Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
File: lsgslDmkFHsuorWXz_xRALqNMnw.mft (raw, json)
Hash identifier: g+HM52xFezWQanXRpiqqbsA3nVe4SnKChwKqFEeSGoY=
Subject key identifier: 2D:6C:30:BF:72:5A:3E:3A:DD:D8:C4:FD:02:65:6E:53:70:33:06:26
Authority key identifier: 96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C
Certificate issuer: /CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
Certificate serial: 019A71B82A4FBE8DC572C973A8A72116C32D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
Manifest number: 12DF
Signing time: Tue 11 Nov 2025 07:01:26 +0000
Manifest this update: Tue 11 Nov 2025 07:01:26 +0000
Manifest next update: Wed 12 Nov 2025 07:01:26 +0000
Files and hashes: 1: lsgslDmkFHsuorWXz_xRALqNMnw.crl (hash: RrRR3SnoSFlZJnSNQKCLqBaZIMFHgrsXfTdSBhjKRjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:2a:4f:be:8d:c5:72:c9:73:a8:a7:21:16:c3:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
Validity
Not Before: Nov 11 07:01:26 2025 GMT
Not After : Nov 12 07:01:26 2025 GMT
Subject: CN=2d6c30bf725a3e3addd8c4fd02656e5370330626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4a:35:be:0e:3d:69:97:28:94:a7:a0:59:7e:
5f:42:aa:46:5c:6c:6c:d9:6e:1c:57:d1:fa:8a:36:
9e:31:81:75:cf:65:0a:9b:17:2c:d2:4e:72:f1:e8:
2e:36:21:42:3c:3e:f4:d6:93:7d:88:f1:ba:27:9e:
75:1a:43:10:f6:9f:39:70:2a:1d:d5:49:7d:74:8a:
8e:d7:b5:90:ac:48:2a:fd:6d:a2:48:5a:09:fe:46:
21:0e:4a:2c:ad:ea:18:13:54:87:87:4a:62:35:9f:
b3:cd:f7:aa:b0:38:6c:8e:b3:f6:9c:37:f5:da:79:
2f:1f:42:66:e0:79:7a:44:fb:6f:1b:f2:9f:8c:fa:
6f:af:67:26:37:21:d6:c2:16:f5:34:e1:5c:77:59:
2d:83:0f:49:31:b3:15:d8:07:b9:ea:42:71:e2:9f:
e7:34:1d:3f:14:86:f3:6c:80:0d:55:16:f3:1a:e6:
c0:e4:83:64:78:85:c9:10:cd:ee:b2:74:ce:48:f9:
98:ac:db:f9:ee:8d:ce:6a:d2:0b:41:ac:6e:95:99:
94:c2:88:8a:fb:4e:f7:95:a7:0b:85:05:75:e5:81:
5a:a9:f8:41:38:f5:a9:1e:0b:85:17:8d:14:c6:ba:
cd:f5:6e:6e:b1:de:fc:2a:46:f3:ee:8d:61:6e:43:
7a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:6C:30:BF:72:5A:3E:3A:DD:D8:C4:FD:02:65:6E:53:70:33:06:26
X509v3 Authority Key Identifier:
keyid:96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:e9:97:02:b0:58:89:56:40:c5:ad:70:88:74:cd:a2:74:8e:
43:27:a2:b9:ca:2c:b9:fc:36:65:af:72:66:71:80:60:0b:c3:
e8:07:dc:ed:85:d8:ed:1d:b9:ec:a1:f8:5b:e4:08:8d:a7:22:
52:bb:43:7d:63:b8:81:a5:67:23:97:8d:53:c3:5d:23:6e:ab:
e2:e7:2d:a3:85:2b:45:e9:df:98:ee:d2:3e:94:f2:50:18:1b:
04:fc:2e:f5:32:35:26:f9:b9:1c:0d:bd:a1:be:2b:a0:ea:0d:
4e:be:36:8d:3f:65:46:6f:87:13:6b:89:3c:bf:dc:82:6b:e0:
0b:62:9c:8e:21:8f:dc:7a:b9:b8:0d:de:56:11:a4:22:8c:cb:
e1:ba:79:72:7e:d5:16:f7:a6:88:15:1a:28:a4:88:7d:55:97:
c0:ff:25:ca:ef:70:b7:2f:1d:be:fd:76:ec:3e:0a:c5:23:cc:
7e:5f:ee:9c:54:8b:20:dc:15:88:41:bd:d7:50:eb:82:50:18:
93:95:15:e4:a8:25:a2:be:93:a1:c6:d3:43:34:73:10:63:c1:
52:da:2d:e9:ae:e1:2f:bc:df:94:c0:ff:37:0d:a8:bf:00:d0:
49:28:c8:2c:cd:b2:63:69:0e:c0:e4:b1:89:31:43:29:c0:c5:
97:f0:82:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:06 2025 by rpki-client