Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.mft
File: lkyqlAOgjTc7kLcQpW0-roE5T_A.mft (raw, json)
Hash identifier: m8iJjU2WE/FwLhch11yEBubYLA1N6zNYfpfqU+pwdgc=
Subject key identifier: 9D:6A:2E:84:88:F5:55:B3:EC:50:53:30:F6:C3:96:44:8A:6D:29:15
Authority key identifier: 96:4C:AA:94:03:A0:8D:37:3B:90:B7:10:A5:6D:3E:AE:81:39:4F:F0
Certificate issuer: /CN=964caa9403a08d373b90b710a56d3eae81394ff0
Certificate serial: 0198D6CD4EFCA5788FB2FB735539B9B080E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkyqlAOgjTc7kLcQpW0-roE5T_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.mft
Manifest number: 15D7
Signing time: Sat 23 Aug 2025 12:00:35 +0000
Manifest this update: Sat 23 Aug 2025 12:00:35 +0000
Manifest next update: Sun 24 Aug 2025 12:00:35 +0000
Files and hashes: 1: lkyqlAOgjTc7kLcQpW0-roE5T_A.crl (hash: gKTjacCvaaSy3FY+3dju2R5z0n4maEnevKp2UUtkcH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkyqlAOgjTc7kLcQpW0-roE5T_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:4e:fc:a5:78:8f:b2:fb:73:55:39:b9:b0:80:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=964caa9403a08d373b90b710a56d3eae81394ff0
Validity
Not Before: Aug 23 12:00:35 2025 GMT
Not After : Aug 24 12:00:35 2025 GMT
Subject: CN=9d6a2e8488f555b3ec505330f6c396448a6d2915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0d:a6:ca:5c:82:0b:0c:88:50:b5:c0:2e:0a:
44:51:44:34:38:55:34:f5:ca:74:ba:c3:a2:92:e5:
5e:d9:c1:00:51:b1:ea:5d:eb:ab:fe:cf:5a:a9:5a:
6e:96:2a:1c:be:40:c6:e9:3d:c6:5a:ec:9d:91:5b:
57:33:65:ef:f4:de:1b:7e:6a:84:cd:56:a9:b8:2d:
b6:63:f8:77:4b:3e:94:26:df:ce:4a:1b:e9:3f:e5:
c8:34:2b:5a:8d:ac:94:85:8a:d0:55:ca:b9:42:5f:
d7:a9:47:e0:36:f2:7d:91:88:20:8a:05:fa:23:a3:
d5:f8:55:16:aa:c4:59:10:fc:71:c4:d9:c9:6a:b4:
ff:8d:e1:37:1f:ef:6e:b9:b1:e5:8e:07:df:e1:c1:
c5:75:cc:0a:4e:3b:35:07:69:23:0d:60:f7:99:6b:
80:c7:5a:5f:85:77:23:b7:0b:8e:74:d1:07:66:56:
08:53:67:f4:8b:cb:e2:24:d8:ba:17:ee:fa:12:9f:
fe:e7:b6:a7:86:72:82:9c:ff:9b:41:c6:7a:83:cd:
9a:2c:f9:e2:5f:9f:14:ef:52:05:a1:d9:a2:88:46:
53:2f:03:f9:e3:b2:c3:11:98:38:01:54:c6:bc:fa:
d7:6b:e0:13:4f:05:bd:11:ed:19:8b:45:90:b6:11:
4a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6A:2E:84:88:F5:55:B3:EC:50:53:30:F6:C3:96:44:8A:6D:29:15
X509v3 Authority Key Identifier:
keyid:96:4C:AA:94:03:A0:8D:37:3B:90:B7:10:A5:6D:3E:AE:81:39:4F:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkyqlAOgjTc7kLcQpW0-roE5T_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:81:d0:2a:f6:f7:b4:72:ad:3d:c0:2f:96:f5:55:78:d9:3f:
