Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
File: _lNCbiNhumZdjyW9PPrvwg69pIg.mft (raw, json)
Hash identifier: Rb2MkHXUEr0k9RsAQRkXPPQ3m1dA0GXBnHXh2nOCesM=
Subject key identifier: 02:1A:95:E3:10:D3:6D:BC:C7:73:DE:E2:85:60:9E:6B:7D:D8:DB:85
Authority key identifier: FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
Certificate issuer: /CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Certificate serial: 01976CCF76C81E6F0EB4D184411A7651EC1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
Manifest number: 12A1
Signing time: Sat 14 Jun 2025 05:00:25 +0000
Manifest this update: Sat 14 Jun 2025 05:00:25 +0000
Manifest next update: Sun 15 Jun 2025 05:00:25 +0000
Files and hashes: 1: _lNCbiNhumZdjyW9PPrvwg69pIg.crl (hash: i53uKNSs6ocu9sYGdp1DFzbYhIAw90zPNbAlSGdSIz0=)
2: haHKJrHUqbm5DebtyDYhDiGIt7A.roa (hash: Cz3j+Dv+gBqpFYF7WEnyvYZy+IRYW0vriwmXpF2DtvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:76:c8:1e:6f:0e:b4:d1:84:41:1a:76:51:ec:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Validity
Not Before: Jun 14 05:00:25 2025 GMT
Not After : Jun 15 05:00:25 2025 GMT
Subject: CN=021a95e310d36dbcc773dee285609e6b7dd8db85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f6:62:44:b1:0f:5a:1c:ea:ce:dc:4b:ca:64:
50:1b:eb:6b:77:f5:b5:6b:d6:1b:38:6d:61:d4:ac:
9e:6c:dd:9e:60:da:70:07:04:86:8a:86:7b:66:41:
2e:19:04:e5:31:3b:b3:a6:a9:78:ab:ab:41:23:8e:
d4:a0:8c:9f:6b:26:19:25:55:0b:05:54:3b:ba:a4:
e9:d9:da:59:2b:04:44:4a:a5:6f:e0:d0:0d:7f:db:
ab:3f:a7:bd:58:4f:d9:b7:64:e3:c5:d3:1f:55:7c:
0a:0e:31:e4:cd:b0:77:80:3b:8c:46:00:22:d4:5d:
77:cc:60:58:44:22:bd:46:4a:85:46:2e:d0:11:6f:
eb:3f:41:d3:9a:ed:df:01:6d:bb:aa:29:57:d8:af:
22:f9:4e:68:cb:6d:5e:d8:78:15:d2:07:30:95:c8:
3c:9a:e6:2e:dd:55:88:88:f4:fe:bb:f3:bf:19:2d:
b8:ae:92:15:49:61:b1:00:69:06:a6:a5:29:94:75:
1c:af:37:94:6a:25:56:70:c8:4b:7b:33:51:73:a7:
34:f8:d5:10:b9:14:5c:7c:33:2e:7d:0f:db:64:ca:
28:a2:2d:a1:40:02:37:b5:34:fc:6f:bf:6a:74:89:
5c:8c:17:27:cc:93:bf:5c:63:95:6f:78:25:7d:dc:
45:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:1A:95:E3:10:D3:6D:BC:C7:73:DE:E2:85:60:9E:6B:7D:D8:DB:85
X509v3 Authority Key Identifier:
keyid:FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:6f:cd:63:16:3a:cf:1f:04:89:1b:70:4d:1e:56:9c:7b:25:
ae:a3:ef:2e:1c:66:23:80:62:58:a5:fa:b2:d4:31:15:f8:8c:
3e:f8:41:6f:f6:5c:62:e5:30:7b:7b:ac:e9:75:c5:5d:24:2a:
bb:9d:e2:33:35:a3:5e:fd:96:19:b9:0d:b3:c1:a4:b1:b5:cc:
3e:9b:67:97:ec:a8:2f:fc:19:cf:0c:94:40:a7:fc:ad:fb:97:
58:0d:5c:62:35:8c:82:14:3b:16:87:e0:83:04:0f:c5:4d:2b:
b1:fb:2f:d8:ae:c9:51:a7:d4:3e:2e:fc:8a:12:f6:32:ac:8c:
33:e8:7a:53:01:91:63:62:7d:80:75:f5:e0:f5:03:ba:5a:91:
47:9e:02:64:94:ec:ec:af:3a:b5:c7:e4:12:ca:17:06:59:35:
f4:3e:0e:a9:df:79:c3:97:f8:1e:bb:f7:22:e7:b8:72:52:e3:
96:ce:51:ad:8b:cb:e1:35:e8:18:43:fe:5c:a0:5b:67:96:f3:
d0:27:b7:f5:2f:d1:b8:e5:26:4f:92:ee:ab:09:bb:91:c5:36:
27:5d:46:15:3d:5c:73:4e:03:58:61:54:5f:52:2c:e1:ac:93:
df:c3:ab:c8:4c:ce:79:7d:41:47:ba:65:4f:cc:ec:4c:b7:15:
3d:a8:4a:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:19:17 2025 by rpki-client