Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: mXy2Tf4aDD0WSNvoGPD8LsX+yasnlFVZPkrIwUQefHk=
Subject key identifier: 62:CB:BE:4A:EC:FA:30:01:F9:0D:28:FD:E1:29:51:87:0C:F3:A2:E2
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 019A7112CB3BDAFFD0C423D54354D1ABD988
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 14BD
Signing time: Tue 11 Nov 2025 04:00:48 +0000
Manifest this update: Tue 11 Nov 2025 04:00:48 +0000
Manifest next update: Wed 12 Nov 2025 04:00:48 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: dIhY2nrEjbT2Cztom4UfWErmwhO2zMkrMgopDRhIDf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:cb:3b:da:ff:d0:c4:23:d5:43:54:d1:ab:d9:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Nov 11 04:00:48 2025 GMT
Not After : Nov 12 04:00:48 2025 GMT
Subject: CN=62cbbe4aecfa3001f90d28fde12951870cf3a2e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0b:02:6d:d5:6c:f0:3b:e1:8c:ab:45:8e:58:
60:8a:d3:43:b1:e2:57:55:e5:27:ea:bd:1b:83:76:
8a:bb:40:6c:fe:cf:bd:92:dc:19:d3:7e:02:30:0c:
d6:a4:80:f0:ca:3a:84:ca:df:ba:34:37:ba:70:24:
d5:8f:27:7b:98:b8:06:f0:80:74:17:f1:60:ff:20:
94:e6:f1:be:3b:19:c6:a8:81:11:b5:7d:39:80:60:
86:52:54:d2:11:bf:67:69:a2:f6:1e:bb:16:84:00:
00:9c:67:c4:f7:df:26:17:ed:e8:52:81:39:b3:ce:
71:10:00:c2:8a:9c:d6:1f:b4:0b:7f:0b:f8:8b:63:
c1:62:ed:d0:9b:e2:ea:4d:a3:23:fa:21:ef:8d:bc:
30:e6:86:f4:9d:4f:e5:53:93:0d:da:fc:b0:60:33:
a7:30:0e:85:33:b2:f0:a0:8b:6c:d5:bc:12:8e:9d:
fe:8e:33:8d:f4:89:81:25:01:44:65:08:40:95:79:
7a:8a:3d:aa:e1:51:01:fa:58:b8:da:26:f0:4e:a5:
71:f4:5f:2b:3a:43:98:38:dd:86:e1:ef:54:8d:4b:
12:cb:29:6a:ad:eb:7c:74:15:9b:68:3a:56:62:da:
f9:03:2d:9a:7d:8a:21:29:02:80:03:a0:2a:28:5b:
e3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:CB:BE:4A:EC:FA:30:01:F9:0D:28:FD:E1:29:51:87:0C:F3:A2:E2
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:e9:a6:2b:25:52:52:cb:97:16:f4:ff:9f:05:1e:10:95:ff:
b7:b6:3a:25:17:e2:f3:49:ae:c9:83:87:99:d8:4d:73:a6:37:
a5:a6:56:f4:8f:c6:76:f5:f1:5f:51:d6:7d:fd:85:ca:33:72:
3b:83:2b:4b:e4:f8:cd:a0:e8:85:0b:ae:34:ec:ef:ac:41:05:
2d:18:c0:05:32:1b:4a:59:14:a7:f5:31:e2:34:b1:c3:e8:26:
50:0c:b9:78:21:9b:a4:14:58:22:cb:18:92:50:4d:a0:a0:01:
21:9e:9c:46:50:25:17:bc:cd:2c:e0:fa:da:f3:b4:23:26:61:
a3:a8:8e:55:46:10:13:45:d0:e4:4c:5a:72:ab:76:21:a2:b1:
c7:73:e1:58:1e:f7:bf:11:05:73:fe:e9:8b:f3:f5:29:f8:31:
c4:ff:16:34:23:76:5d:26:f1:66:e4:ce:2f:72:b7:84:a3:99:
db:fe:e4:2c:68:7b:03:6a:0d:59:49:07:6b:cc:67:2d:51:53:
01:bb:b8:32:63:d0:2f:45:44:22:47:42:cf:cb:7a:af:53:51:
c0:48:1f:5f:12:da:3f:98:35:2b:cf:ab:36:62:9e:21:8b:cb:
3a:c6:bc:4f:df:70:9a:c4:72:b7:51:76:24:32:50:c3:6f:d5:
04:87:4b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:34:56 2025 by rpki-client