06:88:82:35:b9:91:56:a9:5b:94:19:59:7c:b2:02:c9:ac:93:
ae:03:64:02:ce:f2:b2:60:7a:16:89:57:1c:f3:44:83:1c:69:
e7:d4:9d:f9:67:58:6f:04:72:c5:96:47:fc:17:3e:44:e4:65:
59:f7:58:c3:ab:3c:c0:52:9e:72:6e:b1:fa:87:f8:25:a3:4f:
02:d8:fc:00:03:a1:a6:bc:f7:22:51:1a:e6:d7:59:ae:a6:ea:
e3:50:7c:ae:00:d4:06:cc:1e:65:0a:e3:09:82:a9:a6:cb:d4:
98:39:d0:42:84:6c:0d:a3:88:02:4e:27:0f:46:d7:95:32:a5:
42:b5:c0:60:67:42:a7:15:e6:1f:6c:5b:f1:b4:fb:a0:f5:f2:
79:25:bc:b7:3d:25:09:5c:ce:39:c7:f9:d8:63:68:f4:34:96:
ed:35:03:83:77:07:34:f6:5d:c9:f2:cf:90:f9:31:66:5d:b3:
ef:6a:a6:0f:df:58:b0:e5:e9:2b:6e:fb:8b:31:e8:a8:0c:a4:
d4:2a:ff:58:a0:e6:5c:a4:23:eb:0e:99:b7:25:da:86:48:46:
d7:40:74:fd:46:a3:e5:06:79:22:77:d8:80:73:87:9b:16:7f:
98:bc:bf:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzU78pXiPsvtzVTm5sIDpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2NGNhYTk0MDNhMDhkMzczYjkwYjcxMGE1NmQzZWFlODEz
OTRmZjAwHhcNMjUwODIzMTIwMDM1WhcNMjUwODI0MTIwMDM1WjAzMTEwLwYDVQQD
Eyg5ZDZhMmU4NDg4ZjU1NWIzZWM1MDUzMzBmNmMzOTY0NDhhNmQyOTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkw2mylyCCwyIULXALgpEUUQ0OFU0
9cp0usOikuVe2cEAUbHqXeur/s9aqVpuliocvkDG6T3GWuydkVtXM2Xv9N4bfmqE
zVapuC22Y/h3Sz6UJt/OShvpP+XINCtajayUhYrQVcq5Ql/XqUfgNvJ9kYggigX6
I6PV+FUWqsRZEPxxxNnJarT/jeE3H+9uubHljgff4cHFdcwKTjs1B2kjDWD3mWuA
x1pfhXcjtwuOdNEHZlYIU2f0i8viJNi6F+76Ep/+57anhnKCnP+bQcZ6g82aLPni
X58U71IFodmiiEZTLwP547LDEZg4AVTGvPrXa+ATTwW9Ee0Zi0WQthFK/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ1qLoSI9VWz7FBTMPbDlkSKbSkVMB8GA1UdIwQY
MBaAFJZMqpQDoI03O5C3EKVtPq6BOU/wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGt5cWxBT2dqVGM3a0xjUXBXMC1yb0U1VF9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS82YjBkYzktYzFiOS00ZmFlLWFjZDkt
NmJmZjFjMGU2OGFlLzEvbGt5cWxBT2dqVGM3a0xjUXBXMC1yb0U1VF9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS82YjBkYzktYzFiOS00ZmFlLWFjZDktNmJmZjFjMGU2OGFl
LzEvbGt5cWxBT2dqVGM3a0xjUXBXMC1yb0U1VF9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ4HQKvb3
tHKtPcAvlvVVeNk/BoiCNbmRVqlblBlZfLICyayTrgNkAs7ysmB6FolXHPNEgxxp
59Sd+WdYbwRyxZZH/Bc+RORlWfdYw6s8wFKecm6x+of4JaNPAtj8AAOhprz3IlEa
5tdZrqbq41B8rgDUBsweZQrjCYKppsvUmDnQQoRsDaOIAk4nD0bXlTKlQrXAYGdC
pxXmH2xb8bT7oPXyeSW8tz0lCVzOOcf52GNo9DSW7TUDg3cHNPZdyfLPkPkxZl2z
72qmD99YsOXpK277izHoqAyk1Cr/WKDmXKQj6w6ZtyXahkhG10B0/Uaj5QZ5InfY
gHOHmxZ/mLy/nw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:13:39 2025 by rpki-client