Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
File: lQSgmkWW2BV9pp3DNGxavOTOThM.mft (raw, json)
Hash identifier: RCxEpgAWhY9GUzNDj8Uy5pW/IixAmJzhWyDVHtP3pDs=
Subject key identifier: DD:88:08:94:98:19:4D:0C:61:53:ED:DA:9E:18:22:18:01:38:EB:16
Authority key identifier: 95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
Certificate issuer: /CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Certificate serial: 0198D6987786CB3977E13831EDBDECC93E77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
Manifest number: 02A6
Signing time: Sat 23 Aug 2025 11:02:52 +0000
Manifest this update: Sat 23 Aug 2025 11:02:52 +0000
Manifest next update: Sun 24 Aug 2025 11:02:52 +0000
Files and hashes: 1: lQSgmkWW2BV9pp3DNGxavOTOThM.crl (hash: sh7Dur2w7StRY3DQUbznXoydjnxUvD3xb0KQZ8rc0j8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:77:86:cb:39:77:e1:38:31:ed:bd:ec:c9:3e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Validity
Not Before: Aug 23 11:02:52 2025 GMT
Not After : Aug 24 11:02:52 2025 GMT
Subject: CN=dd88089498194d0c6153edda9e1822180138eb16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:06:45:e3:3d:20:b4:d9:55:d8:1b:3d:59:4a:
3f:fb:49:0e:73:a2:cb:2b:84:4b:38:48:aa:99:09:
c0:4e:02:b2:3c:8b:8d:3d:48:c8:71:80:bc:69:36:
1c:84:7b:76:28:5c:05:96:de:12:2f:30:1d:e7:e2:
b2:a1:2f:32:b3:8f:b6:04:56:41:fb:32:43:db:30:
9f:cc:24:8c:76:15:99:14:46:7a:b4:40:98:c5:01:
6d:41:b4:4b:09:96:a0:be:1f:5e:c7:a2:b5:c3:a4:
89:6e:38:e4:99:d6:a5:1d:7d:a9:b2:8d:8a:ad:3e:
16:d6:e6:fc:94:89:d9:01:c4:f3:93:0d:57:ad:3c:
75:65:e1:52:f4:b6:6e:d0:c4:34:1b:af:27:49:3a:
cc:e8:51:e6:f9:0a:3c:8d:44:7e:cb:04:24:81:c4:
b8:30:c4:c2:0f:02:c5:d9:b6:3f:4f:f6:a1:71:8a:
3e:c6:24:a4:f1:3d:51:ef:c9:2e:6a:c4:54:74:28:
33:16:ec:80:18:7c:62:25:2c:e4:cb:33:97:61:81:
df:99:0c:59:36:c2:13:82:85:9e:9b:10:1c:01:90:
1e:0b:6d:63:18:31:ae:67:db:2d:d4:0d:86:c7:e2:
8b:41:dc:20:30:db:d3:5d:99:9c:f1:2c:92:2f:49:
ed:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:88:08:94:98:19:4D:0C:61:53:ED:DA:9E:18:22:18:01:38:EB:16
X509v3 Authority Key Identifier:
keyid:95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:39:d8:b3:5c:1b:99:de:cf:e8:f1:6f:ff:6d:e7:17:a7:96:
30:c3:4b:7e:06:84:37:9b:73:05:e5:ad:15:18:d2:c5:28:23:
f4:67:3d:67:e2:f6:26:48:0c:5a:d3:8e:44:c0:78:fb:04:87:
eb:a8:ef:2d:1d:ee:f7:5f:a5:84:78:c6:b5:71:77:6c:2f:3a:
57:0e:38:18:e7:55:cf:2b:56:55:cf:f0:11:3b:b9:d7:92:6e:
ac:90:2d:48:a7:12:87:c1:0c:b4:39:55:f0:23:d8:d8:00:c0:
8e:d1:3f:5c:18:00:5e:ee:d4:5e:a5:b2:cf:0d:be:35:b7:02:
1d:87:0e:0c:9e:df:9c:13:28:76:a8:15:d5:83:b8:ce:be:fb:
fb:94:1b:db:de:13:f9:a9:e9:3c:1e:14:d1:d9:de:84:42:7d:
61:ce:85:01:0d:8a:ed:97:82:43:7d:f7:57:61:84:65:60:da:
ce:58:03:82:01:8f:34:42:bb:72:77:99:ec:f5:20:0f:74:61:
95:16:e6:e9:4d:23:94:a0:33:f4:fc:d2:df:0b:b7:9f:7e:8b:
f5:3d:f3:fa:2a:44:d9:ef:9e:64:9e:31:a3:09:eb:dd:8a:81:
ac:5b:85:21:33:06:51:47:84:90:ef:16:b9:f9:dd:a1:a5:64:
05:8b:00:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:33:26 2025 by rpki-client