Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
File: lkptHqRrxAuqMavE9ByQZn7-Nu0.mft (raw, json)
Hash identifier: S0syKzaWBwvKW+EznRvwxDEeN6jOfPFIi+VYzNyB+80=
Subject key identifier: F6:A7:23:1F:81:D0:E0:08:E1:38:79:4B:F8:7B:ED:AB:3E:C3:99:6C
Authority key identifier: 96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
Certificate issuer: /CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Certificate serial: 01976D3D72806F0C54418CC957B5A18C569C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
Manifest number: 065B
Signing time: Sat 14 Jun 2025 07:00:32 +0000
Manifest this update: Sat 14 Jun 2025 07:00:32 +0000
Manifest next update: Sun 15 Jun 2025 07:00:32 +0000
Files and hashes: 1: lkptHqRrxAuqMavE9ByQZn7-Nu0.crl (hash: JTIvx1vPIaX7NuZYc59bepmp78nTGFyeSW+5MoCNzSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:72:80:6f:0c:54:41:8c:c9:57:b5:a1:8c:56:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Validity
Not Before: Jun 14 07:00:32 2025 GMT
Not After : Jun 15 07:00:32 2025 GMT
Subject: CN=f6a7231f81d0e008e138794bf87bedab3ec3996c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8e:c4:7f:de:0b:ad:38:b7:8b:06:cd:5c:9f:
a4:43:7c:fe:96:74:fc:d3:51:3d:49:ef:7f:91:2d:
9c:6a:b9:4d:88:08:97:f4:bf:20:7b:8b:35:cd:5f:
06:2e:ab:5d:b8:94:55:e5:f3:d0:ba:45:42:a5:35:
8b:34:31:26:d3:fb:4c:c8:0c:a4:6f:90:ae:41:9f:
7d:50:ee:ee:28:88:ad:de:c4:31:78:24:98:c6:a7:
4d:f8:76:2f:33:02:fc:90:2d:6a:cb:9f:88:ab:c8:
d5:3e:6d:b4:90:ac:bc:e6:bf:5e:b1:22:2c:5e:c0:
3a:97:0f:46:e0:2e:2c:6c:4c:c3:be:80:00:b2:45:
b6:63:bc:4b:30:37:41:8f:ee:46:6e:0c:c7:98:24:
f5:b1:da:97:42:1e:cb:c5:87:ae:53:27:46:38:90:
24:fc:95:c5:c3:ee:9b:85:a4:c6:b9:8a:80:45:8b:
b8:ba:de:5a:53:e9:5f:5c:66:0c:2c:fc:1b:18:0e:
17:11:91:e6:13:d8:fb:c2:3f:38:fb:d5:93:10:7d:
cb:d9:84:4e:e9:e5:b0:15:29:9c:8b:20:71:18:1c:
6a:68:7b:19:91:35:43:fb:95:19:aa:5e:59:1f:d6:
09:44:a8:f3:9f:c2:3d:2d:24:2a:83:cf:eb:f8:5a:
3d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A7:23:1F:81:D0:E0:08:E1:38:79:4B:F8:7B:ED:AB:3E:C3:99:6C
X509v3 Authority Key Identifier:
keyid:96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:99:29:e2:8f:ec:a2:fc:20:b3:38:ab:f5:ec:dc:02:50:55:
c8:7c:82:aa:4b:6c:7f:2a:ff:cc:b5:31:0f:e5:be:2c:d3:35:
db:db:9a:9a:35:4e:ea:b2:80:2f:aa:1c:ea:f4:a6:1b:fe:08:
c1:84:b6:7f:4b:09:ee:01:93:1e:cf:9a:8d:75:72:46:a3:1e:
e4:6a:8e:f0:b1:11:c5:2d:cd:fd:fb:4f:9c:2f:88:6e:60:cb:
fd:fc:16:5f:17:54:4c:db:cc:f1:2e:8a:7b:a8:50:5f:11:58:
9c:db:26:da:a3:06:78:82:21:4b:96:82:0b:b5:5b:b1:61:8f:
5d:51:d3:d2:7c:55:9e:7e:00:d0:2a:8c:8d:be:d5:27:56:0d:
96:f9:38:6b:17:2f:46:e3:fd:90:26:52:d6:bc:67:b4:63:3b:
0d:da:bc:14:3d:3b:b1:40:d3:63:6e:3c:8f:3e:9d:c2:93:2e:
57:1b:2f:43:92:2d:87:9f:d9:5f:97:d6:3a:89:bd:77:3e:4d:
69:65:78:80:dc:a8:13:18:9f:6b:b2:ee:82:30:89:55:f3:d2:
a9:d3:bd:ec:c0:08:d2:0f:b0:f7:45:fe:86:a4:84:14:9e:8a:
1f:a3:cc:f3:ab:dd:18:a0:d5:cf:11:6c:60:5c:54:27:1a:14:
3c:5e:d0:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:17:16 2025 by rpki-client