Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.mft
File: LkWQWSMqS7ky9j-w37ZUk-ucgng.mft (raw, json)
Hash identifier: jhiRT3d+E7IyFYyEjypI69iCK2p5QUpH9VPvLwE2YQg=
Subject key identifier: 03:C1:19:57:33:46:1D:25:36:E9:46:4A:B7:B2:7A:F4:44:3A:2A:7D
Authority key identifier: 2E:45:90:59:23:2A:4B:B9:32:F6:3F:B0:DF:B6:54:93:EB:9C:82:78
Certificate issuer: /CN=2e459059232a4bb932f63fb0dfb65493eb9c8278
Certificate serial: 0197469D9CA1A5472618A3D39C34C1A325F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LkWQWSMqS7ky9j-w37ZUk-ucgng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.mft
Manifest number: 150A
Signing time: Fri 06 Jun 2025 19:00:23 +0000
Manifest this update: Fri 06 Jun 2025 19:00:23 +0000
Manifest next update: Sat 07 Jun 2025 19:00:23 +0000
Files and hashes: 1: LkWQWSMqS7ky9j-w37ZUk-ucgng.crl (hash: CxEqakpiuaGo/l7ip81Jqd+qgBU4pWi/WRkE7Z7E8YY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.mft
rsync://rpki.ripe.net/repository/DEFAULT/LkWQWSMqS7ky9j-w37ZUk-ucgng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9d:9c:a1:a5:47:26:18:a3:d3:9c:34:c1:a3:25:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e459059232a4bb932f63fb0dfb65493eb9c8278
Validity
Not Before: Jun 6 19:00:23 2025 GMT
Not After : Jun 7 19:00:23 2025 GMT
Subject: CN=03c1195733461d2536e9464ab7b27af4443a2a7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:be:aa:7a:32:19:e7:d9:51:a8:88:66:69:04:
31:dd:8b:ea:96:42:01:9e:39:a2:e8:48:a0:4e:8f:
a9:da:06:53:80:54:5b:a9:d8:1f:6c:a2:a5:2f:f2:
4f:cd:dd:b2:8c:53:1d:2b:c7:ef:51:75:aa:4d:0b:
e0:a9:3c:f0:d1:00:3f:e2:ff:36:5f:19:6a:f5:06:
e4:9c:aa:27:4c:c1:08:44:a3:e5:d9:57:50:7f:0d:
81:54:68:fd:60:93:d4:bb:20:bb:28:5e:65:c1:bb:
75:ff:8f:f0:39:c2:64:24:aa:42:b8:30:2e:0b:35:
51:a9:e0:bd:b6:59:b4:57:50:5e:61:1e:7d:07:86:
6f:c1:af:b8:0b:79:4f:c8:7e:b3:5f:34:89:bd:50:
bb:b2:f8:27:bf:67:de:6b:51:ae:e4:8b:41:dd:3f:
15:00:dc:ee:38:8b:1e:90:8e:21:d0:86:3a:8b:33:
2f:37:c0:5f:be:d0:c6:d9:aa:7b:ec:a1:8f:15:50:
16:c4:0d:a4:f9:9f:d4:40:42:d2:5c:e5:4b:88:f5:
57:7a:a7:92:d3:6c:80:f1:bd:5c:8e:d9:e2:f8:4e:
87:24:09:f3:c3:a1:2a:9d:ab:f1:08:9b:61:b7:a2:
a5:31:2a:e8:3c:50:3d:83:e4:f0:a4:91:35:cf:0b:
18:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C1:19:57:33:46:1D:25:36:E9:46:4A:B7:B2:7A:F4:44:3A:2A:7D
X509v3 Authority Key Identifier:
keyid:2E:45:90:59:23:2A:4B:B9:32:F6:3F:B0:DF:B6:54:93:EB:9C:82:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LkWQWSMqS7ky9j-w37ZUk-ucgng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:1b:aa:08:bb:ae:ee:46:cb:f2:64:bd:42:af:96:e1:f5:86:
