Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
File: lkptHqRrxAuqMavE9ByQZn7-Nu0.mft (raw, json)
Hash identifier: syZC0tZ8ZI5u6FOOYlx5JyplxlFZBDO5OoRWRhxmI28=
Subject key identifier: 2D:16:E2:41:C3:E1:95:6A:5B:95:66:83:84:00:D4:13:CE:3F:0F:36
Authority key identifier: 96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
Certificate issuer: /CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Certificate serial: 0198D65FAA6C60893F64B59DEAFC42C6A45F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
Manifest number: 0716
Signing time: Sat 23 Aug 2025 10:00:50 +0000
Manifest this update: Sat 23 Aug 2025 10:00:50 +0000
Manifest next update: Sun 24 Aug 2025 10:00:50 +0000
Files and hashes: 1: lkptHqRrxAuqMavE9ByQZn7-Nu0.crl (hash: AfB7588VPQcyKqoob1p9Eu6rYPlww27U2uDaeeu0BWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:aa:6c:60:89:3f:64:b5:9d:ea:fc:42:c6:a4:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Validity
Not Before: Aug 23 10:00:50 2025 GMT
Not After : Aug 24 10:00:50 2025 GMT
Subject: CN=2d16e241c3e1956a5b9566838400d413ce3f0f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:24:61:d9:f6:65:2e:39:f3:10:3c:fb:d8:37:
6d:48:d6:c7:ae:58:9a:61:df:f6:3a:9d:17:e4:7e:
48:50:fd:91:84:83:b9:83:25:5b:ef:f4:5d:a9:da:
de:63:37:77:44:71:f7:37:e9:e6:0d:3c:38:f4:cd:
54:48:fe:d1:ed:a3:e3:ba:c9:90:c4:66:44:1a:be:
b3:b1:b5:d1:1a:31:54:62:06:f0:9a:fc:5e:bc:7f:
94:b9:54:f0:cb:fe:8a:68:f0:4e:e3:0a:b7:30:97:
76:35:23:b5:33:58:2d:73:c0:9c:4c:58:94:44:6d:
1e:d2:73:bb:60:19:fc:89:5d:90:da:7d:67:53:d5:
53:f7:f8:88:4e:0a:a2:2a:4c:f9:2f:0e:ca:5f:bd:
63:3b:e9:52:2e:12:9a:8e:d1:2b:ea:41:8e:4e:06:
b9:aa:22:38:08:83:18:5b:3b:b4:ad:71:f3:78:c6:
fe:a6:27:d5:4f:18:dc:df:3f:e5:e0:fa:26:b0:ce:
85:50:a9:1c:54:a6:5f:b8:52:a0:4f:29:7a:f6:2d:
dd:3b:19:ea:f7:77:a1:2f:0f:a0:8a:76:cc:c7:0e:
a3:fb:2f:be:9a:9c:cd:4e:95:07:26:c0:ee:74:2a:
77:c9:df:4e:4b:03:c2:ad:3b:7e:30:9a:37:aa:f3:
16:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:16:E2:41:C3:E1:95:6A:5B:95:66:83:84:00:D4:13:CE:3F:0F:36
X509v3 Authority Key Identifier:
keyid:96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:ea:46:53:2f:8d:40:41:6a:60:a4:01:da:00:ba:84:07:b5:
da:d8:5a:45:38:70:ce:21:67:ea:54:1a:6d:90:7b:bf:1c:f7:
74:59:5f:56:0d:fb:47:e6:d9:88:28:a5:ef:bd:83:b6:6d:c8:
38:e5:49:ca:56:2e:3a:c9:dd:62:ba:4b:17:68:7c:d1:b0:0d:
b6:96:5a:ca:1a:86:61:10:f2:4d:db:50:6c:25:46:6e:05:60:
e8:55:02:41:12:f7:1a:f5:c9:fa:77:35:36:b5:5f:67:40:e5:
42:97:31:1a:f8:ac:93:1d:f5:97:a7:6f:35:98:7f:b5:7a:c5:
d0:fc:60:16:03:99:27:44:86:e9:25:37:28:e9:48:e9:fc:37:
fe:58:40:d4:e4:d5:e5:34:59:04:46:40:fe:fa:42:1a:0f:ec:
bd:fa:d8:bd:c6:4a:42:47:a6:92:c4:d1:8c:37:5b:7b:50:16:
0b:2f:cd:53:9e:98:a2:f6:1d:d3:9b:66:89:b0:de:cc:bf:fe:
73:89:f2:b2:8d:18:be:bb:d7:a9:db:29:ff:27:73:54:00:20:
a0:46:e9:06:fe:cd:57:b9:64:d2:e6:38:61:0f:bb:9c:2f:1f:
ee:a4:70:96:7f:70:82:51:bd:33:53:13:ea:5c:c3:c5:a2:8e:
8c:4c:24:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX6psYIk/ZLWd6vxCxqRfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2NGE2ZDFlYTQ2YmM0MGJhYTMxYWJjNGY0MWM5MDY2N2Vm
ZTM2ZWQwHhcNMjUwODIzMTAwMDUwWhcNMjUwODI0MTAwMDUwWjAzMTEwLwYDVQQD
EygyZDE2ZTI0MWMzZTE5NTZhNWI5NTY2ODM4NDAwZDQxM2NlM2YwZjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5yRh2fZlLjnzEDz72DdtSNbHrlia
Yd/2Op0X5H5IUP2RhIO5gyVb7/RdqdreYzd3RHH3N+nmDTw49M1USP7R7aPjusmQ
xGZEGr6zsbXRGjFUYgbwmvxevH+UuVTwy/6KaPBO4wq3MJd2NSO1M1gtc8CcTFiU
RG0e0nO7YBn8iV2Q2n1nU9VT9/iITgqiKkz5Lw7KX71jO+lSLhKajtEr6kGOTga5
qiI4CIMYWzu0rXHzeMb+pifVTxjc3z/l4PomsM6FUKkcVKZfuFKgTyl69i3dOxnq
93ehLw+ginbMxw6j+y++mpzNTpUHJsDudCp3yd9OSwPCrTt+MJo3qvMW3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC0W4kHD4ZVqW5Vmg4QA1BPOPw82MB8GA1UdIwQY
MBaAFJZKbR6ka8QLqjGrxPQckGZ+/jbtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGtwdEhxUnJ4QXVxTWF2RTlCeVFabjctTnUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lZGM0MWUtMzUyZS00MTJiLTlhZTYt
YTA5NTFlZjdkZmNkLzEvbGtwdEhxUnJ4QXVxTWF2RTlCeVFabjctTnUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9lZGM0MWUtMzUyZS00MTJiLTlhZTYtYTA5NTFlZjdkZmNk
LzEvbGtwdEhxUnJ4QXVxTWF2RTlCeVFabjctTnUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxepGUy+N
QEFqYKQB2gC6hAe12thaRThwziFn6lQabZB7vxz3dFlfVg37R+bZiCil772Dtm3I
OOVJylYuOsndYrpLF2h80bANtpZayhqGYRDyTdtQbCVGbgVg6FUCQRL3GvXJ+nc1
NrVfZ0DlQpcxGviskx31l6dvNZh/tXrF0PxgFgOZJ0SG6SU3KOlI6fw3/lhA1OTV
5TRZBEZA/vpCGg/svfrYvcZKQkemksTRjDdbe1AWCy/NU56YovYd05tmibDezL/+
c4nyso0YvrvXqdsp/ydzVAAgoEbpBv7NV7lk0uY4YQ+7nC8f7qRwln9wglG9M1MT
6lzDxaKOjEwkRQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:24:50 2025 by rpki-client