:b3:28:
b9:dc:2d:cd:4c:6f:27:55:a6:d0:1e:7a:09:33:4b:cf:59:aa:
cb:f9:81:9f:95:e2:06:e2:32:49:f5:54:6e:41:0a:67:cd:63:
43:4a:16:89:80:b6:91:b2:37:e4:65:99:e5:4b:57:6f:3d:f4:
98:23:ea:aa:62:b2:5b:b5:d6:cd:9b:29:05:6f:ed:13:87:dc:
4f:09:d5:af:46:35:e7:53:ed:07:dd:9e:7b:b2:92:c5:13:63:
41:d7:fd:c0:0a:e2:3d:1b:a6:ee:53:bf:50:a7:d0:0c:b5:f9:
de:8f:72:03:a6:c0:20:20:ff:65:04:12:9b:b8:e3:30:56:a5:
61:66:8c:03:76:65:99:46:03:4b:a1:7c:8f:02:77:c1:22:d3:
75:9c:8a:0d:f1:48:23:ec:7e:23:ce:16:32:26:bf:1e:fb:84:
fb:bc:b4:05:d5:e2:87:6d:7f:f2:50:c2:ce:31:f7:af:4d:70:
30:1b:0d:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9DCBPHwUnu2VcACMcW/SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjOTgyMjAwOGQ5Y2M3MDEyZDYwMzA0MjliMjhkODU4ZGJi
YWNhNDMwHhcNMjUxMTA0MTMwMDE3WhcNMjUxMTA1MTMwMDE3WjAzMTEwLwYDVQQD
EygxMjA5YzZjNDE4Y2NhMjBhYzBhOGVkOTc2MTExNzhhOTkxMjYwZDE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/EBSuM3/aIZMfqd14Ca/jdwBw9s
6N9fmZdiydKyNy8Ib7ISFA/pw9oZNUsmoWmWNqdGQrl647dUzLGvkDgTmpzX/BMs
VURBzxGxypuwwku38sOXdCY4h5CgUC9Y5V+aD2rz6JU3tuR2XMTGHBj5sz3Apnla
kOyG1ESsnnMODkrGMrGJeSEzNdpcWWmLZBQJUmXXdymeECX4tyRfiNG8Rzo7T6p5
XwHMVDBR0jvTE/GI8rdKvXg7p7pqn73sHni9NKt7n1FPMZx2vKbp+AkrXw3DB8uw
OjKwzApwTiPyZ9G5Kknou6Mx2/HQY5xw+1ia/K4QgNTQlUsP6l5OS7vSkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBIJxsQYzKIKwKjtl2EReKmRJg0WMB8GA1UdIwQY
MBaAFCyYIgCNnMcBLWAwQpso2FjbuspDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi81MGFjMTItZmQ5My00OTM5LWEyZWYt
NDFjYTJkM2FhZTcxLzEvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi81MGFjMTItZmQ5My00OTM5LWEyZWYtNDFjYTJkM2FhZTcx
LzEvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGplxqNxc
1e+1mb46HIsSX683F0bvjyOMMA3Xwj2ehXSVWR9lW8WI/QFBva30DLTMoCG7U/Og
Dw+N0CC9tdO3kdY0CEL68rMoudwtzUxvJ1Wm0B56CTNLz1mqy/mBn5XiBuIySfVU
bkEKZ81jQ0oWiYC2kbI35GWZ5UtXbz30mCPqqmKyW7XWzZspBW/tE4fcTwnVr0Y1
51PtB92ee7KSxRNjQdf9wAriPRum7lO/UKfQDLX53o9yA6bAICD/ZQQSm7jjMFal
YWaMA3ZlmUYDS6F8jwJ3wSLTdZyKDfFII+x+I84WMia/HvuE+7y0BdXih21/8lDC
zjH3r01wMBsNPg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:38:00 2025 by rpki-client