Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.mft
File: LhgQ1ckRtKgQc_rmOJcbV33XpkI.mft (raw, json)
Hash identifier: PwBvVbem8Qrx/gDfhIAuUxq+5k7gUPw+WLZKU86eW/I=
Subject key identifier: E1:CC:0F:EC:6F:30:E1:20:ED:58:63:4B:19:3B:85:3E:9A:60:4B:C9
Authority key identifier: 2E:18:10:D5:C9:11:B4:A8:10:73:FA:E6:38:97:1B:57:7D:D7:A6:42
Certificate issuer: /CN=2e1810d5c911b4a81073fae638971b577dd7a642
Certificate serial: 019A4EF4BCB103274045C653D7989AECD1DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LhgQ1ckRtKgQc_rmOJcbV33XpkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.mft
Manifest number: 11D9
Signing time: Tue 04 Nov 2025 13:00:53 +0000
Manifest this update: Tue 04 Nov 2025 13:00:53 +0000
Manifest next update: Wed 05 Nov 2025 13:00:53 +0000
Files and hashes: 1: LhgQ1ckRtKgQc_rmOJcbV33XpkI.crl (hash: LH3zX0ai3ZyonPB8XPSen/bzsH6YmKD5iuqncZSgZQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.mft
rsync://rpki.ripe.net/repository/DEFAULT/LhgQ1ckRtKgQc_rmOJcbV33XpkI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:bc:b1:03:27:40:45:c6:53:d7:98:9a:ec:d1:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e1810d5c911b4a81073fae638971b577dd7a642
Validity
Not Before: Nov 4 13:00:53 2025 GMT
Not After : Nov 5 13:00:53 2025 GMT
Subject: CN=e1cc0fec6f30e120ed58634b193b853e9a604bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:53:d9:ef:28:fd:d6:45:0c:1a:42:50:26:be:
14:e1:7f:d7:54:fc:6f:db:0a:ee:58:94:df:6b:77:
1e:6a:2d:25:f6:24:e4:8d:2b:fb:75:29:76:44:30:
0c:e1:07:ee:38:ec:c0:e9:8e:d0:42:a4:7e:46:0d:
45:d5:a5:2a:2c:74:d9:65:5e:97:61:2c:e9:92:97:
96:2f:c2:07:f4:f9:b6:4d:59:42:be:86:48:50:f6:
0a:45:ff:42:a0:76:86:01:5d:87:ce:42:59:0a:f4:
6d:51:21:7b:45:af:36:4d:a8:e1:9f:99:a5:02:f8:
01:74:77:34:1c:2d:6c:86:87:75:b5:63:48:f4:70:
43:51:b7:cb:6f:93:9b:4d:8a:ff:ab:1b:99:a7:6b:
43:b3:a6:cb:f6:42:33:5b:aa:1f:e7:c5:97:90:96:
65:a7:65:a9:ea:f7:fd:d9:ba:17:66:ec:70:6f:3a:
d4:1f:05:3b:23:15:28:dc:ff:6f:71:8b:e5:38:d6:
fe:28:22:36:21:52:45:e9:8b:85:df:ba:ab:00:de:
45:bf:cf:86:a2:71:3e:3c:c6:13:22:59:15:f7:74:
c6:0f:e0:95:17:94:d7:26:71:02:13:50:0f:1b:b4:
f0:fc:53:83:43:5b:d6:b2:a5:4d:f6:f4:0f:54:f2:
34:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:CC:0F:EC:6F:30:E1:20:ED:58:63:4B:19:3B:85:3E:9A:60:4B:C9
X509v3 Authority Key Identifier:
keyid:2E:18:10:D5:C9:11:B4:A8:10:73:FA:E6:38:97:1B:57:7D:D7:A6:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LhgQ1ckRtKgQc_rmOJcbV33XpkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:71:34:81:d2:0d:ad:c0:03:1c:14:50:80:3c:f2:ca:40:64:
b0:27:f8:aa:28:b5:93:18:84:e2:17:f3:82:09:e6:ab:17:5e:
b7:a4:79:6c:44:42:aa:23:a9:c0:3c:22:6c:98:e1:27:b7:cb:
70:51:9a:09:98:83:c8:74:cb:5d:af:43:23:ac:d0:0e:d3:c8:
e7:3a:bb:9b:74:6d:2c:5a:75:58:d2:5a:b9:5b:2a:09:86:20:
72:a7:5f:5a:b7:e8:f2:ef:7e:d8:3f:71:84:50:67:67:26:53:
d7:4b:3b:76:bb:f9:ea:db:68:14:72:f5:b3:28:be:bf:0a:11:
76:de:62:c2:12:10:a4:63:a2:5e:ab:b0:84:69:53:ca:cf:b9:
9b:fc:ba:2e:3c:79:e3:5d:04:3c:d3:45:55:69:d3:9f:2e:65:
22:9f:40:b9:fa:6c:a5:4b:9f:c8:b7:82:c3:64:32:58:78:2e:
a9:0e:d6:6c:47:9c:97:c6:fd:7e:a8:23:46:89:10:55:c5:81:
91:43:6f:25:7d:9c:09:7a:df:26:bb:c0:c7:5b:6b:14:e1:bc:
46:ba:85:e0:4f:64:0e:a0:c3:f2:15:cb:9a:fa:dc:f6:50:ee:
6d:a1:ff:83:6a:1f:fe:97:4b:a5:7a:7e:6c:20:19:9a:c1:14:
93:13:a5:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:45:16 2025 by rpki-client