
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
File: LF3rfkKW4vu0wB_AZKH2gYlreXk.mft (raw, json)
Hash identifier: sshm2q4hgUhouDqDrGZYqo6BRSW7kNJWJLFUsaPnndY=
Subject key identifier: 35:9C:45:64:E6:DF:74:D0:23:D5:E4:89:2D:37:F8:2B:C0:4C:A6:E3
Authority key identifier: 2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
Certificate issuer: /CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Certificate serial: 019755352784F6AFA18A9B0031B7DCF10D81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
Manifest number: 055A
Signing time: Mon 09 Jun 2025 15:00:36 +0000
Manifest this update: Mon 09 Jun 2025 15:00:36 +0000
Manifest next update: Tue 10 Jun 2025 15:00:36 +0000
Files and hashes: 1: LF3rfkKW4vu0wB_AZKH2gYlreXk.crl (hash: f7/LhidzVReIPd75gYh5xFFpuirD0dwwpVc/KHrv6RU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 11:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:55:35:27:84:f6:af:a1:8a:9b:00:31:b7:dc:f1:0d:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Validity
Not Before: Jun 9 15:00:36 2025 GMT
Not After : Jun 10 15:00:36 2025 GMT
Subject: CN=359c4564e6df74d023d5e4892d37f82bc04ca6e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:36:e4:08:48:44:ca:67:4a:4d:c5:05:82:b2:
c0:8b:7e:b9:a2:29:6d:9f:f4:cd:52:31:47:9a:0b:
ff:33:68:14:be:3b:95:e4:91:39:04:6d:1b:34:d3:
88:f2:8d:ce:bc:b5:ac:e8:58:06:8b:f3:a8:8a:cd:
3b:b1:7d:e3:ab:56:ed:09:c9:83:fd:b7:fc:30:fd:
57:a5:ec:e9:14:56:02:c3:2e:44:57:01:49:d3:08:
d2:e1:ee:bc:0a:cc:88:37:2c:19:77:bd:f5:70:fd:
38:e4:77:df:d5:c6:13:33:b1:38:16:19:a4:71:3d:
9a:e3:bd:a6:aa:44:ea:99:cb:cf:9b:36:82:bc:fc:
30:c4:f7:cb:7f:a5:81:e8:09:a5:f5:ee:ac:40:ff:
b8:0f:e7:7f:f6:63:23:78:b2:11:b6:0a:4c:13:d7:
9d:65:47:97:75:2c:21:ef:43:c2:9e:39:61:19:18:
36:38:ab:2c:7f:27:1a:bb:65:b0:f4:53:e3:64:3f:
48:c1:de:a9:30:15:e8:ba:bd:49:70:95:42:53:35:
9e:42:7a:23:77:a6:17:55:c5:2d:83:13:7f:9b:05:
d1:08:a0:4d:42:4e:41:c1:3d:8a:be:83:7e:de:2a:
6c:3c:7f:66:4e:59:80:05:c0:1b:b7:b3:93:a7:be:
d6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:9C:45:64:E6:DF:74:D0:23:D5:E4:89:2D:37:F8:2B:C0:4C:A6:E3
X509v3 Authority Key Identifier:
keyid:2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:e0:9c:19:4c:26:e2:d4:1b:00:cf:69:f4:bf:da:75:2d:b5:
1d:3b:73:2b:fc:1f:58:20:06:52:e6:e9:c8:10:50:78:c9:4e:
d3:c3:32:21:3b:15:d8:31:50:58:ba:ab:3e:46:66:d3:84:d3:
