Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
File: L1OI95ZqevrAc2x57WA7K3iGVsQ.mft (raw, json)
Hash identifier: P6wUQLhwY824gCtRlKboWPRVAXWHQNc4OShKfm2fwhY=
Subject key identifier: 9A:93:9E:E8:C9:B0:B1:F2:7B:CD:9C:8C:A6:AA:07:06:B0:81:58:E0
Authority key identifier: 2F:53:88:F7:96:6A:7A:FA:C0:73:6C:79:ED:60:3B:2B:78:86:56:C4
Certificate issuer: /CN=2f5388f7966a7afac0736c79ed603b2b788656c4
Certificate serial: 0199225559A46ECD4CCB10392CC68056FB37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
Manifest number: E8
Signing time: Sun 07 Sep 2025 04:00:42 +0000
Manifest this update: Sun 07 Sep 2025 04:00:42 +0000
Manifest next update: Mon 08 Sep 2025 04:00:42 +0000
Files and hashes: 1: L1OI95ZqevrAc2x57WA7K3iGVsQ.crl (hash: dHHFLWKriGJsPoFc1k86cylkBoBmkFzol4rt6g4PXSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:59:a4:6e:cd:4c:cb:10:39:2c:c6:80:56:fb:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f5388f7966a7afac0736c79ed603b2b788656c4
Validity
Not Before: Sep 7 04:00:42 2025 GMT
Not After : Sep 8 04:00:42 2025 GMT
Subject: CN=9a939ee8c9b0b1f27bcd9c8ca6aa0706b08158e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9d:f3:c9:39:dd:85:96:e8:43:1b:b9:6e:ea:
72:5e:60:58:40:4e:25:95:7c:59:30:71:3e:fe:7e:
c1:6d:55:a6:66:2a:fa:eb:3e:77:69:6c:19:36:14:
d4:7f:86:67:e0:0b:08:af:62:35:2b:b8:ad:45:6b:
16:0b:21:a3:02:87:f6:97:2a:83:8c:1f:13:79:6c:
25:56:ca:85:ef:fa:51:49:2d:46:e9:8c:ba:e1:7b:
34:e1:a8:e9:61:f7:41:29:76:ac:26:0a:62:ab:9a:
df:91:88:42:cc:e8:0c:e6:64:23:c8:99:9d:fa:75:
07:4a:65:69:df:09:76:49:33:45:e6:26:79:55:07:
ad:85:64:2c:26:52:56:01:a3:a0:13:22:56:2a:21:
2e:cc:15:20:2a:ab:86:cc:02:09:50:2f:0a:8d:e1:
21:6a:71:11:7e:88:5b:6f:3d:fe:76:f9:30:79:28:
77:14:da:dd:e6:72:ae:06:0e:dd:fc:21:34:5d:bb:
0a:c1:8a:9c:2c:df:4d:ea:56:50:2d:16:94:ab:fb:
b5:f3:7c:96:9d:80:a8:02:d8:21:52:f2:bb:30:c2:
a7:27:36:7d:3d:e4:09:1c:ad:65:2a:38:2e:88:f1:
8c:41:27:3f:9b:62:70:ac:31:d8:5b:11:cb:0c:1e:
08:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:93:9E:E8:C9:B0:B1:F2:7B:CD:9C:8C:A6:AA:07:06:B0:81:58:E0
X509v3 Authority Key Identifier:
keyid:2F:53:88:F7:96:6A:7A:FA:C0:73:6C:79:ED:60:3B:2B:78:86:56:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:17:1a:8a:44:fb:9b:f1:f6:39:e2:ca:db:8c:a4:5e:2e:22:
32:68:ac:99:77:ab:bb:eb:bd:c4:ca:74:eb:5d:09:b2:d1:fd:
79:ee:a0:f0:db:00:68:72:39:d8:8c:0c:f0:31:2e:7f:a4:4e:
90:21:6a:ea:ee:72:04:0f:18:02:0f:37:18:32:8f:16:d4:ed:
9e:72:33:e9:67:ce:a9:05:3d:37:81:f8:0b:91:bc:39:51:36:
91:6c:b6:5e:67:df:4e:d1:7e:af:32:c6:84:30:db:89:b2:1f:
92:2b:ca:39:83:3a:1c:67:1f:08:4e:34:ff:be:f4:e3:18:a9:
51:79:95:40:42:07:fd:ef:0a:b1:3c:ce:5a:cc:64:6d:75:c3:
d8:78:b0:f4:91:bc:f5:91:dc:66:42:a5:7f:b8:6d:c2:e5:7e:
29:de:50:07:57:bc:84:f3:48:4e:29:d5:60:c8:0c:ff:a0:34:
39:a0:0c:c0:b6:6a:ae:22:6b:e3:b1:96:9b:bf:d6:6d:9d:be:
27:e3:ce:35:05:7a:7a:e8:a8:16:9a:25:55:d7:62:10:ee:2d:
ae:8a:b0:89:93:68:93:96:0d:17:63:46:32:50:f4:91:62:05:
2c:10:c3:1b:4e:48:9b:89:6c:92:42:ee:1a:9d:6f:8f:05:a3:
f1:1f:d2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:16:15 2025 by rpki-client