Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/e1f171-a889-4395-9cfc-0805419d721a/1/lnRtO9Pi3eYWQCDesLXYkixkdm0.mft
File: lnRtO9Pi3eYWQCDesLXYkixkdm0.mft (raw, json)
Hash identifier: sMS52Vu1FYQecf64tL+xuSQp8Lim/uPCb5uD8gwbMPE=
Subject key identifier: D7:52:EF:4A:88:3C:69:37:BF:25:5D:B3:59:E2:9D:A3:7F:5B:76:38
Authority key identifier: 96:74:6D:3B:D3:E2:DD:E6:16:40:20:DE:B0:B5:D8:92:2C:64:76:6D
Certificate issuer: /CN=96746d3bd3e2dde6164020deb0b5d8922c64766d
Certificate serial: 01976FD0C51874080686AFE7AC9E398441C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lnRtO9Pi3eYWQCDesLXYkixkdm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/e1f171-a889-4395-9cfc-0805419d721a/1/lnRtO9Pi3eYWQCDesLXYkixkdm0.mft
Manifest number: 0246
Signing time: Sat 14 Jun 2025 19:00:42 +0000
Manifest this update: Sat 14 Jun 2025 19:00:42 +0000
Manifest next update: Sun 15 Jun 2025 19:00:42 +0000
Files and hashes: 1: lnRtO9Pi3eYWQCDesLXYkixkdm0.crl (hash: lzK05cGg0bEss7wBl0HVKqIb0eFxUPxFpT3HKNsrhZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/e1f171-a889-4395-9cfc-0805419d721a/1/lnRtO9Pi3eYWQCDesLXYkixkdm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/e1f171-a889-4395-9cfc-0805419d721a/1/lnRtO9Pi3eYWQCDesLXYkixkdm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lnRtO9Pi3eYWQCDesLXYkixkdm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d0:c5:18:74:08:06:86:af:e7:ac:9e:39:84:41:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96746d3bd3e2dde6164020deb0b5d8922c64766d
Validity
Not Before: Jun 14 19:00:42 2025 GMT
Not After : Jun 15 19:00:42 2025 GMT
Subject: CN=d752ef4a883c6937bf255db359e29da37f5b7638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:79:e3:32:5e:00:4d:04:0a:57:56:43:bf:57:
b2:0d:4b:a7:ca:e4:37:6d:c6:a6:26:e1:8a:97:48:
7d:a2:d1:df:41:c2:65:60:47:5c:0f:7b:78:51:b1:
a3:da:9a:09:18:89:d1:ac:51:80:f8:48:9d:87:4d:
b6:fa:0a:69:50:3d:1b:65:5d:b5:75:3c:ba:2f:48:
15:49:96:d4:9c:d3:80:dd:ce:cf:c9:e7:50:3d:0b:
b0:8a:05:c7:7a:86:1f:92:ef:d3:8e:40:e6:cc:e3:
f2:ea:02:51:5d:c4:01:0a:a5:bd:76:c2:f3:ad:16:
1f:45:5f:a4:13:13:f8:a2:e1:4c:81:3d:98:fa:6d:
1d:e0:58:e7:26:b5:fc:00:05:b9:4d:79:31:b5:36:
5f:7b:4f:96:e4:7e:08:f3:6a:a6:87:52:6d:b3:7e:
57:48:79:22:4d:9f:01:62:0d:7b:b6:13:e7:4d:ca:
8e:11:06:1f:24:c4:a7:f1:06:65:6b:5f:cd:c5:18:
5f:d2:c6:f8:2d:ef:82:8d:7c:2d:76:14:89:51:76:
5b:73:61:83:77:d8:ae:4e:9e:b1:12:ee:a5:bd:68:
07:2c:17:d8:08:f1:ec:f6:fc:cc:3b:15:d8:cf:b2:
ff:58:55:35:93:4c:02:48:6e:56:40:21:19:c0:87:
a2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:52:EF:4A:88:3C:69:37:BF:25:5D:B3:59:E2:9D:A3:7F:5B:76:38
X509v3 Authority Key Identifier:
keyid:96:74:6D:3B:D3:E2:DD:E6:16:40:20:DE:B0:B5:D8:92:2C:64:76:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lnRtO9Pi3eYWQCDesLXYkixkdm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/e1f171-a889-4395-9cfc-0805419d721a/1/lnRtO9Pi3eYWQCDesLXYkixkdm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/e1f171-a889-4395-9cfc-0805419d721a/1/lnRtO9Pi3eYWQCDesLXYkixkdm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:12:cb:d7:00:05:4e:f4:21:60:06:70:c4:2d:63:60:cf:6e:
aa:9d:88:8e:7b:37:c4:f6:6d:c2:9c:82:b5:ff:17:3b:98:30:
70:89:1c:bb:6c:e7:65:1e:ca:23:1a:27:fd:ac:90:c4:a5:36:
7a:6a:56:30:18:4f:8d:ec:10:7c:1d:62:86:80:9e:c9:86:9e:
76:02:19:e7:6b:7d:51:90:b4:e0:28:c4:c5:5b:37:c4:97:c3:
90:c7:fa:6e:ee:ce:1f:50:c8:40:fd:63:ba:52:23:a4:d3:2e:
35:8f:95:c9:75:69:5a:11:38:63:a4:57:a9:a2:ef:e8:7d:1a:
a1:ff:5f:55:c4:3f:71:28:ec:e5:8a:ff:fc:8a:e7:91:e1:47:
26:cd:2e:2e:89:b9:a7:89:34:f1:2d:82:bf:5f:15:55:35:02:
2d:1a:20:80:21:3a:cb:23:ac:bd:af:db:0e:24:d1:3c:70:54:
1c:42:68:da:c8:e4:3b:16:a6:5a:ea:d9:00:ed:d3:7e:89:64:
15:a6:e6:13:e2:14:88:15:bf:e0:55:70:cf:59:46:1a:ed:7c:
b1:be:b5:ff:08:37:a3:ba:3d:0c:ea:10:59:c2:24:5f:85:4c:
4f:71:a0:37:36:7a:12:24:45:e0:2a:c4:49:84:08:58:37:b5:
11:0a:ac:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:13:47 2025 by rpki-client