
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
File: O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft (raw, json)
Hash identifier: una95PKYbl42XSmtGe9HJd811AVDRQ26B5Zi7yErU7A=
Subject key identifier: 6A:5C:15:90:C7:5E:D4:55:A1:AA:C0:1E:A2:AE:58:64:C4:17:0C:BC
Authority key identifier: 3B:F2:C2:0D:A4:D6:30:18:2E:EE:33:45:AD:9D:1C:4A:D9:17:0D:50
Certificate issuer: /CN=3bf2c20da4d630182eee3345ad9d1c4ad9170d50
Certificate serial: 0199FB462B93A265C31F66D1C14809CAD0FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
Manifest number: 1120
Signing time: Sun 19 Oct 2025 07:01:43 +0000
Manifest this update: Sun 19 Oct 2025 07:01:43 +0000
Manifest next update: Mon 20 Oct 2025 07:01:43 +0000
Files and hashes: 1: O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl (hash: 69trCaKACOv5yFleBxX0Ifyp+MPxQJ3rx83WhDxikaQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:2b:93:a2:65:c3:1f:66:d1:c1:48:09:ca:d0:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf2c20da4d630182eee3345ad9d1c4ad9170d50
Validity
Not Before: Oct 19 07:01:43 2025 GMT
Not After : Oct 20 07:01:43 2025 GMT
Subject: CN=6a5c1590c75ed455a1aac01ea2ae5864c4170cbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:f4:f1:c6:0f:2b:09:3a:c5:c7:b2:fa:59:46:
58:56:05:6d:1a:26:c8:91:53:fb:39:25:b8:74:4c:
38:e6:2d:71:20:92:bf:6e:ca:f7:c8:00:a9:4a:53:
a1:b1:25:57:99:25:96:46:d0:c3:6e:8b:8c:11:3f:
35:ef:35:58:9c:31:88:a8:f8:9a:be:d3:5f:d0:19:
5f:65:53:1a:e2:8b:9f:4b:2f:e0:6d:59:04:ba:fd:
4b:44:e0:07:66:72:a8:f9:ef:c0:4a:2b:49:c5:9a:
25:3e:99:98:e1:12:19:2a:a8:2e:96:62:1b:9b:7a:
e1:f6:99:8e:43:74:86:99:13:89:f6:8d:5c:0a:8c:
1f:45:bf:4c:5a:cc:34:cd:00:07:d6:59:c7:09:e2:
bf:99:dd:86:c8:fb:ea:3a:6a:e4:3e:04:f1:3e:5d:
6c:cd:fb:b7:7b:e4:1c:29:2c:ff:bf:35:d9:a6:71:
91:8c:a1:b1:3b:0d:14:8d:09:fc:ca:4f:4c:e1:f3:
d7:2f:81:e0:10:08:26:fa:d2:6e:1b:fe:79:16:33:
8b:28:65:f3:b0:f4:32:02:ec:37:ab:4c:25:22:7a:
ee:0d:31:44:43:d2:bc:ce:69:83:0c:86:e1:7f:b2:
fc:5c:e5:26:a4:a6:47:25:6d:23:f5:f9:67:9c:43:
0b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:5C:15:90:C7:5E:D4:55:A1:AA:C0:1E:A2:AE:58:64:C4:17:0C:BC
X509v3 Authority Key Identifier:
keyid:3B:F2:C2:0D:A4:D6:30:18:2E:EE:33:45:AD:9D:1C:4A:D9:17:0D:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:9d:11:17:54:13:90:d9:00:fa:33:e6:fb:a9:13:77:25:79:
40:2a:c4:97:e2:b3:1a:65:23:a6:d8:e3:dc:44:23:36:42:a4:
24:94:da:4a:c7:9c:05:86:5f:c4:03:a7:a4:26:25:4a:43:6f:
25:99:47:3f:0e:58:cb:58:1e:54:49:10:79:33:fa:92:c7:cd:
d6:e3:f2:8f:31:93:fc:29:12:54:2f:1e:2c:ce:2f:5e:75:5c:
47:6d:d3:6b:1a:db:fa:6f:7d:a3:f3:30:e5:77:a6:48:b7:1e:
5c:af:03:94:57:5c:05:e1:ff:bf:c8:a4:1c:a1:a9:46:51:55:
f3:c6:21:97:bf:ff:72:97:2f:11:37:57:37:5d:3c:82:f5:c8:
ee:30:f8:9e:c2:2a:9d:ce:60:a2:43:6a:83:ed:94:57:a1:4f:
13:b8:b7:2a:0d:fc:49:87:78:32:fc:45:a5:4b:c6:fa:dc:1a:
49:0f:4d:71:3a:82:23:94:8d:ca:79:86:78:0a:84:c5:12:40:
b5:c9:12:db:b6:2c:f4:cf:eb:80:dc:54:0a:ae:20:dd:54:18:
07:18:f4:4f:d8:fd:f8:11:b0:d1:f8:d8:8b:18:e9:19:58:6a:
b8:ce:67:3c:66:45:fd:18:35:e6:d6:fb:56:5d:ed:6e:7e:e4:
23:35:12:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:18:44 2025 by rpki-client