Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
File: LF3rfkKW4vu0wB_AZKH2gYlreXk.mft (raw, json)
Hash identifier: n49jFJDpIOCySZAQesUgl+IS0gIed4FalscdVUnPRAc=
Subject key identifier: 99:10:BB:85:61:94:9C:18:6D:F4:CF:F2:D9:D7:8D:AE:27:D3:F5:34
Authority key identifier: 2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
Certificate issuer: /CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Certificate serial: 0199FB0F250379BC758DA86BA0E05F3B8E09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
Manifest number: 06B9
Signing time: Sun 19 Oct 2025 06:01:37 +0000
Manifest this update: Sun 19 Oct 2025 06:01:37 +0000
Manifest next update: Mon 20 Oct 2025 06:01:37 +0000
Files and hashes: 1: LF3rfkKW4vu0wB_AZKH2gYlreXk.crl (hash: 7cqrYNmAD/Ic4sbiDRWbLP0yFA9Lbz5QKow8fYwhCXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:25:03:79:bc:75:8d:a8:6b:a0:e0:5f:3b:8e:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Validity
Not Before: Oct 19 06:01:37 2025 GMT
Not After : Oct 20 06:01:37 2025 GMT
Subject: CN=9910bb8561949c186df4cff2d9d78dae27d3f534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2e:92:81:0a:c2:49:23:fc:a4:8a:2e:c0:93:
44:a2:9d:f2:1d:01:44:58:dd:72:43:d0:be:39:ad:
6c:41:da:b7:75:f4:5b:7f:09:3b:91:19:fd:d6:66:
af:8c:18:1d:ec:93:9d:9d:93:99:70:5e:01:b6:e6:
ac:42:a2:b9:cf:d0:cd:37:8a:a6:1f:52:96:d0:33:
39:14:fe:a4:f5:d7:e1:cc:00:5a:6b:c4:f9:b1:f1:
a8:89:bc:3a:c1:70:dc:33:2a:b0:df:d8:4b:9c:8a:
e6:cc:e9:8c:85:b9:96:fc:79:96:c3:af:44:e1:02:
02:ec:1e:aa:7f:6b:a5:b2:b0:0d:73:cd:24:7a:ba:
77:82:9e:6c:96:0e:5d:13:49:2c:eb:1c:28:cf:e8:
bf:53:41:fc:26:88:98:a9:23:8f:d1:3b:75:09:ee:
16:7e:00:ce:58:b7:be:71:3a:10:d9:bb:a7:c8:05:
30:b8:94:9c:0b:6d:42:1b:16:fc:10:36:80:a2:a7:
24:78:20:bb:0a:1f:56:e8:08:ad:d2:00:2d:85:93:
55:44:82:56:50:96:1b:f1:73:1e:8c:f0:ae:d0:e0:
e4:20:61:4b:1d:b5:c0:86:82:33:d3:76:58:4f:3c:
0a:86:a6:dc:a9:5a:f7:52:50:eb:dd:32:35:f1:54:
fc:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:10:BB:85:61:94:9C:18:6D:F4:CF:F2:D9:D7:8D:AE:27:D3:F5:34
X509v3 Authority Key Identifier:
keyid:2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:3d:44:d4:dc:16:99:1a:c2:99:2d:e7:39:4e:38:72:fc:a2:
09:b6:02:8a:8a:a4:2c:20:e1:74:c3:83:71:81:e7:42:2b:2f:
17:7f:a1:87:21:35:41:6b:46:df:34:40:77:01:ec:d2:72:70:
dd:bb:75:d5:08:8f:01:1e:bb:4a:a9:49:bf:14:bb:3d:66:7c:
32:d1:ea:67:b4:dd:26:22:81:61:72:2e:68:1c:6d:81:d2:da:
b2:7b:62:b5:d4:61:41:67:dc:1c:b9:62:79:84:90:82:69:77:
e1:84:aa:36:20:8d:fc:18:9b:7c:74:96:14:f5:8c:1e:55:56:
4c:b0:81:ae:f8:59:71:0b:92:04:28:a8:3e:b4:ac:97:e5:77:
58:86:7a:df:79:c9:51:84:e3:37:f1:26:7a:f4:e4:a2:01:28:
45:c3:50:1a:42:f2:04:b1:0e:dd:20:15:ab:36:b2:c6:52:0a:
a5:6b:0a:47:25:4e:10:c5:d3:b7:ec:6e:73:33:35:d1:e2:b0:
dc:bf:36:d2:8e:1e:de:7f:97:f8:af:af:c6:e1:89:37:24:aa:
16:3e:a9:d8:c1:a1:ec:37:c4:2d:cc:74:9b:a5:e2:4c:cc:0a:
e4:af:2a:83:b5:fc:1a:ec:20:ac:86:bd:aa:87:8e:cb:78:d7:
96:c6:b7:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:16 2025 by rpki-client