Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
File: LdgAjePP9i0vrKENmf8gw-h43N8.mft (raw, json)
Hash identifier: nXOxIbig9y1Lcnq2azyohNtREGsK5dZ7T5W5YCB+Iyk=
Subject key identifier: AD:9D:B9:FD:97:C0:27:E0:8A:D9:FA:53:F1:15:0A:F1:F5:F4:DF:EE
Authority key identifier: 2D:D8:00:8D:E3:CF:F6:2D:2F:AC:A1:0D:99:FF:20:C3:E8:78:DC:DF
Certificate issuer: /CN=2dd8008de3cff62d2faca10d99ff20c3e878dcdf
Certificate serial: 0198A04DFE1103B09C53B1E72DDEBA065EEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
Manifest number: 04EF
Signing time: Tue 12 Aug 2025 22:02:02 +0000
Manifest this update: Tue 12 Aug 2025 22:02:02 +0000
Manifest next update: Wed 13 Aug 2025 22:02:02 +0000
Files and hashes: 1: LdgAjePP9i0vrKENmf8gw-h43N8.crl (hash: r16Ebg0xh08dRVd7pKgA1iJsZrdv/xmi/CnW7aJQito=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:fe:11:03:b0:9c:53:b1:e7:2d:de:ba:06:5e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dd8008de3cff62d2faca10d99ff20c3e878dcdf
Validity
Not Before: Aug 12 22:02:02 2025 GMT
Not After : Aug 13 22:02:02 2025 GMT
Subject: CN=ad9db9fd97c027e08ad9fa53f1150af1f5f4dfee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fc:0b:a9:7a:a3:60:06:ca:6a:4d:12:64:6d:
ea:2e:d0:21:fd:26:e1:79:c4:ce:e4:de:58:f3:92:
f2:b3:4e:3e:7f:5b:8d:95:8c:bd:e4:7b:48:73:ae:
77:62:5e:11:5e:72:19:41:b3:19:0c:0c:5c:3d:bf:
06:69:39:48:bb:c6:e1:12:b8:6f:e1:c1:7a:ea:ed:
77:18:ed:f5:15:f1:ca:3f:7d:d1:e2:dc:95:6a:16:
89:bc:51:f8:92:35:f8:79:49:32:38:26:9f:fb:c9:
9b:3c:4b:ce:70:62:a4:0b:f8:02:32:21:4b:29:56:
74:fc:0a:60:e3:0a:e8:fb:f9:9f:e5:c2:a0:d1:da:
a7:56:1c:1e:08:4c:e0:f4:33:58:1f:1f:2d:17:f3:
72:04:14:61:68:7f:e5:e7:d9:9c:35:da:83:f4:56:
35:57:a1:83:44:16:68:61:f7:1b:39:25:ab:ca:27:
ff:dc:00:4f:f2:b9:e8:be:a9:b0:5e:4f:97:b2:ff:
25:17:2b:63:52:93:35:b7:90:49:6c:4f:f6:73:12:
73:fe:36:5b:d8:7b:0e:95:3f:96:09:34:3f:6f:e8:
6e:20:8e:b7:87:62:2f:ae:33:ed:fa:7d:76:70:6f:
79:fd:20:de:74:d2:5c:87:4e:bf:9f:16:0a:9b:c2:
df:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:9D:B9:FD:97:C0:27:E0:8A:D9:FA:53:F1:15:0A:F1:F5:F4:DF:EE
X509v3 Authority Key Identifier:
keyid:2D:D8:00:8D:E3:CF:F6:2D:2F:AC:A1:0D:99:FF:20:C3:E8:78:DC:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:e1:79:94:b9:9b:69:b9:00:53:74:9c:c1:f2:3d:f3:71:d2:
9f:d1:0e:a9:28:7f:b8:7c:b2:d6:26:e9:21:d1:66:e1:a5:41:
18:13:72:d5:9c:06:68:54:64:c6:04:a9:d0:5e:31:a1:35:06:
17:b7:e8:9d:15:ff:20:f6:39:8f:2b:94:b4:6c:a2:47:2a:6f:
a1:61:2c:4b:8b:d2:64:b3:ac:4d:2c:d5:e5:d7:6d:d7:a7:01:
91:79:8e:4d:3d:fe:1d:9e:b2:29:fd:c8:eb:5d:2f:cf:e2:e6:
34:28:e0:05:ad:ef:e0:6d:9b:ed:0d:3a:2e:47:c1:fc:ba:6d:
25:ae:e1:cd:5f:08:6f:9f:17:11:2f:f4:78:21:de:9e:03:86:
ee:e6:1c:0e:8d:54:b3:eb:70:d9:92:78:6d:ba:28:bf:3b:98:
71:0f:be:69:60:35:b8:2a:85:24:3c:58:be:a8:36:37:cb:8e:
ce:e6:1a:f5:2d:86:32:77:01:39:c5:1a:ab:b9:7e:a0:86:4d:
e8:f6:08:e2:3a:12:41:a8:22:b3:83:1c:33:18:61:f5:7e:32:
a1:b7:7e:4f:b7:c4:b3:71:bc:5a:15:4e:e8:5e:09:91:a7:0e:
a2:08:e5:40:25:d7:89:33:ad:ce:a9:a8:a4:11:b3:b6:0b:8e:
2b:aa:9c:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 00:38:15 2025 by rpki-client