Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d05895-d98b-4d6c-af87-172f66b0933c/1/SEpnLpkiPCcMFLXib_82qLzOTPI.mft
File: SEpnLpkiPCcMFLXib_82qLzOTPI.mft (raw, json)
Hash identifier: sStf23e+Fjmg3HcHyMOm7lsJ9ZvnlCKXW46rO6Owdo4=
Subject key identifier: 5F:4E:71:B1:64:71:BC:B9:76:70:89:57:AD:F5:F8:F0:35:B5:41:57
Authority key identifier: 48:4A:67:2E:99:22:3C:27:0C:14:B5:E2:6F:FF:36:A8:BC:CE:4C:F2
Certificate issuer: /CN=484a672e99223c270c14b5e26fff36a8bcce4cf2
Certificate serial: 01976C2B57FB51BF83C4CF45BB81CD26A4F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SEpnLpkiPCcMFLXib_82qLzOTPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d05895-d98b-4d6c-af87-172f66b0933c/1/SEpnLpkiPCcMFLXib_82qLzOTPI.mft
Manifest number: 158C
Signing time: Sat 14 Jun 2025 02:01:09 +0000
Manifest this update: Sat 14 Jun 2025 02:01:09 +0000
Manifest next update: Sun 15 Jun 2025 02:01:09 +0000
Files and hashes: 1: SEpnLpkiPCcMFLXib_82qLzOTPI.crl (hash: auTf8vtfvz1QluCRBC7CyPxgQBAMSlAFcy2OCP3yDbM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d05895-d98b-4d6c-af87-172f66b0933c/1/SEpnLpkiPCcMFLXib_82qLzOTPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d05895-d98b-4d6c-af87-172f66b0933c/1/SEpnLpkiPCcMFLXib_82qLzOTPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SEpnLpkiPCcMFLXib_82qLzOTPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:57:fb:51:bf:83:c4:cf:45:bb:81:cd:26:a4:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=484a672e99223c270c14b5e26fff36a8bcce4cf2
Validity
Not Before: Jun 14 02:01:09 2025 GMT
Not After : Jun 15 02:01:09 2025 GMT
Subject: CN=5f4e71b16471bcb976708957adf5f8f035b54157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e3:f8:81:fa:b4:cc:96:ea:65:05:6e:33:6c:
a5:9f:01:ed:11:4a:f6:bc:42:e2:4b:2a:ba:27:2a:
12:1b:6f:3f:7c:87:1c:7a:07:b8:08:30:1f:31:d4:
ff:4b:e0:04:3c:15:ee:a6:5c:a3:f7:c6:16:71:c3:
f1:50:ed:0f:3d:65:ce:26:28:74:01:db:00:f8:fb:
09:4d:2c:12:02:35:8a:a8:68:8b:0c:2e:68:e4:51:
b1:b3:25:ac:96:03:89:3a:d7:92:5a:7a:67:a7:33:
4d:e1:cc:1f:cb:c4:31:06:c9:7f:14:27:2e:53:ae:
66:53:2e:d2:0a:d1:d2:b3:62:29:44:e3:03:4f:2d:
b5:db:28:ee:62:1e:cc:70:9f:10:3f:3a:04:58:0c:
26:51:63:4f:49:eb:b5:f5:79:7a:a9:7f:5e:9f:d2:
84:ef:9f:5c:c4:77:1e:0c:6c:2f:b6:b1:f7:22:6c:
8e:40:08:cd:23:3e:c9:a7:d3:e3:8c:3c:39:fd:73:
e6:8c:0b:bd:98:98:8c:f9:1f:8d:31:68:be:f8:10:
e4:4d:3a:b0:d0:46:d7:d9:65:14:45:7b:e6:10:4c:
f2:24:ef:d1:05:9a:de:9a:cd:52:e8:62:18:f3:42:
72:99:ff:dd:e2:01:be:12:87:f1:6f:41:9d:40:f0:
94:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:4E:71:B1:64:71:BC:B9:76:70:89:57:AD:F5:F8:F0:35:B5:41:57
X509v3 Authority Key Identifier:
keyid:48:4A:67:2E:99:22:3C:27:0C:14:B5:E2:6F:FF:36:A8:BC:CE:4C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SEpnLpkiPCcMFLXib_82qLzOTPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d05895-d98b-4d6c-af87-172f66b0933c/1/SEpnLpkiPCcMFLXib_82qLzOTPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d05895-d98b-4d6c-af87-172f66b0933c/1/SEpnLpkiPCcMFLXib_82qLzOTPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:28:dc:03:de:6a:f7:1f:0e:6a:45:5b:5a:91:4e:69:e8:81:
ee:de:e6:e4:7f:20:e9:b9:f5:b3:50:52:33:af:96:ae:eb:30:
61:2f:8c:7b:fd:f5:10:7e:12:d1:b7:e6:b1:14:17:e0:a8:23:
6c:3e:e7:3c:8f:94:06:9d:65:7e:22:08:b9:69:d6:fe:10:0d:
d2:5c:9a:0e:2c:95:f6:8c:6b:a7:17:7c:2e:ed:12:60:00:88:
06:de:cd:86:84:92:47:75:fc:55:a1:44:d2:7f:03:07:f0:3b:
fa:6e:ba:08:35:aa:53:b5:e7:6b:3c:11:f0:fa:84:20:ef:d5:
83:80:e5:db:7b:87:37:d6:36:ef:d3:fd:2d:dc:48:e9:fe:3d:
d3:c0:2b:a8:d2:b4:82:6d:5c:15:c9:30:95:3e:88:88:f8:04:
1e:07:e6:82:b3:21:2a:c7:b4:b3:ee:3d:06:07:ac:54:c8:2a:
4f:bc:14:93:44:d5:11:d9:5c:dc:8d:ed:7b:a9:c6:f9:22:63:
0b:0b:d3:00:a7:39:cd:fc:d8:91:47:c9:f8:17:73:67:27:8e:
d4:74:d5:3b:ee:90:72:86:8e:c9:3b:dd:45:fa:ac:31:0c:bb:
4a:f4:06:70:76:14:ab:b4:aa:2f:42:03:7b:be:7a:56:6f:db:
34:f8:91:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:09:53 2025 by rpki-client