Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft
File: lcGSBnFsXHnTW_FZJNszI6TsGMg.mft (raw, json)
Hash identifier: SC/h39GQLKBmO4ZiwHwwiIWrKWUuthrj5Rjss+I4lLs=
Subject key identifier: D0:AD:7F:BC:22:EE:4B:0D:50:3F:39:E3:F8:1E:73:E8:5D:35:E5:3C
Authority key identifier: 95:C1:92:06:71:6C:5C:79:D3:5B:F1:59:24:DB:33:23:A4:EC:18:C8
Certificate issuer: /CN=95c19206716c5c79d35bf15924db3323a4ec18c8
Certificate serial: 01992255EAEDC624C2AE28E900810562FB74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lcGSBnFsXHnTW_FZJNszI6TsGMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft
Manifest number: 1241
Signing time: Sun 07 Sep 2025 04:01:19 +0000
Manifest this update: Sun 07 Sep 2025 04:01:19 +0000
Manifest next update: Mon 08 Sep 2025 04:01:19 +0000
Files and hashes: 1: lcGSBnFsXHnTW_FZJNszI6TsGMg.crl (hash: oVhYyPPakjg0V5t9APAYMOvQjHZht64Cw9OW+s5IgwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lcGSBnFsXHnTW_FZJNszI6TsGMg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:ea:ed:c6:24:c2:ae:28:e9:00:81:05:62:fb:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95c19206716c5c79d35bf15924db3323a4ec18c8
Validity
Not Before: Sep 7 04:01:19 2025 GMT
Not After : Sep 8 04:01:19 2025 GMT
Subject: CN=d0ad7fbc22ee4b0d503f39e3f81e73e85d35e53c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:34:2f:6f:c7:e5:ff:76:2d:99:5d:86:23:aa:
af:24:23:a4:91:cb:53:2c:4f:76:d5:86:a2:72:99:
d9:a2:da:90:7d:5f:f8:56:53:b4:dd:c4:db:55:96:
c0:95:85:05:5f:ea:92:63:e8:4c:0d:c5:c8:58:06:
d6:cb:c3:73:c1:d4:d0:a9:7e:9e:5d:66:5b:6a:2c:
c4:14:6a:16:d9:55:91:55:1e:72:cf:25:b3:19:ee:
18:95:ce:24:97:6a:a3:80:23:56:bb:c8:d9:d1:b4:
c9:d4:49:74:42:9c:e0:e0:83:51:f7:e4:67:37:a2:
fd:96:0d:cc:84:b5:bd:24:f4:6b:26:e4:77:9d:3f:
6f:09:e0:d1:ba:56:be:3e:9c:1d:e3:65:1b:d4:c4:
62:b0:0e:30:cd:cb:35:4b:0c:28:e6:fa:c9:c5:94:
35:0d:85:18:a4:dc:b4:15:20:8c:0e:c3:6d:16:f7:
5e:66:cd:95:8f:d1:22:ce:e0:80:ff:f5:a2:a7:d9:
75:2e:33:40:3f:10:7b:f2:dc:b5:79:3d:7d:5b:b5:
72:16:94:88:e1:fe:43:cb:19:36:f8:aa:48:29:d9:
90:89:d8:9b:cd:df:53:af:f5:2f:26:d9:aa:1e:d6:
69:0e:8e:7b:fd:6c:4d:9a:e6:bd:0f:4c:5a:fc:2e:
82:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:AD:7F:BC:22:EE:4B:0D:50:3F:39:E3:F8:1E:73:E8:5D:35:E5:3C
X509v3 Authority Key Identifier:
keyid:95:C1:92:06:71:6C:5C:79:D3:5B:F1:59:24:DB:33:23:A4:EC:18:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lcGSBnFsXHnTW_FZJNszI6TsGMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:01:2c:74:c6:de:72:be:af:37:8f:a9:62:ad:23:4c:c2:d8:
12:99:9d:c8:88:e7:2e:18:7f:28:9e:67:5c:ec:92:4e:26:88:
d0:bf:ad:86:46:c3:d8:0e:69:33:3d:94:70:9a:c5:1d:7c:3b:
a2:4c:ea:a6:c2:6f:dd:52:f5:4d:df:18:a8:0b:b5:aa:73:d7:
b0:49:f5:80:db:d1:e0:fe:7d:60:e7:af:9c:3d:43:d4:2d:9f:
60:7a:de:40:d2:0a:17:25:3a:cd:69:01:bf:9b:c5:81:3f:76:
7a:69:14:00:d1:2e:02:a0:02:1f:a8:ac:eb:bf:f2:a2:04:19:
21:e9:83:38:63:61:ed:c6:eb:0b:45:cf:e3:69:05:db:e4:46:
88:d9:fa:d2:e5:5b:63:13:5d:d1:11:02:31:42:9e:04:33:75:
46:ff:f2:73:57:22:ec:71:ea:c2:0b:93:e8:f1:79:ef:01:c8:
04:fa:c0:fe:b0:f1:b3:d8:0e:72:23:09:2f:b3:66:fc:37:85:
17:0c:9f:7a:ee:09:17:b5:93:56:b0:91:6a:de:c9:3e:81:ff:
2f:4c:96:21:0d:42:88:16:3e:4d:50:22:76:c2:7a:03:40:cf:
83:cc:4b:50:b6:49:94:74:ed:d1:e5:0e:e2:aa:07:5b:47:a6:
cb:f8:84:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:59:48 2025 by rpki-client