Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
File: lKpBiudwvajvBRax0cYzpn6R84s.mft (raw, json)
Hash identifier: PHle28h78uUsvDBvfd3O027eYbCQ7zJa/OBrkvC5vBM=
Subject key identifier: 65:79:65:0B:25:1A:E1:24:35:02:C6:D3:F4:8A:B0:17:42:B0:23:1A
Authority key identifier: 94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
Certificate issuer: /CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Certificate serial: 01987F78DB133D4C10494365E7F653D95BAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
Manifest number: 0FE5
Signing time: Wed 06 Aug 2025 13:01:23 +0000
Manifest this update: Wed 06 Aug 2025 13:01:23 +0000
Manifest next update: Thu 07 Aug 2025 13:01:23 +0000
Files and hashes: 1: JDbsNRiv_WMTlViBQXQ3g59gK5M.roa (hash: 5BHapuXzcbpJhpfOa/evo44J0f0F6BTnvXfMcpPhdEU=)
2: lKpBiudwvajvBRax0cYzpn6R84s.crl (hash: xBBwEGy9RfCp18q+A1Yx9xN+GcP+SpJb+9TqCUIcsa4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 13:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:78:db:13:3d:4c:10:49:43:65:e7:f6:53:d9:5b:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Validity
Not Before: Aug 6 13:01:23 2025 GMT
Not After : Aug 7 13:01:23 2025 GMT
Subject: CN=6579650b251ae1243502c6d3f48ab01742b0231a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8b:07:26:e1:68:a8:84:14:9c:d4:2d:44:6c:
a6:29:43:3b:85:98:a2:70:95:1f:c2:5a:99:4e:8e:
d7:85:3e:38:cc:8c:64:9c:18:31:22:59:6a:3d:26:
f4:51:64:4b:53:2b:3c:85:02:8a:8b:85:3a:3f:73:
6c:0f:07:52:5e:fc:63:b8:18:97:b5:36:28:7a:79:
94:68:fc:07:ed:40:38:4d:97:f0:da:64:81:ff:02:
f6:38:07:12:52:bf:e3:a6:96:f0:73:63:4f:32:a3:
9a:ea:9c:9b:d6:80:b0:94:43:7d:dd:f8:70:b8:06:
4c:4f:0e:3e:bb:bd:bd:64:3a:6d:ef:36:86:13:6a:
8f:04:1f:67:af:26:59:8e:c2:5f:4c:c1:cc:6a:8e:
64:cf:91:ea:56:00:f4:aa:e5:db:8b:17:46:4c:ab:
47:2b:89:f2:83:3c:ab:4e:3d:8c:25:f8:b0:4b:b3:
64:70:2d:09:e9:7e:fd:94:de:75:23:08:5b:cb:1e:
d1:c3:8b:43:0e:f6:50:93:ef:f4:61:4a:09:10:12:
21:3c:bf:11:a9:10:b3:44:b0:b5:0f:9b:c5:f2:da:
7d:54:c5:d2:5c:dd:d1:8b:5d:0b:9f:56:41:98:05:
be:f0:26:82:31:c4:8b:ad:c7:d8:f0:62:34:c2:a8:
77:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:79:65:0B:25:1A:E1:24:35:02:C6:D3:F4:8A:B0:17:42:B0:23:1A
X509v3 Authority Key Identifier:
keyid:94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:ba:4a:5a:49:97:85:7f:e3:0f:ee:98:f1:70:54:45:e5:23:
6c:90:3b:ae:f2:61:53:16:03:ac:bf:7a:d3:55:dd:fe:78:8a:
ec:68:2f:3c:35:34:94:81:1b:32:3e:1c:20:3d:f7:cd:f3:49:
e6:fa:22:e3:eb:eb:49:34:13:4b:e5:29:27:61:60:a0:53:57:
61:5c:b3:9f:0c:67:29:25:71:5c:ce:f5:eb:90:ca:5a:7b:05:
ec:33:7d:94:01:51:dd:7b:40:88:62:80:03:09:f4:08:70:47:
b8:d4:db:10:ea:df:a3:1d:4c:08:a4:c4:fb:69:f8:21:1d:aa:
42:3c:9f:ef:56:8c:f3:b0:6a:fd:f8:61:03:56:ad:e8:0d:10:
e9:aa:a9:6a:f3:f5:c9:0d:5a:7f:2b:b9:db:43:3e:d8:6c:3b:
ae:f6:6d:67:57:1b:93:1b:f7:bd:e5:aa:a2:b9:69:db:bc:a8:
88:c5:7f:ac:f9:c7:e7:c5:05:62:2c:89:c6:96:47:2b:ab:54:
c3:04:47:bc:a4:63:74:92:f5:96:bc:cf:41:97:5c:be:ea:25:
1f:e5:b7:51:00:9a:0e:dd:7b:f7:23:ec:d6:96:b9:51:8b:39:
23:17:e1:7a:3e:c7:a9:03:d3:54:27:e2:84:b5:9c:c6:0c:11:
5e:35:29:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 19:23:21 2025 by rpki-client