Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.mft
File: LkWQWSMqS7ky9j-w37ZUk-ucgng.mft (raw, json)
Hash identifier: q0ZNsbjUbpbtdmD805QUoXXb9sVQfyTcfJStZEL+1Pk=
Subject key identifier: 79:9D:1C:E3:00:05:77:24:6F:25:32:33:F4:9F:CB:A5:70:6B:EA:FA
Authority key identifier: 2E:45:90:59:23:2A:4B:B9:32:F6:3F:B0:DF:B6:54:93:EB:9C:82:78
Certificate issuer: /CN=2e459059232a4bb932f63fb0dfb65493eb9c8278
Certificate serial: 0199350030573B9EC732771E141B40B560E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LkWQWSMqS7ky9j-w37ZUk-ucgng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.mft
Manifest number: 160A
Signing time: Wed 10 Sep 2025 19:00:28 +0000
Manifest this update: Wed 10 Sep 2025 19:00:28 +0000
Manifest next update: Thu 11 Sep 2025 19:00:28 +0000
Files and hashes: 1: LkWQWSMqS7ky9j-w37ZUk-ucgng.crl (hash: JdEZc/rQRgYrhEom4+ctHxSjT0J+EKosyIiixGsKdzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.mft
rsync://rpki.ripe.net/repository/DEFAULT/LkWQWSMqS7ky9j-w37ZUk-ucgng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 19:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:00:30:57:3b:9e:c7:32:77:1e:14:1b:40:b5:60:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e459059232a4bb932f63fb0dfb65493eb9c8278
Validity
Not Before: Sep 10 19:00:28 2025 GMT
Not After : Sep 11 19:00:28 2025 GMT
Subject: CN=799d1ce3000577246f253233f49fcba5706beafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:33:db:d6:a6:d7:ef:0f:7c:41:e1:6b:ac:fb:
64:5f:1f:b5:c5:7f:3d:9e:f8:19:81:e6:f5:2b:59:
3c:96:b6:5a:cf:d4:1c:09:e7:29:35:b6:3d:1f:93:
dd:67:79:e0:b4:a8:27:fe:8c:a6:40:04:3d:49:83:
94:53:19:10:d7:c5:e1:cf:53:4f:2f:bf:d9:de:54:
50:1e:00:91:18:0f:7c:ec:62:c7:35:aa:77:0e:55:
77:59:fe:12:dd:be:2f:fd:47:31:c2:87:32:54:b9:
f3:ce:4c:fa:6f:32:64:b3:07:7f:a3:b9:ca:65:46:
d3:ae:d5:db:32:77:9b:12:dc:55:e5:ce:26:c5:33:
29:54:d2:e0:b9:ea:98:84:15:35:c2:e2:69:de:e1:
d3:aa:89:db:c3:1c:b9:33:5a:62:84:86:9f:65:0d:
c4:ec:c7:93:a1:40:46:eb:a2:e9:ca:b8:06:1a:d8:
68:9e:7f:78:dd:61:b6:76:a8:f1:5f:4f:74:a6:1f:
be:7c:35:18:ac:44:51:4b:b4:ef:c4:34:57:42:59:
99:6d:4d:d3:0a:a2:ad:6d:1f:ed:95:b0:4e:5b:bf:
5d:b1:cd:d2:8a:03:dd:7d:fa:3d:1b:ca:95:97:04:
62:00:57:ff:c5:ff:0b:01:c8:5c:bf:9b:3f:2f:5f:
b8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:9D:1C:E3:00:05:77:24:6F:25:32:33:F4:9F:CB:A5:70:6B:EA:FA
X509v3 Authority Key Identifier:
keyid:2E:45:90:59:23:2A:4B:B9:32:F6:3F:B0:DF:B6:54:93:EB:9C:82:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LkWQWSMqS7ky9j-w37ZUk-ucgng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/668bf3-77dc-43ea-8fdd-485eda34998f/1/LkWQWSMqS7ky9j-w37ZUk-ucgng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:89:f4:50:49:79:3d:0e:bc:38:05:c1:36:90:40:f5:3f:8b:
