
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
File: L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft (raw, json)
Hash identifier: Z6R1R3ytBh7yPGODNJhuIrZhdw4XLQogBa/95SYwjds=
Subject key identifier: FD:6C:B2:5D:A6:84:BC:2F:24:7C:58:95:54:4D:93:5A:AC:47:0E:F7
Authority key identifier: 2F:70:53:26:64:34:3C:B3:D2:89:70:23:A1:27:F6:0B:A9:17:A5:DD
Certificate issuer: /CN=2f70532664343cb3d2897023a127f60ba917a5dd
Certificate serial: 0198D4DFF753AFE3EB75D28DE6576A80B370
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
Manifest number: 0C3B
Signing time: Sat 23 Aug 2025 03:01:44 +0000
Manifest this update: Sat 23 Aug 2025 03:01:44 +0000
Manifest next update: Sun 24 Aug 2025 03:01:44 +0000
Files and hashes: 1: L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl (hash: fq+ae61BrzrU/Jna+KiTYBmSBnrph8YBi/edFI0PWEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:f7:53:af:e3:eb:75:d2:8d:e6:57:6a:80:b3:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f70532664343cb3d2897023a127f60ba917a5dd
Validity
Not Before: Aug 23 03:01:44 2025 GMT
Not After : Aug 24 03:01:44 2025 GMT
Subject: CN=fd6cb25da684bc2f247c5895544d935aac470ef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d0:44:f5:7a:3b:b2:9a:5b:59:aa:47:8e:27:
ee:bd:e4:46:31:84:38:27:4c:e0:aa:75:53:f2:db:
8c:83:5a:e9:cc:0f:7a:b5:7b:57:03:84:58:9c:81:
ba:1d:16:ba:eb:51:9c:1a:32:7f:d3:5c:3d:ad:8b:
6f:e9:33:b2:f6:5a:73:0f:c6:95:9d:86:74:49:31:
6d:6f:41:cc:e3:3a:d5:21:72:ef:75:13:a9:a7:95:
e7:6e:ae:c3:70:4f:a1:b0:a2:9d:49:ad:3a:54:1d:
67:3a:eb:c7:44:69:3d:f8:79:48:be:f1:b9:83:03:
02:f2:86:b7:b8:2a:4b:f6:08:a9:fc:56:fc:30:85:
ee:4c:68:67:fd:88:1f:c2:1d:f0:5f:a0:ff:7a:31:
4f:6d:0d:fd:9f:5d:c0:35:8f:ef:c7:b2:de:c2:44:
fd:71:88:df:a8:50:38:22:27:63:e9:05:5d:9a:4f:
31:1f:86:88:01:70:fd:6a:48:b7:bc:cd:7f:d0:bf:
76:55:5e:9b:27:de:78:31:22:5b:96:16:77:03:0b:
75:32:89:3e:19:1c:59:ec:63:27:12:86:ae:30:a2:
23:b8:aa:eb:eb:63:aa:c1:97:2b:5c:33:73:da:c0:
96:2d:a6:07:61:ee:4b:aa:06:81:54:ff:5a:ef:b6:
58:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:6C:B2:5D:A6:84:BC:2F:24:7C:58:95:54:4D:93:5A:AC:47:0E:F7
X509v3 Authority Key Identifier:
keyid:2F:70:53:26:64:34:3C:B3:D2:89:70:23:A1:27:F6:0B:A9:17:A5:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:53:0b:2c:08:4c:17:2e:7a:13:b9:b4:ce:80:ca:d5:59:56:
65:c6:09:d6:18:9e:44:df:e4:22:0a:e7:51:2c:e7:6a:b4:b1:
10:79:4d:6c:07:c3:88:a8:59:fa:ae:d3:c0:da:e5:82:1c:0e:
0f:49:47:12:bb:78:f7:a2:14:34:ae:c7:8c:8d:41:c8:b7:4f:
53:e7:b0:43:e1:3e:8a:99:0e:c6:aa:f8:ad:5d:30:8e:e7:b2:
f4:03:18:5c:43:01:21:ea:80:1b:f1:ea:45:e5:21:89:9a:06:
07:94:2d:fd:c9:e3:24:3a:a6:3d:52:20:d8:b1:c2:ee:8f:6b:
72:58:1e:19:51:23:b2:59:c9:08:aa:a5:8d:65:42:d7:d4:ba:
89:31:b9:8f:af:0d:5d:2d:95:4b:44:df:89:e8:f0:5a:e1:50:
82:5f:bd:d7:4e:96:9f:62:78:06:81:b9:24:e1:a4:76:33:3e:
b5:1f:ba:12:09:43:f3:cc:03:5f:c8:73:39:8c:92:84:64:2c:
29:04:82:72:2e:64:36:a6:24:2c:f0:29:1a:db:39:b6:1b:49:
be:45:74:16:7e:b2:5d:19:2a:31:82:07:6c:4f:11:fe:1a:9a:
06:05:5c:68:43:3e:cd:22:96:f7:29:2b:66:28:9c:9f:65:14:
a7:1c:ed:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:01:17 2025 by rpki-client