Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: hsYOOuRcyexUgGOBoFTzLIcIgsLypIiXXeF9WErLJVc=
Subject key identifier: 8D:9F:8A:B3:D9:08:89:FC:2B:BE:69:D0:D9:78:8F:D4:DD:64:B9:A2
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 019762F0CA0AE5BFCEB0F6A9B6F8A517B45A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 1328
Signing time: Thu 12 Jun 2025 07:00:36 +0000
Manifest this update: Thu 12 Jun 2025 07:00:36 +0000
Manifest next update: Fri 13 Jun 2025 07:00:36 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: fv0EBftyxdvX/4poUuMt0oXZHBjRjH/0GUBXDUznW0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:f0:ca:0a:e5:bf:ce:b0:f6:a9:b6:f8:a5:17:b4:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Jun 12 07:00:36 2025 GMT
Not After : Jun 13 07:00:36 2025 GMT
Subject: CN=8d9f8ab3d90889fc2bbe69d0d9788fd4dd64b9a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b4:77:d2:3c:7b:fe:6a:93:4f:0f:1c:38:16:
9d:85:a8:1a:53:df:c1:04:06:7e:68:8d:47:36:1b:
97:1b:06:0c:af:03:91:6c:fb:eb:37:fa:32:f0:38:
0c:ca:2e:b3:80:f8:71:2f:ac:87:e2:67:b8:bd:5d:
5f:e5:05:25:c5:d7:f3:a5:99:1a:49:ef:cd:fd:e0:
06:bb:9a:d0:06:a5:d2:19:7c:ba:84:d8:99:15:0e:
7c:30:03:d3:a8:bd:7e:c4:ee:ea:b3:48:cc:87:5e:
0c:01:b5:d8:ee:c3:8a:de:90:81:70:5e:c6:db:66:
45:ff:0b:fa:ed:4c:07:d3:a2:cd:92:1c:da:9a:a3:
68:9d:7c:df:9d:de:f8:36:1f:26:a6:0f:e7:fa:b2:
38:bb:56:80:b7:68:34:af:86:a4:8d:44:fe:04:67:
7d:ee:50:85:12:bb:7c:3f:50:59:c7:01:67:fc:dc:
58:10:f5:73:fb:c0:78:d1:30:f6:8a:43:b7:dc:29:
85:8e:b4:5f:9c:f5:cc:2a:62:81:37:cb:9e:73:2f:
d6:69:20:90:5c:d5:20:e4:6f:fc:6b:d2:9d:54:3a:
e7:d1:f3:f0:22:5a:f0:97:5c:a3:5a:4b:ab:16:d7:
c2:78:51:98:8a:b6:16:0a:1b:7a:32:74:31:82:03:
80:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:9F:8A:B3:D9:08:89:FC:2B:BE:69:D0:D9:78:8F:D4:DD:64:B9:A2
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:21:bf:78:23:e3:bc:b3:fc:de:c5:20:8f:9b:fe:e5:cf:ac:
71:9c:85:de:76:36:10:ee:d8:f7:2b:00:c4:da:2c:be:b2:44:
55:ec:f6:17:23:09:ed:d8:9b:27:2b:17:37:a9:fe:3e:ef:b8:
99:ad:13:32:7e:17:b0:d5:81:64:d5:91:64:1c:13:a4:00:d5:
90:ec:a1:19:2b:ea:41:9d:0b:d7:29:08:53:d2:da:b3:55:73:
b9:1b:61:31:36:a3:ca:2c:b7:78:f8:e6:0a:f3:11:68:ff:79:
67:fa:ed:6d:2b:16:9f:9f:74:6f:df:f4:5f:29:39:72:d2:38:
b9:74:16:cd:35:83:69:5e:6a:dc:8a:72:e2:24:12:99:dd:21:
9b:63:4f:c7:0d:20:53:ab:f0:76:f4:97:47:0a:bc:a8:13:38:
24:b6:c4:cd:54:b6:ff:77:eb:04:93:62:c0:5a:f6:1d:bf:6e:
4a:be:54:e4:a0:70:4c:96:7c:f3:3e:49:c7:9e:5c:5b:6e:a9:
98:64:9a:dc:45:df:40:01:e3:7c:67:dc:e9:65:0f:10:d7:38:
8f:59:93:4d:34:af:f5:54:20:4e:47:3a:66:38:ae:38:21:bc:
01:b2:f8:e7:a7:8c:06:d6:91:db:bb:8c:5a:d8:7e:84:c4:0d:
ba:04:b8:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdi8MoK5b/OsPaptvilF7RaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMjM2YjU0OGJhNTlhMmFiYjI1ODIzNDFkNTYwY2E4OTNm
NDk3NjMwHhcNMjUwNjEyMDcwMDM2WhcNMjUwNjEzMDcwMDM2WjAzMTEwLwYDVQQD
Eyg4ZDlmOGFiM2Q5MDg4OWZjMmJiZTY5ZDBkOTc4OGZkNGRkNjRiOWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrR30jx7/mqTTw8cOBadhagaU9/B
BAZ+aI1HNhuXGwYMrwORbPvrN/oy8DgMyi6zgPhxL6yH4me4vV1f5QUlxdfzpZka
Se/N/eAGu5rQBqXSGXy6hNiZFQ58MAPTqL1+xO7qs0jMh14MAbXY7sOK3pCBcF7G
22ZF/wv67UwH06LNkhzamqNonXzfnd74Nh8mpg/n+rI4u1aAt2g0r4akjUT+BGd9
7lCFErt8P1BZxwFn/NxYEPVz+8B40TD2ikO33CmFjrRfnPXMKmKBN8uecy/WaSCQ
XNUg5G/8a9KdVDrn0fPwIlrwl1yjWkurFtfCeFGYirYWCht6MnQxggOAYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI2firPZCIn8K75p0Nl4j9TdZLmiMB8GA1UdIwQY
MBaAFC0ja1SLpZoquyWCNB1WDKiT9JdjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84NzFkOGItMjIxOS00NmM0LWE0OTAt
MjU3MTM2OWMyMDJiLzEvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84NzFkOGItMjIxOS00NmM0LWE0OTAtMjU3MTM2OWMyMDJi
LzEvTFNOclZJdWxtaXE3SllJMEhWWU1xSlAwbDJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAICG/eCPj
vLP83sUgj5v+5c+scZyF3nY2EO7Y9ysAxNosvrJEVez2FyMJ7dibJysXN6n+Pu+4
ma0TMn4XsNWBZNWRZBwTpADVkOyhGSvqQZ0L1ykIU9Las1VzuRthMTajyiy3ePjm
CvMRaP95Z/rtbSsWn590b9/0Xyk5ctI4uXQWzTWDaV5q3Ipy4iQSmd0hm2NPxw0g
U6vwdvSXRwq8qBM4JLbEzVS2/3frBJNiwFr2Hb9uSr5U5KBwTJZ88z5Jx55cW26p
mGSa3EXfQAHjfGfc6WUPENc4j1mTTTSv9VQgTkc6ZjiuOCG8AbL456eMBtaR27uM
Wth+hMQNugS4Bg==
-----END CERTIFICATE-----
Generated at Thu Jun 12 13:40:15 2025 by rpki-client