Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json)
Hash identifier: koCcwi2tQcL8HN/wFaZGXmaaS1DI4Xu6jEbTLWRsJt4=
Subject key identifier: 5C:90:40:1C:EE:23:F9:5B:4F:15:07:04:F1:BA:AC:E5:AE:B6:52:F6
Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Certificate serial: 019880544A527E466085114AFB329DA7DA7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
Manifest number: 0AC2
Signing time: Wed 06 Aug 2025 17:01:04 +0000
Manifest this update: Wed 06 Aug 2025 17:01:04 +0000
Manifest next update: Thu 07 Aug 2025 17:01:04 +0000
Files and hashes: 1: BlSKEWV8a0Pu0DQWSBEZ8E6j6Ig.roa (hash: E+fl2IDftOEsy56bvfa1HOBzyBMqnDbK6GEdF9F9KeI=)
2: amBacDdU6Mjk1rJegCvOmhPZCuI.roa (hash: QFuN87Ca0aIv1BOf1cf5zbuSpQPxJlnZXFNDEW5Ik9U=)
3: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: g6xLDmXXHqxM2fOKszBaQXSE9wlmfPVTHYL0qixD5O8=)
4: oQUx3CaetTGOoOfH7R_GIuQC9ZM.roa (hash: QXtVeIAnBIaJbBWzjL0HKxzProdKFi/c2re+3CNcveM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 17:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:54:4a:52:7e:46:60:85:11:4a:fb:32:9d:a7:da:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Validity
Not Before: Aug 6 17:01:04 2025 GMT
Not After : Aug 7 17:01:04 2025 GMT
Subject: CN=5c90401cee23f95b4f150704f1baace5aeb652f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:94:86:d8:c5:ff:0b:13:a4:f5:53:3b:ca:a0:
d9:97:21:57:8e:0a:d9:da:f3:32:e4:0c:c1:74:b8:
9c:5f:0f:b7:bc:82:1c:26:ff:89:96:78:86:ee:48:
02:72:d2:f5:e6:6d:9d:31:69:02:5d:53:6e:22:b6:
6f:22:d3:4e:60:0f:09:8a:6a:e6:38:f2:96:72:e7:
10:ef:48:9f:f2:05:9f:d6:64:cc:d8:ef:4b:0e:ee:
7f:68:b1:94:19:07:8a:4a:dc:86:49:4a:c9:05:73:
66:93:3a:8d:75:2f:f3:41:91:f6:f6:96:77:4f:72:
f3:93:e1:80:bf:06:bb:1b:d5:50:24:58:72:d2:95:
c6:08:77:05:e7:2e:77:ad:e9:bd:c6:76:a2:4b:14:
76:15:e1:2b:60:a8:6a:c8:f2:c4:92:00:bd:bb:40:
ff:65:8a:3b:9a:e8:a9:70:09:de:89:d1:bc:0e:b8:
22:02:ed:e3:48:55:e5:e8:07:ef:c6:a7:3d:b5:2b:
44:ba:9d:b8:1d:4d:92:da:9e:a5:83:55:bb:52:9c:
b2:e6:a5:6b:57:12:ed:bf:f4:e1:9b:49:9b:a0:6e:
9f:9e:0e:2b:fa:f4:24:3d:93:00:6b:be:1f:ec:1f:
23:53:90:b7:55:a9:8a:68:0f:61:25:7a:a2:09:b6:
cd:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:90:40:1C:EE:23:F9:5B:4F:15:07:04:F1:BA:AC:E5:AE:B6:52:F6
X509v3 Authority Key Identifier:
keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:56:89:16:4a:3a:e9:8f:54:6b:2c:d0:c4:e1:97:cd:3c:40:
8b:ea:a6:30:96:fb:5b:a4:0f:4e:07:9f:d4:dd:07:d6:c2:eb:
8a:08:58:82:de:2a:7e:7f:09:65:83:e6:86:82:93:ba:ce:16:
bd:f5:c4:85:91:f2:51:82:ec:56:ad:ed:60:7a:e3:45:d0:73:
b9:16:56:90:c7:44:5e:fa:82:be:e7:94:4c:85:a6:83:83:fb:
22:30:b1:83:c5:06:e1:7d:b5:27:8f:41:5a:02:4a:13:c3:46:
08:4c:f0:20:67:50:e7:e2:62:15:ac:0c:92:75:7d:52:cd:ad:
1b:8f:ff:a2:2d:fd:68:fb:ef:25:4d:6a:38:17:98:32:ff:db:
5b:b3:d0:2e:8c:de:d2:83:2c:55:93:e7:85:02:dd:24:81:99:
04:2d:41:7d:da:76:08:9d:32:9e:9a:4d:84:a8:31:cb:53:8a:
cb:d3:5a:82:ba:ab:95:e3:3a:94:0f:62:07:a3:4c:9c:4e:7d:
c1:e4:82:5c:b7:c0:0d:0b:03:80:20:39:d3:a6:14:bd:e7:51:
39:71:cb:c8:f8:56:3c:56:6c:68:23:86:ee:21:69:06:90:f0:
b5:62:25:8d:4e:64:36:05:fc:c6:62:1c:b8:cd:d0:9c:3a:13:
23:d8:aa:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:20:41 2025 by rpki-client