Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
File: LrlwnvMbddaOIgiqvyosPD2Hb8E.mft (raw, json)
Hash identifier: soZ69/pSWYM4MhIwmV23Kk/gSQsfBnRaq7COo5lOtJM=
Subject key identifier: F0:BD:C4:0E:74:65:89:73:6E:51:33:DA:66:50:AC:33:E5:1D:BD:3B
Authority key identifier: 2E:B9:70:9E:F3:1B:75:D6:8E:22:08:AA:BF:2A:2C:3C:3D:87:6F:C1
Certificate issuer: /CN=2eb9709ef31b75d68e2208aabf2a2c3c3d876fc1
Certificate serial: 01976929A5BB022638E4E6FCDDF93656AFCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
Manifest number: 158A
Signing time: Fri 13 Jun 2025 12:00:26 +0000
Manifest this update: Fri 13 Jun 2025 12:00:26 +0000
Manifest next update: Sat 14 Jun 2025 12:00:26 +0000
Files and hashes: 1: LrlwnvMbddaOIgiqvyosPD2Hb8E.crl (hash: Imz53yojDAKjjUeDohMn1e4Gw7lZEfRsU9jXLmMdsWU=)
2: y4nRX2MR29nhRNB-8qKuPT5GKso.roa (hash: KPjY3F6wNY99Qei7P9FnZL2mNKxujn8hAQHxPf7AHds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:a5:bb:02:26:38:e4:e6:fc:dd:f9:36:56:af:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eb9709ef31b75d68e2208aabf2a2c3c3d876fc1
Validity
Not Before: Jun 13 12:00:26 2025 GMT
Not After : Jun 14 12:00:26 2025 GMT
Subject: CN=f0bdc40e746589736e5133da6650ac33e51dbd3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0e:52:70:f3:11:fe:ae:99:4e:80:95:b8:63:
27:b0:5c:1d:35:7a:42:3c:61:89:16:5b:1a:5e:fb:
74:6a:2b:86:d1:36:b7:4c:0a:24:33:ad:67:03:fd:
ad:d4:53:2e:60:c2:df:0b:19:3c:1e:f4:84:97:62:
30:b0:1c:55:fa:fd:da:3a:b3:63:3a:f0:6e:e5:3f:
c6:a7:d5:b1:45:0c:a6:3a:85:25:bb:a0:0f:63:90:
9c:e3:60:ad:66:9a:db:90:4e:5e:87:89:3b:e2:43:
74:3f:2f:e9:81:38:09:1e:30:2c:d7:2c:ef:0e:9a:
ef:c3:f4:52:8f:9f:60:33:11:93:69:3f:ac:b9:73:
d6:68:0f:f1:a6:20:52:71:8b:62:08:c4:51:85:e6:
a3:dc:fe:0e:93:ea:0a:f6:13:3d:ef:3e:b5:72:01:
cd:3c:73:72:a1:3c:86:03:56:01:4e:d1:ba:9b:09:
8c:c4:15:11:6a:10:31:df:39:b8:09:3d:1b:80:c2:
79:74:3c:fd:c8:c6:fd:e2:4b:70:0b:be:40:39:65:
e6:e2:ca:7d:e3:85:9b:1c:3f:dc:33:09:ce:e8:d5:
8b:61:87:7e:d9:6e:f2:19:ec:82:8f:f7:40:c3:6f:
1e:5a:6e:f9:d4:25:9f:94:ae:70:8e:81:51:c2:32:
95:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:BD:C4:0E:74:65:89:73:6E:51:33:DA:66:50:AC:33:E5:1D:BD:3B
X509v3 Authority Key Identifier:
keyid:2E:B9:70:9E:F3:1B:75:D6:8E:22:08:AA:BF:2A:2C:3C:3D:87:6F:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:3c:8d:fb:cc:20:00:f7:08:b5:48:38:86:24:d9:fe:73:3e:
68:f4:8f:8c:8f:96:8a:b5:1e:28:f3:3d:5f:b3:08:2d:88:b4:
1a:5c:32:90:e9:3c:79:34:cc:e7:58:95:80:71:68:2c:13:85:
63:83:78:bf:c9:f5:ec:20:85:c4:b7:74:07:82:bb:72:ac:51:
f6:cf:1f:11:91:1b:f1:ce:6c:bd:83:0e:e3:71:65:bf:71:e8:
99:f6:8f:42:76:08:7f:46:29:28:0a:73:61:4f:4e:3e:1b:5b:
c6:7c:cd:8e:55:57:e4:02:7a:db:51:d6:51:b5:b7:ad:0d:79:
28:76:b2:7c:f1:0e:21:46:f5:23:1f:bf:96:76:b2:3c:74:c3:
51:37:d1:af:30:01:f3:e0:56:28:63:47:ae:9e:cd:56:98:01:
45:dc:8c:3c:fa:81:68:cb:32:66:33:df:dc:f0:d7:26:ca:73:
7c:d5:a5:01:c7:f4:fe:59:de:54:4c:ca:b2:64:c0:7e:ee:fa:
84:70:83:3f:11:e7:83:08:2e:6e:63:27:6e:ea:ff:2c:83:4c:
1f:7d:2e:9b:5c:ef:63:7d:db:79:56:81:6a:44:b4:76:dc:23:
5a:9e:1b:88:6a:f4:5f:58:17:fe:7b:e1:9a:79:4c:a5:84:22:
86:81:be:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:38:33 2025 by rpki-client