2c:18:07:37:d1:46:26:75:7a:1e:93:34:09:3a:23:8c:09:33:
3c:2e:9f:b0:ab:3b:b8:ec:8c:b4:30:3a:10:4e:38:c0:83:a6:
fd:89:be:eb:84:21:73:f3:b7:06:87:cc:35:c2:d9:d4:9b:83:
b4:05:c8:ec:92:78:04:3a:00:99:3c:82:84:d5:98:3c:c3:2a:
37:fe:9a:34:64:d0:1d:16:85:2c:8d:a6:ef:20:bc:f5:7e:ef:
9c:ae:6a:ab:13:15:40:56:df:f2:2d:2c:7c:25:a4:59:0d:a7:
24:68:22:80:7d:06:1c:db:1c:8c:21:30:53:13:8f:bb:d8:8a:
41:65:1c:53:cf:00:4b:8c:77:a6:2d:cd:0a:60:db:f8:e8:a1:
0b:ae:69:30:cb:c0:1e:a6:5c:0a:1a:be:09:59:69:0d:97:38:
cb:b7:90:ab:53:2c:e4:42:2c:66:f7:69:e9:da:fc:a4:a9:2a:
26:3d:cc:25:da:41:10:58:62:23:32:f9:4d:82:66:d6:4b:5d:
69:f8:2d:3e:e4:4d:62:7c:dd:0a:ca:74:72:25:36:e4:29:77:
66:f5:62:c0:f9:2c:48:db:0c:35:07:98:67:7a:7a:5f:17:bf:
3b:d7:4c:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGnZyhpUcmGKPTnDTBoyXzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlNDU5MDU5MjMyYTRiYjkzMmY2M2ZiMGRmYjY1NDkzZWI5
YzgyNzgwHhcNMjUwNjA2MTkwMDIzWhcNMjUwNjA3MTkwMDIzWjAzMTEwLwYDVQQD
EygwM2MxMTk1NzMzNDYxZDI1MzZlOTQ2NGFiN2IyN2FmNDQ0M2EyYTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz76qejIZ59lRqIhmaQQx3YvqlkIB
njmi6EigTo+p2gZTgFRbqdgfbKKlL/JPzd2yjFMdK8fvUXWqTQvgqTzw0QA/4v82
Xxlq9QbknKonTMEIRKPl2VdQfw2BVGj9YJPUuyC7KF5lwbt1/4/wOcJkJKpCuDAu
CzVRqeC9tlm0V1BeYR59B4Zvwa+4C3lPyH6zXzSJvVC7svgnv2fea1Gu5ItB3T8V
ANzuOIsekI4h0IY6izMvN8BfvtDG2ap77KGPFVAWxA2k+Z/UQELSXOVLiPVXeqeS
02yA8b1cjtni+E6HJAnzw6EqnavxCJtht6KlMSroPFA9g+TwpJE1zwsYlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAPBGVczRh0lNulGSreyevREOip9MB8GA1UdIwQY
MBaAFC5FkFkjKku5MvY/sN+2VJPrnIJ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGtXUVdTTXFTN2t5OWotdzM3WlVrLXVjZ25nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC82NjhiZjMtNzdkYy00M2VhLThmZGQt
NDg1ZWRhMzQ5OThmLzEvTGtXUVdTTXFTN2t5OWotdzM3WlVrLXVjZ25nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC82NjhiZjMtNzdkYy00M2VhLThmZGQtNDg1ZWRhMzQ5OThm
LzEvTGtXUVdTTXFTN2t5OWotdzM3WlVrLXVjZ25nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAhuqCLuu
7kbL8mS9Qq+W4fWGLBgHN9FGJnV6HpM0CTojjAkzPC6fsKs7uOyMtDA6EE44wIOm
/Ym+64Qhc/O3BofMNcLZ1JuDtAXI7JJ4BDoAmTyChNWYPMMqN/6aNGTQHRaFLI2m
7yC89X7vnK5qqxMVQFbf8i0sfCWkWQ2nJGgigH0GHNscjCEwUxOPu9iKQWUcU88A
S4x3pi3NCmDb+OihC65pMMvAHqZcChq+CVlpDZc4y7eQq1Ms5EIsZvdp6dr8pKkq
Jj3MJdpBEFhiIzL5TYJm1ktdafgtPuRNYnzdCsp0ciU25Cl3ZvViwPksSNsMNQeY
Z3p6Xxe/O9dMig==
-----END CERTIFICATE-----
Generated at Sat Jun 7 02:03:16 2025 by rpki-client