Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
File: 1lcpIU0Paz-lGho4A32rjeSOBVg.mft (raw, json)
Hash identifier: btcNxg/ISLaNiDXR5wQw+a7/mysv8nfKPw4qz7OkLBA=
Subject key identifier: 81:8D:E2:01:95:68:7C:8F:FB:BB:7E:91:1E:69:DD:2A:F3:10:8F:D7
Authority key identifier: D6:57:29:21:4D:0F:6B:3F:A5:1A:1A:38:03:7D:AB:8D:E4:8E:05:58
Certificate issuer: /CN=d65729214d0f6b3fa51a1a38037dab8de48e0558
Certificate serial: 019A725C53CDDE0FEA395A33D3FB5637085B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1lcpIU0Paz-lGho4A32rjeSOBVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
Manifest number: 0780
Signing time: Tue 11 Nov 2025 10:00:44 +0000
Manifest this update: Tue 11 Nov 2025 10:00:44 +0000
Manifest next update: Wed 12 Nov 2025 10:00:44 +0000
Files and hashes: 1: 1lcpIU0Paz-lGho4A32rjeSOBVg.crl (hash: 2Hi3gUteEj+DqUrkVAxwt8/1eymY/ZyShNLjt7h7J74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1lcpIU0Paz-lGho4A32rjeSOBVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:53:cd:de:0f:ea:39:5a:33:d3:fb:56:37:08:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d65729214d0f6b3fa51a1a38037dab8de48e0558
Validity
Not Before: Nov 11 10:00:44 2025 GMT
Not After : Nov 12 10:00:44 2025 GMT
Subject: CN=818de20195687c8ffbbb7e911e69dd2af3108fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:10:f8:40:63:e9:40:6f:78:5c:e0:e3:d1:78:
f2:ed:fc:69:a4:0d:b9:99:d5:6b:76:12:3d:28:87:
bf:b0:dc:f7:c3:0d:fe:8f:89:97:96:be:d3:ee:b0:
1f:1d:ac:ad:34:72:59:00:fd:10:9a:99:ed:77:e2:
89:e7:8e:f4:1a:dd:94:2c:94:9e:2f:45:70:57:5e:
02:f6:b4:ed:25:da:01:a7:13:de:35:d9:78:b3:82:
68:33:71:c1:4c:61:90:71:7d:b2:39:10:9e:95:06:
80:ac:95:4d:ea:3d:63:cd:aa:6b:d5:14:35:ba:70:
d0:6d:bc:fb:a0:10:56:8e:2b:09:c4:68:c9:6b:ef:
00:1d:43:46:69:b2:75:01:26:cc:7c:2e:56:73:ec:
b7:b5:f2:e1:4f:75:28:95:ee:59:38:d5:3e:49:b2:
62:fb:b1:db:01:ed:8a:56:94:3c:73:68:94:da:4b:
b7:ac:58:68:6e:c5:51:ad:ea:44:47:d3:c8:99:dd:
22:1d:e8:84:b5:4e:f1:e4:37:17:24:6a:0a:04:af:
bd:5a:90:8a:a4:78:e7:f6:57:a1:02:01:13:40:df:
d3:82:30:05:da:78:df:98:1d:7d:5f:8c:98:e6:20:
d3:ab:50:c7:91:d4:33:75:c9:b1:21:d4:3a:5e:eb:
49:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:8D:E2:01:95:68:7C:8F:FB:BB:7E:91:1E:69:DD:2A:F3:10:8F:D7
X509v3 Authority Key Identifier:
keyid:D6:57:29:21:4D:0F:6B:3F:A5:1A:1A:38:03:7D:AB:8D:E4:8E:05:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1lcpIU0Paz-lGho4A32rjeSOBVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:a6:fb:37:5a:f8:9b:8d:4e:24:4e:09:0a:bb:54:74:44:9e:
56:3e:b3:0e:d4:d4:de:8e:74:cd:a1:40:8f:6d:60:08:41:5c:
f4:59:86:5e:e9:e0:9b:14:27:94:52:90:93:28:30:33:6c:1f:
b2:bb:39:f7:f3:07:f0:9d:c9:9f:9c:60:86:ca:9a:27:53:28:
f8:ff:b6:c1:fe:58:97:4d:16:9c:e6:44:b9:0e:6b:fa:41:bc:
ae:f0:3f:55:d7:80:0a:1d:85:ed:c8:25:6c:f6:a7:d1:1a:c3:
f3:ec:98:d4:e4:20:a6:17:0c:23:5a:b0:ba:70:75:af:a2:80:
22:57:54:30:f2:65:48:7d:86:67:c2:02:80:bd:0a:51:54:c9:
0a:79:84:0f:69:3b:36:e8:25:25:11:44:fe:d5:ce:54:27:2a:
cf:0a:c3:d3:b2:ff:c9:56:d0:dc:f8:a2:0e:5b:d9:df:f6:a9:
b2:a1:ff:d7:6e:6c:78:15:19:a6:c7:09:a3:18:8f:3f:a5:e7:
a8:ea:8a:43:69:49:a5:0d:3f:35:86:5b:5e:46:0b:fb:04:71:
db:a2:90:3a:11:d4:b8:17:d5:37:88:95:f1:24:aa:d0:c3:c9:
80:04:2e:ba:38:89:da:0a:54:c7:aa:99:76:be:20:0a:ee:dd:
dd:c8:4d:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:21 2025 by rpki-client