Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
File: LdgAjePP9i0vrKENmf8gw-h43N8.mft (raw, json)
Hash identifier: PQ0iGuC1IS41KO9Pc4sZHtnQPJ43lfjTq0xKXQmNkxg=
Subject key identifier: AC:06:5E:08:BD:D5:C1:D6:35:0E:C7:27:2C:56:E5:18:C4:E2:AB:5A
Authority key identifier: 2D:D8:00:8D:E3:CF:F6:2D:2F:AC:A1:0D:99:FF:20:C3:E8:78:DC:DF
Certificate issuer: /CN=2dd8008de3cff62d2faca10d99ff20c3e878dcdf
Certificate serial: 019A4EF43CC730C60535CEA75F23F9EE2504
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
Manifest number: 05CE
Signing time: Tue 04 Nov 2025 13:00:20 +0000
Manifest this update: Tue 04 Nov 2025 13:00:20 +0000
Manifest next update: Wed 05 Nov 2025 13:00:20 +0000
Files and hashes: 1: LdgAjePP9i0vrKENmf8gw-h43N8.crl (hash: Q/wb7JV6wEeOAahl7CvqWNwNk7+goS0g3+EPRKAcMX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:3c:c7:30:c6:05:35:ce:a7:5f:23:f9:ee:25:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dd8008de3cff62d2faca10d99ff20c3e878dcdf
Validity
Not Before: Nov 4 13:00:20 2025 GMT
Not After : Nov 5 13:00:20 2025 GMT
Subject: CN=ac065e08bdd5c1d6350ec7272c56e518c4e2ab5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ac:69:4a:3a:a7:1b:5b:87:8a:be:70:ea:24:
73:42:5d:74:17:06:6e:56:f3:3e:85:fc:92:08:f5:
7f:18:63:6c:04:86:a7:3c:68:7f:75:31:17:e2:92:
fb:31:5e:16:c4:bc:77:71:d1:e4:0a:a6:2e:7c:fa:
60:cd:18:e3:3c:7b:e3:44:d2:40:60:56:1e:b1:4c:
60:f9:70:d8:5a:90:3a:93:3f:d1:69:47:e7:5c:3f:
14:5a:78:7a:d1:82:33:4d:ee:c9:21:bd:43:0d:c9:
57:0a:66:46:cd:92:11:eb:97:a0:57:8a:21:98:e4:
c7:e1:32:69:46:a2:cb:13:d2:5b:cd:55:1a:95:82:
1d:0e:6a:5e:d8:59:f9:50:21:ff:07:ce:60:1f:cd:
50:84:03:f2:ae:62:54:3e:c7:22:3e:32:91:c9:28:
54:3c:a5:83:b5:82:01:50:f3:40:87:be:79:ac:11:
c3:0f:9b:52:5a:3c:c8:ef:e5:7e:b0:2b:55:f8:2f:
74:35:a6:13:64:4a:6e:17:aa:1d:72:b8:ec:ae:e0:
03:a4:b7:6a:6a:53:7f:13:05:f9:7f:ee:ae:01:04:
c9:61:78:95:4f:8d:a0:e3:9d:fd:3b:b3:1b:89:3b:
6e:7d:38:41:0f:b0:e4:99:76:41:dc:5f:9e:da:42:
80:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:06:5E:08:BD:D5:C1:D6:35:0E:C7:27:2C:56:E5:18:C4:E2:AB:5A
X509v3 Authority Key Identifier:
keyid:2D:D8:00:8D:E3:CF:F6:2D:2F:AC:A1:0D:99:FF:20:C3:E8:78:DC:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:fe:08:94:95:a0:1a:4b:f0:e4:e9:ba:91:84:e2:43:23:91:
c9:f6:05:6e:e1:64:25:f8:5a:80:8a:fa:57:d2:33:60:f1:bc:
24:33:95:af:53:47:45:ea:8c:14:7a:c5:55:93:e1:cd:eb:19:
e3:db:72:fe:48:fe:a4:39:c9:6b:b1:c7:f8:67:1a:06:9f:76:
14:2c:c7:94:96:11:f3:1d:f5:f4:8c:0e:00:44:26:fb:95:1b:
c8:6c:a0:76:b9:09:4b:ac:dd:51:0e:c0:b8:d3:50:5a:72:da:
6c:34:dc:d9:dd:55:29:3b:a8:40:4a:4c:bf:f9:34:d4:bd:f6:
e9:ae:72:2d:00:43:22:05:9d:3f:1f:e4:5d:5d:0f:f2:0c:44:
b7:28:a0:e3:2a:7c:aa:46:5c:e2:d1:38:94:da:68:5f:af:49:
8b:f2:d1:85:b9:5f:15:89:70:b0:f4:98:b1:85:dc:37:4f:5b:
94:62:5d:17:20:b3:c8:c9:e8:2e:da:5a:a0:bc:d1:61:9b:10:
b0:17:20:5c:81:ed:54:0d:53:01:27:6d:6a:22:6d:f2:7b:c1:
b0:82:71:ff:0e:c2:6a:69:58:c8:e8:f7:db:3d:00:00:89:25:
c7:db:f4:16:c7:35:a4:0f:7f:ba:e8:46:bc:a7:69:5e:e9:5a:
2a:2c:db:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:19:46 2025 by rpki-client