Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
File: lowsVdyOuZe_WRIdTC_9VESiLi0.mft (raw, json)
Hash identifier: /I55NHb60+551upXXSdysftDiC34yOrXS9psN4p1gf4=
Subject key identifier: 5F:D2:4D:09:0D:72:52:BA:CF:8A:46:4E:EB:63:BB:D7:89:F2:78:CA
Authority key identifier: 96:8C:2C:55:DC:8E:B9:97:BF:59:12:1D:4C:2F:FD:54:44:A2:2E:2D
Certificate issuer: /CN=968c2c55dc8eb997bf59121d4c2ffd5444a22e2d
Certificate serial: 0198D4E017445E5179D73ADB39A70B1FE7DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 03:01:52 +0000
Manifest this update: Sat 23 Aug 2025 03:01:52 +0000
Manifest next update: Sun 24 Aug 2025 03:01:52 +0000
Files and hashes: 1: lowsVdyOuZe_WRIdTC_9VESiLi0.crl (hash: QHAJFnsTBkf6djeZwFq4BLMin2PxgaGXj2PwOmFXGA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:17:44:5e:51:79:d7:3a:db:39:a7:0b:1f:e7:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=968c2c55dc8eb997bf59121d4c2ffd5444a22e2d
Validity
Not Before: Aug 23 03:01:52 2025 GMT
Not After : Aug 24 03:01:52 2025 GMT
Subject: CN=5fd24d090d7252bacf8a464eeb63bbd789f278ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:43:54:30:2a:8d:4b:13:ae:00:4f:46:6d:7f:
26:bf:c0:56:4a:76:a5:73:10:39:cf:41:91:90:b8:
82:80:10:f4:16:5e:a3:88:a1:f6:30:65:8a:0a:b8:
b3:c1:68:30:97:3a:4a:43:6e:18:13:cb:9d:ae:d5:
09:5b:87:82:8a:cf:66:ba:eb:99:1b:ae:8d:0b:06:
0a:ee:9b:48:1b:79:66:bd:db:65:62:1a:c1:1b:f9:
2b:05:79:db:9d:51:9e:14:9f:06:d9:d0:58:73:7c:
a1:b2:c3:e4:a3:db:fa:e9:1d:68:f9:2f:fe:0f:43:
a1:10:70:c8:7d:9b:cb:6d:55:5f:73:de:d4:1f:f9:
f0:c0:dc:c5:df:c2:45:81:2f:1f:e3:f6:e6:44:10:
c3:ff:41:0b:72:e6:2d:9b:55:dc:3f:d5:40:da:15:
3d:0a:b2:dd:53:22:62:f6:ab:45:5a:93:a5:c3:a2:
97:e7:73:80:ad:3a:e3:fb:43:91:48:e6:29:1d:ba:
4c:f9:6a:89:b0:b5:65:c0:76:d1:89:77:3b:2c:94:
83:4e:32:f8:62:30:71:b8:9d:a7:c9:81:98:73:83:
57:c7:7f:9e:c6:68:c6:51:ca:2a:ac:4b:80:d9:af:
57:d9:9a:3f:b6:1b:84:d1:b1:5c:d9:5e:e3:f1:ab:
1a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:D2:4D:09:0D:72:52:BA:CF:8A:46:4E:EB:63:BB:D7:89:F2:78:CA
X509v3 Authority Key Identifier:
keyid:96:8C:2C:55:DC:8E:B9:97:BF:59:12:1D:4C:2F:FD:54:44:A2:2E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lowsVdyOuZe_WRIdTC_9VESiLi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e4741b-f5b5-418f-8e96-154e599fd35f/1/lowsVdyOuZe_WRIdTC_9VESiLi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:17:3a:af:a4:84:e9:5a:b7:02:9b:a7:77:53:3d:83:90:b1:
7f:c6:94:87:04:3f:4c:eb:6a:4e:a6:55:97:cb:1a:6e:51:60:
d8:c9:6d:5e:c3:c4:58:e0:af:99:cf:7b:7e:9f:b0:35:1e:9f:
2a:b9:aa:ab:33:92:e1:13:c0:57:a8:f1:3d:6c:a3:88:44:80:
7d:8c:06:b0:1f:3a:08:12:f2:ff:99:8b:74:33:39:0c:27:f2:
ab:0f:7a:4f:9b:5a:d8:fa:63:b5:55:a0:07:c0:f3:c4:63:85:
a9:43:62:f6:e1:18:77:e0:88:34:48:1d:bc:f7:e9:ca:77:5c:
e1:48:89:3b:99:44:53:84:15:f7:0a:af:b4:2a:6c:da:2a:a3:
10:96:70:a3:b7:6e:c3:ca:74:05:4c:07:17:d8:02:d5:ff:7d:
b9:d2:63:0a:a1:fc:b1:1e:e6:1b:12:4b:4a:6a:e7:9f:b3:4c:
6b:6d:2a:5a:bf:33:6e:91:a8:1c:41:e0:f0:8a:e4:26:ea:09:
26:b6:11:cf:f2:78:5b:49:9c:df:30:6c:a3:64:f7:f9:0b:a6:
1b:1f:ca:c2:cc:cd:15:da:4f:cd:31:b1:ed:f1:1c:71:f9:3a:
1a:14:12:3e:ec:27:95:6d:be:fa:94:11:a9:b7:3c:c2:88:36:
88:0d:76:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:47:06 2025 by rpki-client