1c:5a:3a:a5:c6:56:00:11:d0:84:15:8a:d7:81:f4:45:8f:8d:
22:a9:44:a3:40:d2:d8:24:16:56:f9:eb:09:a4:d0:9c:de:f9:
7a:71:bb:83:86:de:05:da:2d:8c:ab:89:d1:d9:d7:04:ea:52:
2c:66:a9:6f:4b:5f:47:3d:96:d1:ad:15:e1:81:82:78:7d:26:
48:11:66:e7:c0:b1:00:8b:82:0a:40:83:43:b3:42:b4:dd:ca:
db:9a:a2:e2:0f:76:20:d9:03:b1:df:86:f8:52:67:be:d2:63:
ac:a6:7e:96:33:15:bc:98:ab:8d:45:7d:d0:4c:25:f5:0b:4f:
64:18:59:c4:01:2f:af:44:a9:e2:97:29:96:25:be:11:0c:ae:
9f:39:67:e7:61:c0:11:c1:89:81:f3:cb:73:3d:f8:c3:c4:f8:
e0:96:70:4b:ce:2d:9c:f0:70:62:66:f4:f9:bf:c2:6d:92:1f:
cd:93:14:2c:cc:28:84:5d:df:39:b7:90:b1:4f:a5:96:91:7c:
a2:5d:40:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdVNSeE9q+hipsAMbfc8Q2BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjNWRlYjdlNDI5NmUyZmJiNGMwMWZjMDY0YTFmNjgxODk2
Yjc5NzkwHhcNMjUwNjA5MTUwMDM2WhcNMjUwNjEwMTUwMDM2WjAzMTEwLwYDVQQD
EygzNTljNDU2NGU2ZGY3NGQwMjNkNWU0ODkyZDM3ZjgyYmMwNGNhNmUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5zbkCEhEymdKTcUFgrLAi365oilt
n/TNUjFHmgv/M2gUvjuV5JE5BG0bNNOI8o3OvLWs6FgGi/Oois07sX3jq1btCcmD
/bf8MP1XpezpFFYCwy5EVwFJ0wjS4e68CsyINywZd731cP045Hff1cYTM7E4Fhmk
cT2a472mqkTqmcvPmzaCvPwwxPfLf6WB6Aml9e6sQP+4D+d/9mMjeLIRtgpME9ed
ZUeXdSwh70PCnjlhGRg2OKssfycau2Ww9FPjZD9Iwd6pMBXour1JcJVCUzWeQnoj
d6YXVcUtgxN/mwXRCKBNQk5BwT2KvoN+3ipsPH9mTlmABcAbt7OTp77WHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDWcRWTm33TQI9XkiS03+CvATKbjMB8GA1UdIwQY
MBaAFCxd635CluL7tMAfwGSh9oGJa3l5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEYzcmZrS1c0dnUwd0JfQVpLSDJnWWxyZVhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS85OTMyM2UtMDFmNi00OTU5LTk4MTYt
YTg2YWM1NjFhYjU2LzEvTEYzcmZrS1c0dnUwd0JfQVpLSDJnWWxyZVhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS85OTMyM2UtMDFmNi00OTU5LTk4MTYtYTg2YWM1NjFhYjU2
LzEvTEYzcmZrS1c0dnUwd0JfQVpLSDJnWWxyZVhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMOCcGUwm
4tQbAM9p9L/adS21HTtzK/wfWCAGUubpyBBQeMlO08MyITsV2DFQWLqrPkZm04TT
HFo6pcZWABHQhBWK14H0RY+NIqlEo0DS2CQWVvnrCaTQnN75enG7g4beBdotjKuJ
0dnXBOpSLGapb0tfRz2W0a0V4YGCeH0mSBFm58CxAIuCCkCDQ7NCtN3K25qi4g92
INkDsd+G+FJnvtJjrKZ+ljMVvJirjUV90Ewl9QtPZBhZxAEvr0Sp4pcpliW+EQyu
nzln52HAEcGJgfPLcz34w8T44JZwS84tnPBwYmb0+b/CbZIfzZMULMwohF3fObeQ
sU+llpF8ol1Atg==
-----END CERTIFICATE-----
Generated at Mon Jun 9 18:51:59 2025 by rpki-client