Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft
File: LphQiZ2cq14AM9C-lyKn6zBdfGA.mft (raw, json)
Hash identifier: uYnkodcx6TmoO2DKRX3efbHNNrDNrYJxEjyI/mCggUI=
Subject key identifier: 1F:A5:96:D4:22:8E:45:C4:9B:E7:6F:9B:AD:7D:A4:56:EC:70:85:85
Authority key identifier: 2E:98:50:89:9D:9C:AB:5E:00:33:D0:BE:97:22:A7:EB:30:5D:7C:60
Certificate issuer: /CN=2e9850899d9cab5e0033d0be9722a7eb305d7c60
Certificate serial: 0199239F52A9C9385202AF22C58AEAF2FFA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 10:01:07 +0000
Manifest this update: Sun 07 Sep 2025 10:01:07 +0000
Manifest next update: Mon 08 Sep 2025 10:01:07 +0000
Files and hashes: 1: LphQiZ2cq14AM9C-lyKn6zBdfGA.crl (hash: tT5/jJjL6WAe53ezOy2jib3AbhqLyr+oyqokCbIkEZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft
rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:52:a9:c9:38:52:02:af:22:c5:8a:ea:f2:ff:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e9850899d9cab5e0033d0be9722a7eb305d7c60
Validity
Not Before: Sep 7 10:01:07 2025 GMT
Not After : Sep 8 10:01:07 2025 GMT
Subject: CN=1fa596d4228e45c49be76f9bad7da456ec708585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fb:f2:6b:fe:82:7c:94:78:45:21:5c:89:66:
13:c5:8d:e2:54:37:df:64:d0:ba:a0:ae:7c:17:22:
01:9e:c5:3b:1e:ea:aa:37:4e:70:22:a7:5d:7d:84:
97:c8:ab:3e:32:96:7b:d9:3e:4a:20:19:42:13:8e:
5f:00:cf:98:f8:59:a1:0c:c9:03:4a:46:37:eb:64:
3a:51:4b:cd:9f:c0:f2:ec:a2:77:09:a0:a2:57:54:
20:bc:8e:e4:02:63:39:08:7b:43:82:a7:c3:17:f1:
bc:65:4d:36:56:62:6c:d8:c8:1b:f1:e0:53:49:78:
30:58:21:49:da:71:3b:73:e0:89:5b:99:9c:fa:0f:
62:c9:85:9a:4a:f4:28:b5:f3:8c:08:66:e2:ba:f5:
34:33:44:ef:da:4e:b5:8e:60:b5:d8:80:36:8b:19:
ae:e3:fd:8f:41:6d:b9:14:bc:69:54:b3:f2:b6:cd:
4f:bc:2f:9f:2a:04:6f:c8:82:70:7a:3c:45:2f:49:
66:f4:ef:8b:30:65:95:37:05:e5:e6:e0:e3:15:ee:
f1:72:b0:27:f1:aa:ba:a6:1c:d5:aa:76:de:60:d2:
98:6f:15:64:94:81:c5:f5:71:e8:75:c7:24:dd:04:
96:24:05:96:cc:0a:34:95:03:c7:20:a8:8f:76:65:
0f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A5:96:D4:22:8E:45:C4:9B:E7:6F:9B:AD:7D:A4:56:EC:70:85:85
X509v3 Authority Key Identifier:
keyid:2E:98:50:89:9D:9C:AB:5E:00:33:D0:BE:97:22:A7:EB:30:5D:7C:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:ce:df:13:d1:a1:ad:38:20:96:22:39:ee:50:d0:09:ab:6b:
71:be:36:91:a5:81:6f:5a:2a:68:df:26:92:1d:bb:f8:61:1a:
c9:2a:cd:49:75:40:3a:15:0f:35:39:df:ce:c5:97:25:da:51:
22:ec:d9:a2:02:db:34:4b:38:3a:92:7c:52:cf:5f:90:ca:44:
60:dd:43:f8:fb:27:ab:fe:8a:10:70:cd:3e:12:27:e2:65:ce:
71:fb:61:66:86:f2:7c:72:5f:92:d0:dd:f7:07:f8:9d:95:81:
02:d5:e7:ad:b6:e5:a1:57:39:80:c2:21:6f:e5:68:c5:66:e3:
d2:4b:1f:b4:64:d1:14:ec:81:8e:7c:18:15:57:dc:37:d8:a4:
e7:16:d2:45:85:c2:ae:16:c6:b7:f4:9d:ef:d2:5b:69:c4:c4:
d3:bc:c5:b2:23:aa:80:6b:04:bb:a5:64:67:48:c3:19:dc:2b:
0f:c6:10:36:2d:d5:d7:b3:7d:65:b5:97:d4:5f:6c:ae:a7:d0:
d0:71:b4:11:b3:84:f7:46:c8:cc:5f:5e:56:a9:91:a4:2b:83:
5a:99:fa:1a:c8:b6:70:ee:45:98:77:19:31:76:76:f7:a8:38:
e7:71:49:d6:54:55:78:a6:81:58:09:3b:ea:3f:e1:33:ba:6b:
e7:04:5e:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:56:13 2025 by rpki-client