Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
File: O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft (raw, json)
Hash identifier: M3BgehhPQG7YBeMJbnkj9b/0c7UpszBKNPZkYD3FhO4=
Subject key identifier: E5:F3:04:FB:D0:16:3E:3D:2C:C4:6E:76:3D:52:13:8B:D6:53:29:07
Authority key identifier: 3B:F2:C2:0D:A4:D6:30:18:2E:EE:33:45:AD:9D:1C:4A:D9:17:0D:50
Certificate issuer: /CN=3bf2c20da4d630182eee3345ad9d1c4ad9170d50
Certificate serial: 0198D5BC33A07076B62DF23B2F456DC1DE50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
Manifest number: 1088
Signing time: Sat 23 Aug 2025 07:02:17 +0000
Manifest this update: Sat 23 Aug 2025 07:02:17 +0000
Manifest next update: Sun 24 Aug 2025 07:02:17 +0000
Files and hashes: 1: O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl (hash: BkWk1TySmb9Mq+ALRjluq/46QK9sN8//gEmw8WBeWDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:33:a0:70:76:b6:2d:f2:3b:2f:45:6d:c1:de:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf2c20da4d630182eee3345ad9d1c4ad9170d50
Validity
Not Before: Aug 23 07:02:17 2025 GMT
Not After : Aug 24 07:02:17 2025 GMT
Subject: CN=e5f304fbd0163e3d2cc46e763d52138bd6532907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fc:4c:56:c8:df:db:ed:1c:2d:64:cc:7b:fe:
93:2e:16:b6:cb:5b:4b:58:5a:25:cf:c9:22:17:96:
a9:8d:7c:e9:6e:82:50:f2:85:19:a4:19:72:00:a9:
88:39:e8:29:ad:fd:bc:3f:33:35:66:d1:d8:0b:e2:
37:33:ea:d6:98:31:97:51:c6:68:8b:5e:38:31:c8:
58:7c:71:a9:e5:76:81:27:94:d4:42:30:d3:b8:b4:
57:28:19:1c:12:e1:0b:bd:d2:ba:c2:e9:72:2b:23:
bd:ca:d1:47:07:31:45:72:ab:0f:65:27:94:7f:c8:
96:2c:94:88:b4:e3:18:ef:da:45:b7:f2:17:ac:2b:
48:01:44:1e:ea:df:f9:03:f5:30:90:74:8b:69:43:
94:bc:26:91:23:fc:6b:11:84:ed:44:b0:84:69:c8:
a0:22:52:02:63:67:52:0f:c6:81:85:02:e9:07:26:
e6:30:72:aa:35:05:eb:eb:34:ba:b0:66:cf:0b:2a:
6c:a8:06:67:32:42:2c:ef:5f:34:67:6b:dd:42:d9:
af:bc:b7:a4:a5:2f:cf:c4:28:cf:dd:29:b8:01:f6:
04:e2:19:b9:ed:f6:18:e0:f6:96:45:c2:48:b8:e0:
29:f3:98:f6:0f:39:73:63:b4:02:6b:59:18:38:77:
a0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F3:04:FB:D0:16:3E:3D:2C:C4:6E:76:3D:52:13:8B:D6:53:29:07
X509v3 Authority Key Identifier:
keyid:3B:F2:C2:0D:A4:D6:30:18:2E:EE:33:45:AD:9D:1C:4A:D9:17:0D:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:a5:89:f3:09:09:e9:7c:a0:99:85:8a:7d:f0:b4:23:8a:50:
8f:7a:3f:c3:ce:66:08:48:a7:aa:29:55:e8:1b:fa:a9:9d:be:
c4:d4:2a:c4:b5:82:3a:83:e2:ea:ea:c0:bb:14:42:70:36:47:
c1:d2:7b:3e:33:15:e4:62:92:f7:30:f2:d2:b2:20:13:23:19:
ef:cd:6b:65:82:48:d1:88:c6:22:ac:7d:0f:dc:0d:35:1c:fb:
1d:52:19:98:cc:da:07:07:9e:4e:71:e1:87:91:15:54:9f:42:
1b:e0:b8:2a:14:90:b8:39:05:79:e8:f9:c4:72:fa:62:c0:a9:
87:bd:43:3d:40:42:4b:92:19:ec:ec:95:2f:63:b2:00:a2:82:
fb:00:f3:bb:8a:30:8b:eb:34:7d:50:b6:7b:9c:1c:39:35:07:
fb:4f:54:5a:2c:76:ee:3c:23:14:f0:5e:77:a0:8a:52:59:ae:
b6:fd:3c:ab:6f:ff:dc:b0:e9:de:5e:d1:0e:82:2c:cd:1a:12:
9b:91:06:85:a7:30:1c:8a:dd:28:19:3d:0e:5c:b9:e7:52:ae:
c0:c4:eb:30:57:55:ad:55:b3:fd:bd:75:e8:37:83:51:68:2a:
ac:be:a3:f8:6c:bc:29:31:15:14:f1:8b:bf:22:a8:8d:08:5a:
a7:b4:8d:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:23 2025 by rpki-client