
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft
File: L97GcLeAw7-UAe8cEVodh_6PfHo.mft (raw, json)
Hash identifier: K21ciKYImGf3WSpDldWAcaUUcLz2Pbi6KZO+TJhBheo=
Subject key identifier: D6:EE:7C:C1:9E:42:49:F7:26:05:67:5A:F6:E9:BE:64:F2:29:F2:54
Authority key identifier: 2F:DE:C6:70:B7:80:C3:BF:94:01:EF:1C:11:5A:1D:87:FE:8F:7C:7A
Certificate issuer: /CN=2fdec670b780c3bf9401ef1c115a1d87fe8f7c7a
Certificate serial: 0199FC58C55F18C814FEA362F56D951E7F00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L97GcLeAw7-UAe8cEVodh_6PfHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft
Manifest number: 0DC2
Signing time: Sun 19 Oct 2025 12:01:39 +0000
Manifest this update: Sun 19 Oct 2025 12:01:39 +0000
Manifest next update: Mon 20 Oct 2025 12:01:39 +0000
Files and hashes: 1: L97GcLeAw7-UAe8cEVodh_6PfHo.crl (hash: DW8ABpI/z3GNsDJSz1AgP2sYMwqIBgyIAH5vpZdSwGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft
rsync://rpki.ripe.net/repository/DEFAULT/L97GcLeAw7-UAe8cEVodh_6PfHo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:c5:5f:18:c8:14:fe:a3:62:f5:6d:95:1e:7f:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fdec670b780c3bf9401ef1c115a1d87fe8f7c7a
Validity
Not Before: Oct 19 12:01:39 2025 GMT
Not After : Oct 20 12:01:39 2025 GMT
Subject: CN=d6ee7cc19e4249f72605675af6e9be64f229f254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:71:85:b6:d6:c2:23:b3:2d:91:2e:47:47:24:
b7:51:c8:ac:4a:5c:26:c9:f3:08:56:ff:92:53:2b:
8e:5e:12:71:68:63:b9:48:f0:04:df:c7:f0:9f:b7:
04:e0:1c:3b:ee:61:d2:68:e7:77:99:f3:fd:b0:ec:
bf:52:8a:74:17:98:00:27:90:72:57:57:8d:14:08:
fa:74:75:0d:d0:ae:bb:f8:00:2d:1b:39:91:7c:4d:
f8:71:e5:59:56:a5:80:20:bd:18:ce:4b:b3:db:d6:
7f:1d:d4:d3:bb:db:a6:9a:1c:07:4b:25:ea:5b:71:
90:f0:7e:98:3e:13:37:b6:51:6a:58:82:88:fa:88:
57:c1:cb:bb:c2:83:d5:62:c4:aa:8d:48:a6:cf:f5:
a1:40:d9:7c:06:9f:3a:cc:a1:0c:fb:51:bc:d2:b3:
b6:20:5f:0e:1a:02:db:4f:2f:a3:de:9b:2a:7b:dd:
13:4c:2c:4e:96:de:5d:ef:4b:b1:21:b9:9b:85:56:
3f:cc:26:c1:86:70:eb:ec:a9:57:a1:95:5b:e3:ae:
24:7e:a5:50:e6:8b:3e:f9:13:b2:3a:ab:b2:33:f5:
42:ca:41:30:a1:bf:61:54:83:73:9c:82:ca:51:91:
58:a1:d8:c3:dc:ec:0e:bb:df:18:5d:cd:9e:58:e0:
b5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:EE:7C:C1:9E:42:49:F7:26:05:67:5A:F6:E9:BE:64:F2:29:F2:54
X509v3 Authority Key Identifier:
keyid:2F:DE:C6:70:B7:80:C3:BF:94:01:EF:1C:11:5A:1D:87:FE:8F:7C:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L97GcLeAw7-UAe8cEVodh_6PfHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:42:78:b7:22:c8:ad:70:62:39:c2:ad:4d:d5:1e:c3:94:78:
c9:13:b0:cd:68:74:1b:72:27:94:cb:ac:da:16:b0:01:ad:e3:
76:cb:41:b2:72:74:38:2b:38:ea:cf:cc:53:ee:a7:1f:01:42:
71:6b:d5:2d:82:c1:64:3c:bc:b0:5b:ed:ab:de:e5:b7:af:82:
7a:ac:09:06:ae:bf:1a:3e:46:7e:c5:9d:dd:a4:d4:35:96:ae:
0f:a2:da:a0:a5:c6:1e:ce:0b:0b:f1:13:27:0d:31:11:8f:e8:
8a:3a:24:9b:58:70:ca:bb:76:a3:fc:39:91:5a:da:55:09:68:
be:0d:0c:61:3e:8d:64:bb:d7:64:d3:f1:c1:03:c3:1d:51:72:
56:f4:32:12:b2:86:8f:1c:7b:80:99:52:9e:93:ac:40:90:e2:
a8:05:8e:90:dc:bf:40:bc:1f:ad:95:49:f9:ee:a5:6b:89:8f:
8a:3b:23:bf:d1:0a:be:85:50:ac:42:c9:b0:66:80:0b:a3:90:
8f:51:97:7f:0b:21:da:f0:26:cd:e9:ae:a9:0d:84:fe:32:d1:
19:ec:e6:c5:44:bf:4e:d7:a4:ea:3f:96:bb:6a:36:f0:3d:57:
d7:61:e4:bf:6e:99:60:c5:e5:db:89:30:ca:29:71:43:c7:77:
cb:90:24:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:21:56 2025 by rpki-client