Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
File: LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft (raw, json)
Hash identifier: bE1cVM9OyZulCO+VSJ2yVi5jxlf7QPEYXuhFmXfGfUs=
Subject key identifier: 4B:8C:26:47:79:F2:97:E5:FF:61:7D:23:1E:11:E4:FD:60:70:D0:70
Authority key identifier: 2F:15:B7:3A:7C:2D:13:1E:C1:4E:BD:90:71:71:8B:54:C3:FB:A6:92
Certificate issuer: /CN=2f15b73a7c2d131ec14ebd9071718b54c3fba692
Certificate serial: 019A4EF49CEF21F2C7F491F942B038C86C3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
Manifest number: 0421
Signing time: Tue 04 Nov 2025 13:00:44 +0000
Manifest this update: Tue 04 Nov 2025 13:00:44 +0000
Manifest next update: Wed 05 Nov 2025 13:00:44 +0000
Files and hashes: 1: LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl (hash: 035xNv4n1IM5++nRny/dvbP1kF6J8hmNVnVfQYqXVF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:9c:ef:21:f2:c7:f4:91:f9:42:b0:38:c8:6c:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f15b73a7c2d131ec14ebd9071718b54c3fba692
Validity
Not Before: Nov 4 13:00:44 2025 GMT
Not After : Nov 5 13:00:44 2025 GMT
Subject: CN=4b8c264779f297e5ff617d231e11e4fd6070d070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7f:7c:15:f0:b1:10:79:9b:03:3b:82:28:9b:
7c:b7:d1:92:41:6f:c7:74:d2:16:1c:66:1e:f4:0b:
01:5a:cb:0c:7f:64:e8:ee:f7:9a:d1:90:f7:b9:46:
bc:78:09:80:4c:04:6e:f5:8a:ac:07:26:2f:e1:d1:
aa:18:bb:23:bb:5f:22:0a:40:72:6b:ce:eb:be:c5:
5e:ff:be:ac:23:83:8b:07:d4:98:ca:f4:71:a1:72:
1c:2c:fe:b6:a2:38:50:16:8b:de:d5:f8:0e:68:69:
fe:bc:79:e0:67:4f:ce:fa:b7:6c:a1:09:e3:eb:5f:
34:40:5e:79:b9:cf:96:38:da:8f:a0:4c:d7:31:b6:
18:03:2e:ca:7a:b9:9a:7d:29:ca:5d:53:d8:0e:42:
08:03:61:6a:8d:b5:de:b1:01:f5:10:28:fd:dc:03:
3a:a2:93:c7:9e:9b:90:8a:df:f3:a1:e8:9b:99:37:
40:30:54:db:b5:de:53:3d:22:12:1a:06:f2:d3:a0:
29:10:c4:70:80:62:ce:68:be:61:81:85:47:af:8a:
9f:bd:92:15:11:fa:82:fc:e5:5e:24:1e:c4:14:1b:
52:ee:05:5d:73:a1:1e:8a:4e:e0:bf:e1:91:44:95:
a7:ab:d9:d1:7d:b3:70:23:bb:71:aa:69:f4:e8:ce:
7e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:8C:26:47:79:F2:97:E5:FF:61:7D:23:1E:11:E4:FD:60:70:D0:70
X509v3 Authority Key Identifier:
keyid:2F:15:B7:3A:7C:2D:13:1E:C1:4E:BD:90:71:71:8B:54:C3:FB:A6:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:89:1e:6e:b2:24:f8:5d:f2:97:dc:8f:ed:bd:da:90:a6:d1:
9a:99:71:77:c1:8e:b5:15:8b:84:18:a2:22:c8:d7:a7:f0:8e:
58:f7:45:6c:a9:6a:0e:6c:f0:95:77:e7:ec:e1:1d:10:cf:5c:
40:48:05:9c:e2:a7:d8:ee:46:11:70:1f:68:94:2d:fe:8f:ea:
43:2f:e4:89:df:fc:43:98:b5:3b:0c:00:59:d8:cd:cb:35:58:
0f:bb:c1:3b:97:69:87:04:fa:26:43:5a:46:15:98:4a:6c:ab:
f3:6b:de:11:df:c1:07:cd:52:15:5c:38:61:9c:77:28:85:f7:
91:a5:ee:fd:86:4c:80:23:30:0e:16:93:95:4f:9a:d1:a1:e5:
eb:10:b6:1a:24:41:b6:f5:89:a8:52:cf:5f:dc:1e:2e:23:4a:
bc:46:58:10:12:58:7f:38:e9:31:f8:3b:d9:d0:33:c1:7a:b9:
7d:e0:08:f7:f4:ae:c5:0c:f6:ea:93:04:58:7a:72:cc:b5:97:
bf:7f:18:f2:39:a9:8b:d6:9c:ab:8b:1f:9a:63:2d:79:10:73:
4d:35:cd:67:b1:74:82:05:ef:21:6d:2f:7e:15:ee:c9:59:d6:
33:a2:d3:cf:f9:bd:8c:ab:e7:9e:b9:f6:1d:59:56:66:4c:ce:
0a:f0:22:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9JzvIfLH9JH5QrA4yGw+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmMTViNzNhN2MyZDEzMWVjMTRlYmQ5MDcxNzE4YjU0YzNm
YmE2OTIwHhcNMjUxMTA0MTMwMDQ0WhcNMjUxMTA1MTMwMDQ0WjAzMTEwLwYDVQQD
Eyg0YjhjMjY0Nzc5ZjI5N2U1ZmY2MTdkMjMxZTExZTRmZDYwNzBkMDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArH98FfCxEHmbAzuCKJt8t9GSQW/H
dNIWHGYe9AsBWssMf2To7vea0ZD3uUa8eAmATARu9YqsByYv4dGqGLsju18iCkBy
a87rvsVe/76sI4OLB9SYyvRxoXIcLP62ojhQFove1fgOaGn+vHngZ0/O+rdsoQnj
6180QF55uc+WONqPoEzXMbYYAy7KermafSnKXVPYDkIIA2FqjbXesQH1ECj93AM6
opPHnpuQit/zoeibmTdAMFTbtd5TPSISGgby06ApEMRwgGLOaL5hgYVHr4qfvZIV
EfqC/OVeJB7EFBtS7gVdc6Eeik7gv+GRRJWnq9nRfbNwI7txqmn06M5+0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEuMJkd58pfl/2F9Ix4R5P1gcNBwMB8GA1UdIwQY
MBaAFC8Vtzp8LRMewU69kHFxi1TD+6aSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTHhXM09ud3RFeDdCVHIyUWNYR0xWTVA3cHBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83OTI5ZjQtZWMzNS00ZDljLTkyYTgt
MGViNDVlZjYyZDhkLzEvTHhXM09ud3RFeDdCVHIyUWNYR0xWTVA3cHBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83OTI5ZjQtZWMzNS00ZDljLTkyYTgtMGViNDVlZjYyZDhk
LzEvTHhXM09ud3RFeDdCVHIyUWNYR0xWTVA3cHBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUIkebrIk
+F3yl9yP7b3akKbRmplxd8GOtRWLhBiiIsjXp/COWPdFbKlqDmzwlXfn7OEdEM9c
QEgFnOKn2O5GEXAfaJQt/o/qQy/kid/8Q5i1OwwAWdjNyzVYD7vBO5dphwT6JkNa
RhWYSmyr82veEd/BB81SFVw4YZx3KIX3kaXu/YZMgCMwDhaTlU+a0aHl6xC2GiRB
tvWJqFLPX9weLiNKvEZYEBJYfzjpMfg72dAzwXq5feAI9/SuxQz26pMEWHpyzLWX
v38Y8jmpi9acq4sfmmMteRBzTTXNZ7F0ggXvIW0vfhXuyVnWM6LTz/m9jKvnnrn2
HVlWZkzOCvAi0Q==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:30:06 2025 by rpki-client