Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
File: LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft (raw, json)
Hash identifier: 9FTx+NATuHzbHcYwCENK+KHMHAGjEA0Ko3gaUrYyDe8=
Subject key identifier: C9:1A:D9:8B:46:A3:EA:64:5D:2C:DB:EC:88:27:3E:FC:20:BE:A9:2E
Authority key identifier: 2F:15:B7:3A:7C:2D:13:1E:C1:4E:BD:90:71:71:8B:54:C3:FB:A6:92
Certificate issuer: /CN=2f15b73a7c2d131ec14ebd9071718b54c3fba692
Certificate serial: 019873E1F0C915AE2CDEFBCA341DDF7AF615
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
Manifest number: 032B
Signing time: Mon 04 Aug 2025 07:00:43 +0000
Manifest this update: Mon 04 Aug 2025 07:00:43 +0000
Manifest next update: Tue 05 Aug 2025 07:00:43 +0000
Files and hashes: 1: LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl (hash: ATyagR8XxAozYVm3FWjFoaAqXb3WHPrctMW2HR9Y+3c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e1:f0:c9:15:ae:2c:de:fb:ca:34:1d:df:7a:f6:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f15b73a7c2d131ec14ebd9071718b54c3fba692
Validity
Not Before: Aug 4 07:00:43 2025 GMT
Not After : Aug 5 07:00:43 2025 GMT
Subject: CN=c91ad98b46a3ea645d2cdbec88273efc20bea92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:de:bb:d6:e1:ec:98:c5:9a:66:6f:0b:6e:51:
75:0a:a8:d6:84:a2:05:46:78:c5:72:55:d8:ae:f5:
fb:e7:e8:1b:69:b2:26:53:3d:d8:e5:2a:b3:a2:87:
f9:98:ee:91:53:b7:d6:c7:12:62:60:1e:e3:70:bd:
7d:62:99:ab:84:b1:6a:45:91:8b:39:30:31:ff:9d:
2c:16:04:dd:c5:e0:24:d0:10:52:de:8e:d7:31:35:
25:28:80:cc:13:5a:2d:10:e6:e2:fc:fc:75:91:ce:
e2:6f:02:8b:48:50:8a:d1:66:ad:bf:e6:4e:57:23:
01:19:c8:db:bb:ef:94:3a:6e:8f:39:5a:2c:4b:da:
23:dc:f0:f6:f0:a1:48:d3:39:01:cd:da:2d:38:e5:
88:4f:29:a0:71:51:38:49:c0:5e:a1:36:a1:1a:74:
cd:d7:fa:f2:19:45:a8:a4:78:79:41:f6:16:89:2c:
13:3f:ec:1e:cb:a7:73:e4:63:53:a4:2b:e5:85:ef:
a5:42:83:a5:6c:fa:ad:59:74:7f:75:23:7a:a1:d9:
19:2d:f9:3f:29:53:fe:6c:0e:bf:85:e5:3e:45:8d:
07:8a:4a:15:a3:6d:80:4e:4f:a6:36:eb:69:76:3b:
b1:c1:21:57:04:b5:d2:76:52:78:7c:80:12:15:ff:
da:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:1A:D9:8B:46:A3:EA:64:5D:2C:DB:EC:88:27:3E:FC:20:BE:A9:2E
X509v3 Authority Key Identifier:
keyid:2F:15:B7:3A:7C:2D:13:1E:C1:4E:BD:90:71:71:8B:54:C3:FB:A6:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:d4:53:4e:41:a9:40:85:f0:0a:d2:f9:24:a8:55:4a:54:45:
8c:9a:31:c0:89:d5:26:1e:c1:a2:86:d8:62:a6:67:4f:16:6c:
db:9b:b6:15:b4:d1:e1:ea:e1:6e:62:a3:b9:07:5c:d7:85:67:
97:f6:71:3d:45:5a:e1:ab:23:b3:85:77:e0:7b:33:ce:f5:9e:
d0:b3:d6:40:8b:13:67:e0:10:f8:ed:d5:72:6a:79:fd:9f:4f:
0a:db:04:b6:a6:34:f6:0d:30:d5:21:c9:21:ab:3e:c2:39:15:
f2:5f:c1:4b:79:0d:14:03:53:88:bc:14:ca:72:01:ce:39:8b:
54:60:2a:d8:69:b9:c5:e2:e0:ee:b6:07:03:43:43:39:7b:3e:
3f:e4:d2:9b:c8:b8:88:3f:1e:e5:56:9b:7e:4e:2a:64:0e:d9:
2b:88:24:91:c0:7d:92:95:c4:25:d7:23:51:fd:71:c3:ee:62:
84:8a:16:45:e8:c9:d6:9f:08:51:51:6e:ba:45:14:ef:50:7e:
11:f7:a3:59:62:e0:a7:58:ec:73:28:ac:36:da:ca:06:2e:f6:
3f:7c:31:83:dc:f2:2e:f2:09:10:5a:d9:8e:84:63:72:be:9e:
1d:da:e4:9e:fd:7c:5c:6a:93:9d:61:45:db:89:3b:ad:ee:63:
a0:38:75:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 10:58:35 2025 by rpki-client