38:f0:86:dd:cf:82:2a:bf:85:9a:fb:08:b6:19:90:ec:f1:5c:
db:93:76:1e:39:31:84:69:6b:45:fb:de:ad:62:87:fe:ea:a4:
5b:23:d5:0b:53:bf:1a:2a:4d:4c:86:32:09:da:b1:d6:50:8f:
df:13:63:32:ab:82:ac:98:c4:e1:e5:1e:56:ad:f2:8f:04:0c:
8c:98:b7:df:79:74:0b:96:a0:d8:38:40:3b:f8:8f:14:f5:3e:
4e:6f:7b:4d:22:a3:97:e9:ee:f2:ed:18:de:29:c7:4a:9d:3c:
fd:4d:07:ed:6d:71:8d:8c:a5:80:8e:a3:27:9b:f9:91:a3:a7:
3d:52:45:41:c5:aa:6a:ed:66:22:ed:0e:13:3e:64:5e:63:1a:
c1:d6:43:34:16:aa:fa:a1:46:77:fc:61:ab:c0:45:0a:fb:a8:
36:8b:f4:7f:9e:a3:c9:68:a7:14:56:8d:72:2f:86:79:c3:a0:
a4:cc:cd:03:cc:0c:74:4b:bb:45:f9:b3:4b:66:db:76:63:c1:
09:2f:86:b1:28:b9:36:c8:8a:44:27:b5:46:51:79:dd:f5:d5:
c3:e2:f5:89:d6:ff:13:f7:eb:ac:f8:a8:35:c4:33:c3:66:41:
57:cd:57:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk1ADBXO57HMnceFBtAtWDoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlNDU5MDU5MjMyYTRiYjkzMmY2M2ZiMGRmYjY1NDkzZWI5
YzgyNzgwHhcNMjUwOTEwMTkwMDI4WhcNMjUwOTExMTkwMDI4WjAzMTEwLwYDVQQD
Eyg3OTlkMWNlMzAwMDU3NzI0NmYyNTMyMzNmNDlmY2JhNTcwNmJlYWZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7TPb1qbX7w98QeFrrPtkXx+1xX89
nvgZgeb1K1k8lrZaz9QcCecpNbY9H5PdZ3ngtKgn/oymQAQ9SYOUUxkQ18Xhz1NP
L7/Z3lRQHgCRGA987GLHNap3DlV3Wf4S3b4v/UcxwocyVLnzzkz6bzJkswd/o7nK
ZUbTrtXbMnebEtxV5c4mxTMpVNLgueqYhBU1wuJp3uHTqonbwxy5M1pihIafZQ3E
7MeToUBG66LpyrgGGthonn943WG2dqjxX090ph++fDUYrERRS7TvxDRXQlmZbU3T
CqKtbR/tlbBOW79dsc3SigPdffo9G8qVlwRiAFf/xf8LAchcv5s/L1+4aQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHmdHOMABXckbyUyM/Sfy6Vwa+r6MB8GA1UdIwQY
MBaAFC5FkFkjKku5MvY/sN+2VJPrnIJ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGtXUVdTTXFTN2t5OWotdzM3WlVrLXVjZ25nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC82NjhiZjMtNzdkYy00M2VhLThmZGQt
NDg1ZWRhMzQ5OThmLzEvTGtXUVdTTXFTN2t5OWotdzM3WlVrLXVjZ25nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC82NjhiZjMtNzdkYy00M2VhLThmZGQtNDg1ZWRhMzQ5OThm
LzEvTGtXUVdTTXFTN2t5OWotdzM3WlVrLXVjZ25nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABon0UEl5
PQ68OAXBNpBA9T+LOPCG3c+CKr+FmvsIthmQ7PFc25N2HjkxhGlrRfverWKH/uqk
WyPVC1O/GipNTIYyCdqx1lCP3xNjMquCrJjE4eUeVq3yjwQMjJi333l0C5ag2DhA
O/iPFPU+Tm97TSKjl+nu8u0Y3inHSp08/U0H7W1xjYylgI6jJ5v5kaOnPVJFQcWq
au1mIu0OEz5kXmMawdZDNBaq+qFGd/xhq8BFCvuoNov0f56jyWinFFaNci+GecOg
pMzNA8wMdEu7RfmzS2bbdmPBCS+GsSi5NsiKRCe1RlF53fXVw+L1idb/E/frrPio
NcQzw2ZBV81XWw==
-----END CERTIFICATE-----
Generated at Wed Sep 10 23:57:13 2025 by rpki-client