Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
File: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft (raw, json)
Hash identifier: sPw2w96tea3gIMYUSxai49BIwFHNefFnIwmp2xMVqig=
Subject key identifier: E6:1B:67:A5:90:47:9D:00:0F:17:43:84:4D:59:81:A9:6E:33:C7:D5
Authority key identifier: 94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
Certificate issuer: /CN=94d161593da815cac58d3479652d048480d26713
Certificate serial: 01976C2ACE7D96D3DE78678C46D45DD0DC67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 02:00:34 +0000
Manifest this update: Sat 14 Jun 2025 02:00:34 +0000
Manifest next update: Sun 15 Jun 2025 02:00:34 +0000
Files and hashes: 1: bdAF9viIHB5V5FhTALS-owQhcks.roa (hash: lPv9YsuyVHwxqfP/RRJpZeMDZjwRG/d34AhteS5V7Ew=)
2: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl (hash: G2r2sytr9+FnxyIx7KyGgg2/OLhXLuy6UG3cQPAWIkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:ce:7d:96:d3:de:78:67:8c:46:d4:5d:d0:dc:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d161593da815cac58d3479652d048480d26713
Validity
Not Before: Jun 14 02:00:34 2025 GMT
Not After : Jun 15 02:00:34 2025 GMT
Subject: CN=e61b67a590479d000f1743844d5981a96e33c7d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bc:90:25:96:e1:7d:4e:0d:41:81:f8:f1:13:
b5:7b:59:d7:1d:09:77:fa:06:80:12:cd:a5:86:e8:
8c:91:90:f8:a2:e7:16:41:3a:8c:9f:1f:72:44:3e:
ef:51:71:e0:36:9e:d1:11:f7:6f:f2:04:47:66:01:
a4:69:e5:00:35:8d:be:38:b7:89:98:9f:5c:0c:9a:
db:20:aa:57:5b:f2:23:07:a3:51:6b:e5:73:b7:66:
ff:14:cc:e2:52:5c:07:51:87:91:96:b3:4a:d5:2d:
dd:eb:fb:3c:dd:3f:28:34:61:98:e9:52:1e:9e:b6:
b9:ae:3d:aa:ce:7f:a0:b6:8e:55:d4:60:0b:b4:b1:
15:63:48:fd:e5:d3:d2:d8:ec:5b:b4:1f:65:a7:ab:
9e:3c:e1:62:35:e3:55:7b:23:d7:4f:cc:a7:df:69:
6a:db:e7:b3:95:81:c5:43:ae:20:41:21:c5:5b:fd:
90:26:44:0e:41:c0:4b:51:37:1a:a7:4e:1e:ec:a4:
d2:74:2c:33:f9:f1:40:cd:13:39:d8:07:75:a8:6f:
d1:4c:99:bf:f3:1d:00:7f:99:3b:24:cd:e8:ed:e8:
fe:ff:21:70:00:2b:08:d2:0e:9b:cb:4d:81:ea:24:
c9:cb:4b:8a:b3:7c:55:3e:e8:5a:63:3e:c2:33:76:
79:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:1B:67:A5:90:47:9D:00:0F:17:43:84:4D:59:81:A9:6E:33:C7:D5
X509v3 Authority Key Identifier:
keyid:94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:e7:e3:cf:5b:fe:3e:6d:5e:2e:6b:90:3f:3f:fe:d1:19:68:
05:e1:20:68:77:48:e6:14:d9:2e:e6:52:a5:7b:3c:43:29:6d:
24:15:8e:f9:f0:92:61:e3:26:c1:cc:c1:5d:6c:50:e3:8f:92:
ce:30:05:0c:ee:07:da:81:df:f0:c8:01:a5:8b:13:35:74:36:
97:18:de:f8:21:b9:e2:d7:69:45:55:04:07:8b:d6:06:de:34:
64:eb:3c:e3:6e:4a:a3:0e:7d:ed:bd:1f:a1:b6:15:20:9e:ee:
e5:42:ee:78:ee:98:c8:f5:ba:45:9b:63:d4:61:87:6a:22:f5:
32:0a:ba:be:f6:45:64:c1:04:97:f2:7d:64:24:da:b9:34:3c:
ba:aa:f1:b6:a3:c9:72:17:77:6d:a0:c3:c5:5e:f9:e6:55:76:
d7:5d:ca:73:e5:a7:bd:e9:9d:e9:ec:92:8e:91:79:6b:2d:70:
56:e4:82:85:d5:7a:73:46:5c:61:06:e4:24:22:d2:51:e3:f5:
7c:e4:8a:b7:f8:8e:9a:24:d1:d2:26:ae:eb:78:d3:25:74:08:
8e:ee:37:43:c2:b0:2c:e0:fb:cd:b3:92:13:6b:14:f8:04:98:
93:a8:cf:bc:5b:ed:5d:0d:b6:80:e6:19:c5:06:6f:78:e8:25:
1c:38:81:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:24:09 2025 by rpki-client