Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
File: L1OI95ZqevrAc2x57WA7K3iGVsQ.mft (raw, json)
Hash identifier: YZzdqssUhrKLZ4lwz9FPYSaUFgIQrd3LnlRyb48ypBA=
Subject key identifier: AD:50:F5:7C:97:7F:39:1A:13:E4:98:68:9A:B9:58:69:53:B4:8A:6A
Authority key identifier: 2F:53:88:F7:96:6A:7A:FA:C0:73:6C:79:ED:60:3B:2B:78:86:56:C4
Certificate issuer: /CN=2f5388f7966a7afac0736c79ed603b2b788656c4
Certificate serial: 019A725CC4B4EB6E7D8B6CC40F4097C121BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
Manifest number: 0196
Signing time: Tue 11 Nov 2025 10:01:13 +0000
Manifest this update: Tue 11 Nov 2025 10:01:13 +0000
Manifest next update: Wed 12 Nov 2025 10:01:13 +0000
Files and hashes: 1: L1OI95ZqevrAc2x57WA7K3iGVsQ.crl (hash: tn9PNMeZbi6dXFaSKx1sXhxDmNHFfbpL18ihgkPn7UU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:c4:b4:eb:6e:7d:8b:6c:c4:0f:40:97:c1:21:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f5388f7966a7afac0736c79ed603b2b788656c4
Validity
Not Before: Nov 11 10:01:13 2025 GMT
Not After : Nov 12 10:01:13 2025 GMT
Subject: CN=ad50f57c977f391a13e498689ab9586953b48a6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:b3:33:49:43:8d:ae:22:8b:bd:3d:41:ea:c6:
dc:2b:1c:d4:2a:ff:e0:e2:de:c3:52:68:88:ff:67:
8e:75:6e:6f:20:a8:ad:cb:54:9b:8b:7a:0b:ab:59:
66:3a:75:7c:3e:62:fa:3c:59:ed:59:b5:2c:41:54:
75:be:25:32:c5:87:e9:81:22:f1:cf:c4:b7:41:61:
33:01:cd:ca:6e:93:4f:63:9e:37:a9:1d:3b:e2:07:
f2:ab:c3:63:b2:1f:6b:5a:0e:23:7e:a5:5a:57:a5:
45:15:14:c8:66:e2:60:50:b7:84:44:77:37:c6:5f:
dd:02:26:56:09:48:30:e0:78:d9:96:9a:79:95:e5:
d1:64:56:ed:56:5b:67:23:e7:02:6b:77:c6:40:5a:
03:6e:25:4e:ae:f5:52:93:5a:5c:d1:26:58:ab:e9:
4e:12:db:09:d2:9a:45:59:b0:28:c2:f5:99:2f:35:
8c:70:b4:08:64:ff:3b:43:97:65:02:13:97:01:c1:
81:c3:c7:b8:93:5a:8c:96:c8:29:0c:79:78:3b:e9:
cd:d6:e3:bc:98:93:9e:84:f3:d2:b3:84:6b:bf:d9:
d0:7f:33:90:8f:66:b6:da:24:cd:75:a0:3e:c5:7a:
6e:90:3b:94:6e:6b:a4:28:0d:31:59:95:a6:a4:ec:
52:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:50:F5:7C:97:7F:39:1A:13:E4:98:68:9A:B9:58:69:53:B4:8A:6A
X509v3 Authority Key Identifier:
keyid:2F:53:88:F7:96:6A:7A:FA:C0:73:6C:79:ED:60:3B:2B:78:86:56:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:98:4c:3d:c8:13:6c:0c:b2:9e:ba:b6:4b:0c:02:a7:90:b7:
8c:95:5c:ad:cf:04:84:e4:61:74:1a:ee:bd:41:c4:cd:67:a4:
a3:eb:5b:db:10:37:53:f0:c7:81:ee:47:8c:92:90:1c:da:6f:
ab:4f:fc:00:44:a2:35:79:b7:0b:51:91:e2:1d:79:47:86:fc:
4b:36:3f:e7:6e:c8:20:76:07:e6:0f:e9:32:8a:4e:d2:02:e3:
cf:e9:b4:ea:e8:b6:dd:0a:db:28:fd:e5:38:70:69:9d:a0:41:
a9:3f:33:6f:8e:11:ca:ac:17:af:22:6b:c0:f9:be:bb:b3:36:
90:ff:07:31:38:0d:2a:96:e7:d7:d9:b8:34:b5:71:ca:63:e5:
19:ee:9c:36:c9:37:07:ef:e1:db:d2:c4:87:8a:e5:bc:73:6f:
87:dd:55:6e:f5:13:37:80:13:2e:05:a0:a3:0b:16:cf:67:f4:
24:f0:6d:8a:44:b0:b7:5a:bd:25:f3:91:5f:69:f1:40:ec:4d:
a9:31:e9:37:12:3f:e1:a1:ae:aa:6b:60:9c:d6:75:63:8d:1b:
65:28:e6:34:af:9a:10:37:97:3f:d7:ea:af:fc:12:cd:70:7a:
14:08:e3:19:87:42:5e:b1:ef:e0:12:fd:dd:60:19:2b:13:e3:
23:a9:29:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:45:53 2025 by rpki-client