Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
File: PtWjaKny40iTSpFIiEVZQ2I_lus.mft (raw, json)
Hash identifier: wd2V0/JhaR0TX5z0e8L0/xYFijU3Osct2pbjZCm4Zks=
Subject key identifier: 10:D2:30:63:F7:35:A1:C5:3C:58:8C:25:36:FB:B8:AA:9A:14:3C:B9
Authority key identifier: 3E:D5:A3:68:A9:F2:E3:48:93:4A:91:48:88:45:59:43:62:3F:96:EB
Certificate issuer: /CN=3ed5a368a9f2e348934a914888455943623f96eb
Certificate serial: 01984B546C47F57ED9732AF391DDACF05521
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
Manifest number: 11E5
Signing time: Sun 27 Jul 2025 10:01:20 +0000
Manifest this update: Sun 27 Jul 2025 10:01:20 +0000
Manifest next update: Mon 28 Jul 2025 10:01:20 +0000
Files and hashes: 1: PtWjaKny40iTSpFIiEVZQ2I_lus.crl (hash: lY1JabBgIjPKiI8T/0siAqN4xonr8dU5Ca+4kTqSIkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:54:6c:47:f5:7e:d9:73:2a:f3:91:dd:ac:f0:55:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ed5a368a9f2e348934a914888455943623f96eb
Validity
Not Before: Jul 27 10:01:20 2025 GMT
Not After : Jul 28 10:01:20 2025 GMT
Subject: CN=10d23063f735a1c53c588c2536fbb8aa9a143cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:9e:2a:f9:7d:5c:81:c0:5c:35:f2:e7:84:a6:
4e:5e:23:9c:45:20:81:64:e7:75:c5:3d:9a:48:8c:
79:32:af:31:b8:c3:b6:dc:bd:5e:ae:01:ae:36:58:
ba:2c:95:47:55:e6:af:79:cf:33:9e:69:6f:62:f1:
1e:c9:67:ea:0e:ab:70:07:0d:6b:00:2c:38:c1:2a:
28:33:49:b0:75:06:aa:c1:80:ff:0f:8c:06:46:73:
a1:81:0f:7e:df:47:ae:61:af:2d:1b:d8:e8:36:d8:
a2:b9:6e:e5:39:3e:90:2f:a6:1c:e1:e3:ee:99:9e:
7f:40:d9:92:42:b5:29:4b:e3:96:3d:b0:85:fe:e8:
ad:bf:f8:a6:03:c5:9d:a3:8f:f5:b9:9d:62:0e:42:
b9:7f:c7:31:71:d6:e7:70:e6:fb:ff:5d:4d:67:ad:
1e:d2:0f:b6:e4:12:e2:a1:a8:0d:1d:c3:23:03:c2:
1d:5d:e1:26:df:e0:f2:fb:d6:39:4f:a2:1a:5d:a5:
1b:10:24:95:f0:3a:4a:5e:03:aa:6c:4a:97:48:f7:
ec:0f:8c:18:89:7e:2e:12:7c:6f:2f:76:24:39:05:
ae:22:41:3f:55:cf:fe:23:4e:32:8d:b5:dc:6a:3e:
80:42:0e:4e:cd:5a:99:d1:98:62:08:78:04:4d:f6:
bb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:D2:30:63:F7:35:A1:C5:3C:58:8C:25:36:FB:B8:AA:9A:14:3C:B9
X509v3 Authority Key Identifier:
keyid:3E:D5:A3:68:A9:F2:E3:48:93:4A:91:48:88:45:59:43:62:3F:96:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:ce:0f:37:00:06:26:81:43:96:eb:ee:fb:ff:6c:17:33:80:
e4:ba:c4:ac:70:87:0e:ba:51:4f:d7:a6:24:41:62:20:1c:10:
01:70:c7:ff:2d:0a:77:a0:e2:5d:04:9c:b7:90:53:da:9b:95:
de:f6:c7:6d:ab:b4:fb:c9:94:5d:1b:63:1f:e6:3d:fd:52:cf:
9e:e4:c9:b9:bc:1d:7a:fc:05:4c:96:7b:5a:5b:bd:7b:88:b4:
58:ad:b3:d3:b1:00:a7:4b:0e:71:2d:06:f9:46:a2:19:22:0e:
51:49:d5:db:94:45:d5:0d:7c:a7:c3:2c:f2:46:fa:19:48:23:
34:ba:41:46:d0:9e:41:e5:a8:a9:c1:90:5d:b9:88:a5:15:bd:
d5:34:cb:ae:24:78:e0:c5:ff:5b:f3:be:cd:0d:30:04:e7:43:
cf:1d:be:3b:b3:3d:82:57:0a:97:7d:dc:d0:e3:4d:86:ff:72:
04:8f:f5:f6:7d:c3:cc:6c:e6:5b:bf:67:ad:cd:3e:3e:8d:20:
21:0e:7c:39:ab:70:56:28:ce:10:d6:58:40:64:c8:57:84:d2:
87:4e:7c:27:a6:8f:a4:1b:48:88:a3:f6:a7:2e:b8:9c:bf:91:
f1:d5:fe:56:76:ed:75:5f:1f:aa:93:96:54:86:a2:e1:af:4c:
92:18:00:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 12:20:06 2025 by rpki-client