Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
File: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft (raw, json)
Hash identifier: OCGdWE9p6Rho3vXVdEXceWWZxxL4PGuQfDDwE3VBpRQ=
Subject key identifier: EE:68:33:79:1E:BE:6C:62:30:6F:9A:F9:A5:75:E4:12:1B:F9:90:21
Authority key identifier: 94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8
Certificate issuer: /CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8
Certificate serial: 01976E87368B8BAD4EB17E0DA04C3E3AF548
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 13:00:44 +0000
Manifest this update: Sat 14 Jun 2025 13:00:44 +0000
Manifest next update: Sun 15 Jun 2025 13:00:44 +0000
Files and hashes: 1: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl (hash: DZ6f4/S10mjYuFFhfhjPp3MLTJiEbSt4t6HH+AIcYJc=)
2: q0ApgfDR6MUFo5SmPdczTTS0Xsc.roa (hash: scfCeq11ilCac8clsFq/zmbEUDIqGanHD8OiJk8YEiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:36:8b:8b:ad:4e:b1:7e:0d:a0:4c:3e:3a:f5:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8
Validity
Not Before: Jun 14 13:00:44 2025 GMT
Not After : Jun 15 13:00:44 2025 GMT
Subject: CN=ee6833791ebe6c62306f9af9a575e4121bf99021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f7:d7:1c:bf:58:ce:a5:4e:ef:a0:74:a6:ae:
6f:eb:3d:af:87:20:eb:e5:01:30:80:eb:d1:68:0f:
6e:d0:ee:75:ae:fa:ad:0f:e2:70:58:ff:9a:9e:d5:
32:76:e4:11:07:fa:f1:61:08:82:60:8d:20:8e:c1:
a1:91:f3:74:b0:cf:df:d2:cb:fc:65:f9:80:2c:44:
42:bb:b5:59:e0:c6:d9:53:cb:0e:0c:b3:95:97:23:
cf:1d:c7:56:46:8e:14:5f:d1:41:85:99:83:c9:b6:
0b:f9:97:a6:ba:4e:8d:96:3f:87:fe:24:f0:b9:71:
83:dc:11:33:91:2b:ef:fb:48:5f:70:c4:73:64:69:
d2:42:2c:74:8e:b5:89:0d:71:cb:5c:8d:db:94:83:
b8:a2:04:1e:b8:38:1c:1b:c7:26:9b:42:6b:14:9c:
2f:02:f4:6f:68:b7:f5:66:97:c9:46:c1:71:ce:ce:
ad:ec:e9:de:c6:c5:08:19:0f:99:49:81:be:4d:bb:
2d:1e:1c:f1:47:bb:96:d3:18:4e:7a:f1:99:79:5e:
c9:bf:59:b0:13:f6:54:b7:e6:db:ad:a3:ca:31:92:
b8:34:d0:e1:f8:33:11:54:f8:20:80:f0:30:17:14:
3f:18:de:ce:f4:61:36:57:09:fc:11:37:8f:b4:0f:
07:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:68:33:79:1E:BE:6C:62:30:6F:9A:F9:A5:75:E4:12:1B:F9:90:21
X509v3 Authority Key Identifier:
keyid:94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:b6:77:a7:d3:83:49:dd:b7:02:22:9d:07:8d:ce:04:cb:7a:
60:11:14:a0:ba:33:f0:7d:1a:8b:c8:df:81:c2:32:5f:fd:8c:
58:17:9b:2e:ed:90:16:ea:2a:f5:05:32:4d:00:13:72:50:0e:
99:25:1b:44:00:d4:96:67:aa:21:33:4f:83:5a:10:78:f6:e8:
4f:e2:ee:b1:53:cd:1f:7e:3f:5f:c0:fe:c9:a7:c9:89:47:26:
83:d9:7b:35:bb:4a:a1:24:ef:34:28:35:b4:51:cc:b2:92:e2:
c9:8b:b6:4b:f7:46:ac:b7:3a:65:09:ed:46:d9:62:2b:45:0c:
da:74:a7:0f:fa:33:51:e8:14:d0:19:68:ec:46:8b:7b:58:e0:
37:5e:91:ff:2b:12:7b:54:bb:a3:79:25:f8:01:31:44:39:6f:
1e:90:fe:23:12:e2:c0:07:97:d8:ea:28:1d:10:9d:7d:8c:c9:
c6:e9:1a:57:19:18:aa:7c:11:df:bd:f0:a8:c2:27:48:35:b8:
9b:2c:4a:d4:67:26:07:6d:67:6d:4d:7b:ca:f8:39:97:6d:e6:
cd:37:0e:f8:aa:31:27:67:3c:f4:f7:de:cd:25:e4:32:6d:53:
e9:4c:a8:81:52:c6:54:34:7e:41:1b:2f:38:0f:96:1a:42:1a:
26:8a:88:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:51:26 2025 by rpki-client