Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
File: lowsVdyOuZe_WRIdTC_9VESiLi0.mft (raw, json)
Hash identifier: v2YeKBhMD/nHbu9W3H5ugo0pc5cXdcGe3xbLVJO4HVI=
Subject key identifier: 21:6C:2D:61:35:16:56:06:F2:0C:19:92:18:E1:CB:82:1B:B4:47:D0
Authority key identifier: 96:8C:2C:55:DC:8E:B9:97:BF:59:12:1D:4C:2F:FD:54:44:A2:2E:2D
Certificate issuer: /CN=968c2c55dc8eb997bf59121d4c2ffd5444a22e2d
Certificate serial: 0199FC583C4231885F95EB472921C09E6E64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 12:01:05 +0000
Manifest this update: Sun 19 Oct 2025 12:01:05 +0000
Manifest next update: Mon 20 Oct 2025 12:01:05 +0000
Files and hashes: 1: lowsVdyOuZe_WRIdTC_9VESiLi0.crl (hash: 0g8A6gygdHmJ5TWIqkr6CpxQKkbR7el1Nc4PCqwJoOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:3c:42:31:88:5f:95:eb:47:29:21:c0:9e:6e:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=968c2c55dc8eb997bf59121d4c2ffd5444a22e2d
Validity
Not Before: Oct 19 12:01:05 2025 GMT
Not After : Oct 20 12:01:05 2025 GMT
Subject: CN=216c2d6135165606f20c199218e1cb821bb447d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:83:f6:4c:2a:75:94:fe:e7:9d:fa:99:0e:87:
af:6c:f9:25:36:63:b3:f3:c6:ee:4c:53:7a:7f:54:
cf:30:74:c3:86:29:f5:54:5f:9e:05:ec:f7:f4:81:
4c:76:2b:52:06:97:a4:ce:80:5b:11:ad:a8:46:dc:
5a:ca:13:c9:22:d7:64:85:ee:d7:44:4d:90:5b:1e:
01:e5:bc:36:6c:80:f2:aa:62:d6:9c:dd:49:c3:7a:
ad:7f:1f:ae:08:02:34:1a:14:c8:c5:14:75:fe:fb:
70:84:80:a4:a2:5c:b2:a9:9e:6f:43:1f:f9:65:7c:
f5:95:17:ff:b0:c2:17:c5:4b:ec:2a:91:ba:72:70:
b8:33:c6:19:7d:e1:24:18:a2:4f:99:8b:05:24:3d:
4c:9f:5c:53:8b:87:b1:14:70:12:c3:a1:7b:be:33:
b2:b9:d7:0d:92:e2:7e:0f:b2:3d:7d:ea:07:0d:cf:
44:83:84:a2:56:a4:26:15:7e:96:eb:8d:ab:93:61:
25:ef:de:1a:5c:82:4b:66:10:af:b7:d0:f9:4b:6b:
9c:50:98:ab:b7:53:28:e5:25:4c:ee:d2:db:36:82:
62:f1:ea:7a:c4:80:9f:73:f4:50:53:a1:d7:7d:c2:
7a:36:2e:e5:46:f2:a0:8a:52:92:89:17:9a:07:8a:
98:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:6C:2D:61:35:16:56:06:F2:0C:19:92:18:E1:CB:82:1B:B4:47:D0
X509v3 Authority Key Identifier:
keyid:96:8C:2C:55:DC:8E:B9:97:BF:59:12:1D:4C:2F:FD:54:44:A2:2E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:78:20:cc:a8:f5:64:a3:62:5a:04:02:15:f9:3c:a7:0f:31:
0f:b3:0e:ae:9f:f1:11:60:9d:80:9a:e4:d3:a1:dc:b3:28:8b:
1a:e5:4e:80:ae:07:5c:da:18:ba:b7:1c:94:5e:e3:6c:8c:4b:
da:8e:75:61:a7:08:3b:f8:8e:e2:4d:0b:8c:7d:5f:96:5c:2a:
03:f1:cd:c0:7f:94:17:e0:77:20:4c:52:be:cf:f1:69:3f:9f:
9d:20:bc:2f:55:b2:4b:2a:72:ae:4a:c7:e4:7a:d8:85:a2:a3:
7b:d4:4e:cd:9c:7e:f8:9d:d3:ef:bf:a0:fd:95:2e:ab:69:0f:
58:2a:29:e2:de:8d:73:3a:f9:a9:c3:3b:46:10:38:23:6a:09:
e6:7b:0e:01:c3:d1:c5:8e:a1:11:57:51:d9:27:72:f3:b7:3d:
a6:0c:ed:14:f7:4b:63:cf:c7:09:1d:36:f9:bc:b2:05:6c:15:
68:d1:60:32:00:50:61:10:42:c8:bd:7a:53:2e:2f:f1:dc:4b:
99:0d:f2:4f:0e:8f:ce:bb:ab:f4:fe:18:33:e4:a1:40:9e:3a:
01:f8:da:17:f6:9c:57:1f:9f:22:01:cd:80:7d:7f:f8:9b:6a:
62:a1:ca:6b:9f:b1:db:37:09:7d:48:ca:c4:c3:fc:97:3b:2c:
3e:f9:66:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:37:42 2025 by rpki-client