Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft
File: li68oqtiGOHxrgaHwxREVP1dmWs.mft (raw, json)
Hash identifier: RUz7q8E3oo0Knjf8Ze/yPI6xizfS4crzBRIK/WTPuWA=
Subject key identifier: CD:DA:0A:96:C1:34:47:D4:EF:CD:B0:17:2F:A1:B2:63:D9:C0:4E:93
Authority key identifier: 96:2E:BC:A2:AB:62:18:E1:F1:AE:06:87:C3:14:44:54:FD:5D:99:6B
Certificate issuer: /CN=962ebca2ab6218e1f1ae0687c3144454fd5d996b
Certificate serial: 0198D6606A1C7ACA15375ED06D93D5FC732A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/li68oqtiGOHxrgaHwxREVP1dmWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft
Manifest number: 15DB
Signing time: Sat 23 Aug 2025 10:01:39 +0000
Manifest this update: Sat 23 Aug 2025 10:01:39 +0000
Manifest next update: Sun 24 Aug 2025 10:01:39 +0000
Files and hashes: 1: li68oqtiGOHxrgaHwxREVP1dmWs.crl (hash: uSoRuMGsh3A8OvibUcf9ZhaA7j9BQpz/REgkmwPlWJ4=)
2: o2GAlRjqrWRT3XBGB9RwTDs_Ew0.roa (hash: HIy6rjCdEt9bpDveV9D2228Lv0B3K1QWnfoHF9Amb5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft
rsync://rpki.ripe.net/repository/DEFAULT/li68oqtiGOHxrgaHwxREVP1dmWs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:6a:1c:7a:ca:15:37:5e:d0:6d:93:d5:fc:73:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=962ebca2ab6218e1f1ae0687c3144454fd5d996b
Validity
Not Before: Aug 23 10:01:39 2025 GMT
Not After : Aug 24 10:01:39 2025 GMT
Subject: CN=cdda0a96c13447d4efcdb0172fa1b263d9c04e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b3:cb:da:8c:39:28:50:f6:2c:8e:91:09:17:
4b:02:8a:6b:af:ea:e6:8b:07:2f:4f:64:99:d1:a2:
20:05:c5:e4:ba:c4:66:94:96:0f:29:ba:cd:90:a7:
0d:51:e0:20:4f:78:1e:f3:88:41:2b:bd:db:bb:1a:
0f:41:f4:f6:8d:5a:9f:c3:99:11:8f:f8:26:d3:a1:
a2:c8:97:e0:b0:9a:5e:9c:93:1f:86:f0:1d:4b:c5:
0b:42:8f:ab:a8:0f:ba:8b:62:4c:78:e7:72:63:30:
e0:81:3e:dd:03:73:86:e3:e9:99:a4:df:c7:21:23:
cf:f5:bb:ee:1a:9d:60:17:25:e1:c7:5a:e4:d3:e8:
26:ef:93:d0:86:f6:f2:1c:18:88:aa:c9:de:c3:91:
fa:cf:0a:54:91:bf:b2:32:8c:4d:87:2f:ac:27:fb:
ef:f5:16:37:f5:21:97:7d:b7:03:87:69:73:2b:a2:
e8:14:a1:61:ce:5c:1f:0b:e8:d3:03:40:6d:64:c3:
28:b3:dc:72:e9:9c:e9:3c:fc:4e:0e:e8:86:4d:2d:
58:58:2e:99:7d:42:3a:6b:7f:88:55:86:fc:43:ce:
45:46:17:d7:75:b8:02:73:94:2f:20:85:d1:08:cd:
97:71:a7:0d:21:b8:5b:03:f9:cb:f2:3f:c9:07:98:
2e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:DA:0A:96:C1:34:47:D4:EF:CD:B0:17:2F:A1:B2:63:D9:C0:4E:93
X509v3 Authority Key Identifier:
keyid:96:2E:BC:A2:AB:62:18:E1:F1:AE:06:87:C3:14:44:54:FD:5D:99:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/li68oqtiGOHxrgaHwxREVP1dmWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/560ac6-194f-4b1b-b5ac-fd87b7335955/1/li68oqtiGOHxrgaHwxREVP1dmWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:cd:9b:d1:63:30:dc:ba:79:5a:21:c5:9b:cc:b4:ff:d8:f3:
1c:90:c6:65:e4:02:25:fc:ba:2e:bd:6e:a0:b9:f7:6f:da:af:
cd:00:dd:49:e1:0b:8f:79:9c:ea:99:93:a7:24:f2:16:78:1a:
a4:0f:cd:cd:d3:16:72:14:a1:1b:6d:53:23:2d:4d:9e:83:46:
31:ac:17:8a:44:34:ad:b6:38:c7:10:84:ae:db:ef:e3:e6:83:
51:42:84:c3:f5:a3:c3:30:0e:06:d7:d4:31:dc:93:3b:d7:88:
8b:ce:4b:bd:eb:41:da:37:32:e2:5c:1a:e7:2c:ca:b1:29:d8:
3f:f2:e1:0c:07:61:1f:1a:41:7b:03:39:e0:12:fc:7e:25:69:
59:6e:cf:92:3c:4c:31:03:74:c4:f4:8a:68:75:6f:07:db:b0:
cf:35:05:39:b9:93:b3:dd:ec:a1:15:42:2f:80:66:2b:82:b7:
67:7f:01:e2:b0:0a:04:76:5c:2b:59:33:70:2e:ec:55:0d:22:
b9:c0:88:e1:09:92:17:ca:8a:0f:e4:50:65:83:08:a0:9a:df:
7d:2a:8d:d2:7a:4d:3f:6e:49:e4:2e:56:53:46:00:ea:86:25:
17:29:fe:c5:00:f3:ba:4f:17:11:da:9e:0f:da:85:0c:55:44:
16:ad:b5:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:06:31 2025 by rpki-client