Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
File: sLQvCUy6l0wfrsa97BVg9mOHiRE.mft (raw, json)
Hash identifier: 6O76EnenMcrT20eA+3uDOPpu+krj3OeuVgcCOwX8FC4=
Subject key identifier: 7F:74:9C:29:61:1D:67:BD:18:4A:81:2F:B9:BC:B7:43:3E:CE:A8:B2
Authority key identifier: B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11
Certificate issuer: /CN=b0b42f094cba974c1faec6bdec1560f663878911
Certificate serial: 0198D66108CE55CA07C4092B770FB994B35F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
Manifest number: 12DB
Signing time: Sat 23 Aug 2025 10:02:19 +0000
Manifest this update: Sat 23 Aug 2025 10:02:19 +0000
Manifest next update: Sun 24 Aug 2025 10:02:19 +0000
Files and hashes: 1: sLQvCUy6l0wfrsa97BVg9mOHiRE.crl (hash: oehNjBTSTdpqPD1ARoMyFT5x/qsMAxnocFrVEa6IdAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:08:ce:55:ca:07:c4:09:2b:77:0f:b9:94:b3:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b42f094cba974c1faec6bdec1560f663878911
Validity
Not Before: Aug 23 10:02:19 2025 GMT
Not After : Aug 24 10:02:19 2025 GMT
Subject: CN=7f749c29611d67bd184a812fb9bcb7433ecea8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f3:0a:76:d2:4d:5f:f4:38:db:84:04:be:92:
79:71:c8:4a:51:a2:47:3f:ff:9f:ea:32:6f:b3:70:
16:bd:9c:7a:bf:1a:15:5c:1b:25:34:d2:5c:10:ed:
c8:a9:6f:6c:79:ca:9b:7a:e4:10:b4:c8:03:1d:e7:
d6:b0:55:09:32:b2:8d:cd:6b:39:de:76:f9:56:6a:
8c:03:b8:a6:07:ab:c3:fe:95:5c:a3:e1:91:ae:1d:
f4:ec:39:dd:1e:f7:32:45:5e:60:ed:a1:31:dc:c8:
36:68:76:97:29:bb:6e:5e:9d:e0:41:1a:73:55:af:
c1:dc:0d:4f:27:b8:92:b7:8e:33:69:b4:d4:7b:65:
af:5c:b0:21:69:95:01:f4:d9:01:1a:a2:0e:3b:43:
a0:b2:dc:68:2c:5f:39:d6:f9:91:5e:41:da:4d:c1:
cf:1a:14:71:0d:5e:07:be:f1:1d:6d:ae:15:08:84:
e3:e5:ae:45:bb:42:3c:00:5d:b9:bf:0e:91:34:27:
c0:79:cc:30:44:81:33:7d:90:9c:08:ab:dc:82:b7:
e5:82:48:50:97:07:75:1f:90:a1:c4:7c:06:39:79:
84:fb:16:52:84:ec:aa:bc:be:90:77:97:f2:03:21:
56:c0:57:be:56:7a:32:06:e2:a0:85:4c:50:55:5a:
66:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:74:9C:29:61:1D:67:BD:18:4A:81:2F:B9:BC:B7:43:3E:CE:A8:B2
X509v3 Authority Key Identifier:
keyid:B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:b7:ac:0c:9b:50:2d:b3:6d:87:da:08:ea:a5:66:39:77:a9:
20:22:f8:08:15:7e:dd:34:ff:25:2d:9f:73:fd:68:62:fa:32:
0f:32:5f:8d:6f:9d:db:65:da:b4:f4:0f:51:b6:57:bd:6b:18:
2b:ca:9a:c2:bd:34:eb:ce:95:ec:50:8d:c1:30:51:cd:ae:2f:
b6:d9:a0:47:3d:6c:7b:13:04:c6:99:8b:ce:1f:11:33:1a:e3:
5f:07:69:96:cb:30:b7:e1:11:a1:31:98:db:f6:34:51:6c:0b:
a5:4f:9b:dd:7f:52:6a:30:95:c5:15:3d:00:46:01:8e:bd:9b:
b8:2a:55:fd:d7:63:fb:1e:db:d5:a7:ec:a0:10:54:4f:a2:d1:
5d:38:03:36:fc:01:e7:88:b1:88:c9:00:e1:b5:63:0f:74:6c:
eb:0f:5b:0e:ca:81:62:5f:a4:bc:0d:b3:df:79:ca:8f:77:5d:
91:cb:34:ad:27:3c:ff:43:91:0e:87:30:51:dd:0d:11:f6:e3:
6c:63:79:cd:9f:6e:d5:dc:a6:27:13:fa:04:fb:8f:d3:ff:1d:
ca:fe:07:5d:83:46:33:44:7b:b6:fd:06:71:cc:2b:a3:0b:98:
9d:34:f7:05:b8:31:d3:f6:9f:98:2a:5f:e3:bf:a4:ac:5a:26:
d9:20:06:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:08:08 2025 by rpki-client