Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
File: LF3rfkKW4vu0wB_AZKH2gYlreXk.mft (raw, json)
Hash identifier: Us7lR5VSLd/JCMaIusQuLdRBCnx5dlvbYjl7dl7h61U=
Subject key identifier: 14:EE:E8:5E:67:E1:2B:F9:87:94:F7:97:10:D1:94:EA:9D:0D:29:BE
Authority key identifier: 2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
Certificate issuer: /CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Certificate serial: 0198D7735F5A64067469F256C75AE546B152
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
Manifest number: 0622
Signing time: Sat 23 Aug 2025 15:01:59 +0000
Manifest this update: Sat 23 Aug 2025 15:01:59 +0000
Manifest next update: Sun 24 Aug 2025 15:01:59 +0000
Files and hashes: 1: LF3rfkKW4vu0wB_AZKH2gYlreXk.crl (hash: 4P2XBOa/xh8RkeDrjlN/hg+P6sA5dk76KRPn7kUkvmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:5f:5a:64:06:74:69:f2:56:c7:5a:e5:46:b1:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Validity
Not Before: Aug 23 15:01:59 2025 GMT
Not After : Aug 24 15:01:59 2025 GMT
Subject: CN=14eee85e67e12bf98794f79710d194ea9d0d29be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:4a:b3:7e:00:f1:01:fe:0e:b7:81:7e:07:44:
97:67:f8:69:15:ca:6d:5d:6a:f9:6a:94:bc:bc:34:
ab:9b:ce:e3:c1:6b:6a:b7:4c:47:30:c8:cf:28:59:
49:8a:ad:1a:f4:a4:da:76:39:2f:68:a1:0a:32:45:
56:33:7e:ef:66:a5:1e:57:ad:cd:8e:0f:65:f6:3f:
c6:2e:70:da:1c:f9:b2:fd:03:16:24:48:14:5a:05:
61:63:fe:e3:b8:7c:b4:9e:53:92:7e:90:b3:27:8b:
1c:49:f8:08:19:7d:83:1b:8b:81:fd:b5:66:8a:4e:
de:c4:ab:d8:81:6d:e5:70:74:95:9a:6b:a1:25:0b:
6c:c9:41:55:62:f9:cf:6a:bd:0f:bc:c4:04:5e:5e:
62:99:07:e5:7f:ac:9c:a2:cd:56:22:d0:63:61:82:
1b:8f:4b:10:ef:c5:06:79:4f:7c:cf:50:d6:7f:24:
3d:55:27:92:73:32:bd:f2:3d:3c:2d:bf:c7:85:e1:
5e:d9:f5:c2:38:f5:ee:0b:28:08:60:62:2b:d5:37:
21:af:30:ac:4c:65:fb:96:a6:ec:ef:1e:75:a8:f0:
16:f8:da:7a:64:4d:a9:30:87:52:81:e3:69:61:1d:
c1:dc:aa:71:83:7d:6a:cf:6e:a1:5d:21:c4:ab:54:
db:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:EE:E8:5E:67:E1:2B:F9:87:94:F7:97:10:D1:94:EA:9D:0D:29:BE
X509v3 Authority Key Identifier:
keyid:2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:b8:32:e7:49:23:03:f5:4d:6e:51:2f:62:93:df:09:1b:9a:
f6:b3:e6:34:76:e9:e5:ea:e3:13:27:e8:02:d5:2e:4d:e8:5c:
27:59:f3:e2:01:d3:7e:30:89:a4:cd:98:36:6e:d0:53:28:7a:
1e:75:13:86:39:85:45:6b:70:9b:88:56:d2:46:58:f9:56:e2:
36:a8:85:0d:d6:42:01:d0:90:e7:a2:b3:1e:cc:55:2d:d8:f8:
3b:bd:b1:ec:14:bd:f5:36:db:25:02:c2:ba:9c:88:ac:bf:fe:
26:e2:0b:e0:18:97:73:ba:f8:de:22:81:17:5a:c3:fc:a3:36:
f9:5a:09:ad:58:43:e9:47:5f:57:32:55:5d:6a:14:3c:a8:f8:
f3:17:17:f6:89:18:3e:61:7f:c1:b0:d2:69:a0:cb:78:91:e5:
cb:38:75:a6:20:b8:25:63:e7:d6:ca:3f:7d:9c:19:50:07:af:
36:ef:47:35:74:35:e5:68:6b:a8:94:fe:af:8b:ca:de:da:91:
ba:cf:54:91:90:a9:6f:5b:ce:eb:a0:b2:87:d5:ce:d0:70:87:
bf:ec:83:79:2f:df:42:a2:fa:26:8a:cc:51:14:46:1c:24:cf:
64:10:8e:ad:b2:82:21:ea:eb:45:b8:f7:6d:ff:ad:df:78:52:
9d:cf:39:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:01:00 2025 by rpki-client