Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: XnyKfKPS92AaPN7pGWMgdG1WIjYc3fuyFb3ykVuVuW0=
Subject key identifier: EC:DD:4B:B3:1E:65:D8:E2:EC:64:70:20:9D:F9:F5:42:70:B3:48:A5
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 019922FA15BEC4A35EA2DDD09FEF46656B56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 1410
Signing time: Sun 07 Sep 2025 07:00:38 +0000
Manifest this update: Sun 07 Sep 2025 07:00:38 +0000
Manifest next update: Mon 08 Sep 2025 07:00:38 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: TTC1tbUuSZ1cFv/VQVzpjiKECk7G6CE9/t2wdbKDWXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:15:be:c4:a3:5e:a2:dd:d0:9f:ef:46:65:6b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Sep 7 07:00:38 2025 GMT
Not After : Sep 8 07:00:38 2025 GMT
Subject: CN=ecdd4bb31e65d8e2ec6470209df9f54270b348a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fc:10:38:b5:d1:62:4f:ca:23:e5:b3:ca:79:
b2:e8:6f:fa:bb:e1:f0:aa:1e:ac:4e:eb:ec:76:27:
94:6c:cb:72:c5:11:52:1d:01:28:f0:35:f8:99:38:
16:68:e6:2b:36:f8:f1:1c:92:fd:d6:c5:a7:d2:c2:
46:4d:dc:b2:8b:2f:da:f7:f4:2c:d6:61:70:4a:c2:
da:70:3d:95:1f:f7:54:7f:75:0a:ac:ef:83:34:59:
35:70:72:05:3a:35:cd:28:ab:58:14:eb:0d:8a:4b:
3a:76:4c:06:b2:8b:43:e0:7b:26:52:43:de:6c:8a:
13:2a:10:c8:5e:16:db:e3:69:f7:49:a7:5f:9e:cb:
c1:34:d8:ba:2d:4c:d8:df:f3:73:34:e4:1b:c1:df:
09:81:2b:79:41:e8:52:f8:15:28:99:66:01:40:a7:
c4:43:17:7b:17:3c:2e:4d:17:96:40:a5:88:4d:94:
30:b4:77:fa:17:6e:0e:5f:41:91:54:34:dd:b8:9b:
ed:16:2d:39:e9:8a:c8:ec:b4:71:fd:fc:c1:8a:f3:
c8:bb:cc:e6:d5:56:b1:ed:b5:14:45:fe:a1:f9:b5:
ff:45:fe:6f:b5:e9:a0:24:c6:d9:c9:b0:1c:44:49:
38:6e:9d:14:7d:a4:9e:d9:55:64:12:27:da:81:5e:
e4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DD:4B:B3:1E:65:D8:E2:EC:64:70:20:9D:F9:F5:42:70:B3:48:A5
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:ee:a5:40:7e:4b:d6:f9:28:4a:a2:cf:56:c6:3a:ca:4d:ef:
28:6f:d2:ea:e0:92:34:f0:9d:23:c9:3b:5d:ab:11:f0:e7:d9:
19:5b:c8:9a:7f:aa:7f:c1:0f:02:b8:7f:06:17:b9:88:64:dd:
b5:0f:a5:e6:6b:0c:a2:e3:19:9c:da:98:d2:79:7d:bb:a0:54:
4c:6d:77:3b:c0:d9:bf:fd:3f:df:ab:9c:e4:72:d3:03:7f:a5:
47:09:5e:37:be:a9:18:b7:46:24:fa:5c:5f:31:7f:ee:e9:da:
51:99:24:a0:66:14:42:e8:d4:eb:39:cb:32:0c:35:1e:a5:e6:
85:31:68:9e:07:59:cd:b9:3b:88:eb:99:a8:1c:1b:bb:e5:db:
40:8b:fc:bb:ec:66:ac:2d:4c:f2:1d:9d:43:92:42:b8:f8:4b:
6c:95:db:29:a6:89:ef:ed:1b:1f:cb:19:c4:3e:23:29:70:1f:
63:87:1b:4b:7d:79:ce:06:18:c4:1f:79:66:e7:e7:e7:ae:c7:
5d:26:cb:68:c1:fc:68:51:fd:ad:56:a1:3e:99:9d:bd:24:49:
56:00:ae:b8:60:f4:39:12:f2:17:91:3f:44:49:07:96:72:3a:
1d:b4:a4:88:fa:29:80:e2:ea:92:1b:51:40:95:9f:f6:ed:94:
c6:45:2b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:05 2025 by rpki-client