Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
File: lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft (raw, json)
Hash identifier: s9gABKrrFxan0Txpi6VoqUBqR24vSekZjA2/P3bYHeg=
Subject key identifier: 20:31:92:A5:36:7E:7C:30:BC:D9:D5:10:A6:FD:68:D7:92:6B:AA:14
Authority key identifier: 94:F8:BF:9F:30:55:27:52:15:08:69:7E:2E:AA:3B:E1:C7:A1:84:54
Certificate issuer: /CN=94f8bf9f305527521508697e2eaa3be1c7a18454
Certificate serial: 0198812FB1AC71C130758D76BE75D5DC1884
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
Manifest number: A7
Signing time: Wed 06 Aug 2025 21:00:43 +0000
Manifest this update: Wed 06 Aug 2025 21:00:43 +0000
Manifest next update: Thu 07 Aug 2025 21:00:43 +0000
Files and hashes: 1: lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl (hash: GayTYDrIOAjriAOBiAtUQtlFiQEhtWoimyD8Gbr1VDI=)
2: tVL_ENrKSssGhUZdoVpEaqnYAmo.roa (hash: scu79Aiv4+leHmZHVUYIuN/rg63h5ustfxBunlMeXj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:2f:b1:ac:71:c1:30:75:8d:76:be:75:d5:dc:18:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94f8bf9f305527521508697e2eaa3be1c7a18454
Validity
Not Before: Aug 6 21:00:43 2025 GMT
Not After : Aug 7 21:00:43 2025 GMT
Subject: CN=203192a5367e7c30bcd9d510a6fd68d7926baa14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:28:52:22:de:aa:61:31:96:71:bb:c7:12:55:
ce:71:b5:91:7d:8b:24:a2:36:32:c0:8f:e4:d5:3f:
0e:f7:d5:c2:20:8c:e3:6f:b2:79:25:2b:d2:76:74:
7b:60:c2:5c:4f:73:e1:9a:47:ec:81:d4:57:2a:06:
0e:1f:95:f9:53:3f:7f:49:f7:8f:ab:5b:ed:32:95:
1f:1b:4d:4c:33:6f:ba:10:7e:62:45:df:a4:3b:87:
b8:fa:6f:4c:4a:a2:4c:11:8e:4b:8f:86:1b:f7:40:
f6:9e:c9:ae:ca:d3:fb:ee:6b:ef:0c:aa:fb:3d:e0:
13:eb:a3:89:ee:2e:28:62:cd:13:6f:f6:05:fe:ae:
fc:53:10:3d:77:fb:bd:46:a2:bc:8d:7a:89:77:78:
85:57:1d:25:c3:02:e5:45:01:17:a2:49:7a:92:63:
9b:a5:27:ac:71:26:e9:69:2c:9d:00:4f:06:2f:39:
fd:ea:63:47:54:06:c6:a5:2b:3b:3f:09:98:e2:4d:
be:b3:2a:52:ec:b1:3c:c9:0c:d0:0f:9d:34:11:77:
75:d9:8c:dc:5f:65:59:3a:e3:33:25:35:89:ad:5d:
ae:9a:8d:4b:fc:cf:c1:50:6c:ab:3e:3d:5a:18:ae:
a1:31:6e:a7:e0:a8:36:e4:4b:4e:23:64:fa:2b:96:
df:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:31:92:A5:36:7E:7C:30:BC:D9:D5:10:A6:FD:68:D7:92:6B:AA:14
X509v3 Authority Key Identifier:
keyid:94:F8:BF:9F:30:55:27:52:15:08:69:7E:2E:AA:3B:E1:C7:A1:84:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:c5:fc:66:61:89:1e:08:23:dc:62:5e:7a:3d:7a:4e:1f:e9:
c4:e6:33:b8:08:b3:7f:54:65:93:c4:e2:b6:4b:ac:08:6f:d2:
7d:b4:16:d9:99:b7:64:a1:e8:b0:be:2f:a8:69:99:fe:e0:24:
29:8a:ff:6d:83:6d:eb:6d:70:2b:24:ca:64:c1:a1:af:c0:4f:
82:80:a1:30:30:54:d7:cc:9a:6b:54:59:06:27:e0:2d:2a:ea:
d9:a1:3c:5b:37:5c:17:d6:ab:69:49:f7:e2:f5:e4:ee:b9:4f:
13:fc:a5:b8:d9:bb:d7:51:85:44:ac:5c:e0:ec:09:b7:be:8a:
7b:d0:d9:63:1f:33:55:cd:b6:79:e7:8d:0a:fe:58:b8:b9:6a:
78:73:87:ae:05:27:31:62:be:d1:09:46:ed:f0:9d:f4:53:fd:
7d:4e:b2:aa:67:ca:57:73:b4:1c:0f:15:74:b4:4e:ae:b4:be:
1d:ce:35:47:7b:9c:8c:d1:ac:d9:7f:4e:13:b4:b5:b5:f3:33:
91:62:55:d8:18:d1:95:52:80:cf:30:0c:9e:dd:56:87:78:d5:
fb:53:de:ba:b6:3f:db:93:3e:88:bb:b3:e3:12:66:d0:bf:95:
c9:9b:95:46:de:9b:fd:20:a0:99:58:d7:5f:15:8b:4a:f7:99:
e5:af:ca:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:09:13 2025 by rpki-client