Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
File: lKpBiudwvajvBRax0cYzpn6R84s.mft (raw, json)
Hash identifier: I4dgIesJUKTt1j8um7nHMC4ROAGRXfB5I2HbfUCas30=
Subject key identifier: EA:65:86:71:09:14:FA:02:1A:96:4D:67:59:15:4F:F0:17:4A:6E:00
Authority key identifier: 94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
Certificate issuer: /CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Certificate serial: 01976961190468FCF50228DDEFD0792C92DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
Manifest number: 0F55
Signing time: Fri 13 Jun 2025 13:01:00 +0000
Manifest this update: Fri 13 Jun 2025 13:01:00 +0000
Manifest next update: Sat 14 Jun 2025 13:01:00 +0000
Files and hashes: 1: JDbsNRiv_WMTlViBQXQ3g59gK5M.roa (hash: 5BHapuXzcbpJhpfOa/evo44J0f0F6BTnvXfMcpPhdEU=)
2: lKpBiudwvajvBRax0cYzpn6R84s.crl (hash: S7M5+7r6pPDRbuDmdis4gcgd2vXf5c1x8wibmdlg9DY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:19:04:68:fc:f5:02:28:dd:ef:d0:79:2c:92:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Validity
Not Before: Jun 13 13:01:00 2025 GMT
Not After : Jun 14 13:01:00 2025 GMT
Subject: CN=ea6586710914fa021a964d6759154ff0174a6e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ff:13:8d:f2:f0:db:59:47:69:8a:cc:82:be:
b6:5a:fb:21:3d:80:22:e4:0c:cb:c2:2a:66:b9:d5:
b0:c1:7a:c5:64:19:90:ae:72:1e:7b:d6:fe:4b:f9:
c5:cd:64:5e:f1:ae:9a:a4:bb:19:96:e7:5e:44:65:
0c:10:31:f9:0e:8b:c7:64:01:56:c2:20:95:6c:6d:
82:48:81:a6:da:54:32:ae:ad:c3:f7:52:17:67:c9:
22:8a:fa:64:96:9f:ab:f0:71:f2:b3:9b:10:95:65:
68:33:75:7a:80:2b:08:a2:67:49:74:6a:e2:08:d0:
3f:ee:f6:66:fb:7b:5e:ae:7e:2b:73:11:8f:9c:15:
ea:bc:4b:fa:d1:94:6a:41:d4:8e:0a:05:f8:99:0c:
67:1b:1c:16:ad:d1:87:9a:1d:7f:97:ea:3e:14:0f:
b1:cb:7a:c4:d6:e0:ee:7b:5f:10:b7:55:e1:ad:45:
8e:6a:e7:97:6f:c8:8d:db:76:e6:f5:0e:af:80:e1:
52:40:65:d4:83:d2:ed:c1:ad:27:ec:a0:5f:61:ff:
66:bc:8f:f9:4f:45:94:4d:35:01:e9:7c:07:f1:b1:
79:bf:0d:32:5f:a4:74:3a:54:61:ad:8b:7c:61:41:
cb:23:9f:16:19:cd:b5:f3:6a:54:ac:96:70:aa:4f:
0c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:65:86:71:09:14:FA:02:1A:96:4D:67:59:15:4F:F0:17:4A:6E:00
X509v3 Authority Key Identifier:
keyid:94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:42:98:bf:f2:54:95:ca:a0:c7:0f:c2:69:f4:bc:07:64:c4:
e3:29:2e:8c:0d:2b:a2:52:1b:34:e6:58:2a:ca:67:ac:6b:0c:
2b:89:11:55:ca:52:c5:c6:f5:dd:62:27:39:ec:a6:5a:7a:a7:
9c:06:59:85:f8:f0:1e:00:73:cd:a6:ec:ad:7b:bc:1b:da:a9:
5e:ca:2e:8d:2c:ec:ef:7f:a6:0c:da:bd:a0:05:07:50:8f:42:
e7:7a:05:f1:7a:2f:13:e2:a7:38:ec:8b:aa:a9:10:c6:41:70:
3f:af:5c:48:57:03:73:0a:9d:2c:3d:25:3d:b0:9b:85:fb:3b:
47:cb:e1:d0:8c:1c:c4:bd:ef:5c:b4:3b:45:96:57:2f:d0:2c:
20:19:37:e2:ea:73:4e:46:b7:e4:34:19:64:d1:fa:9c:58:a2:
74:0c:43:38:a8:9c:92:70:e0:4b:c5:19:c3:a0:c1:46:50:af:
c3:25:27:cd:e9:05:ae:18:cf:d2:5c:a5:f4:e9:49:85:c9:9b:
62:0c:36:74:55:36:24:5b:e8:6b:01:cb:2c:c1:fd:64:a0:55:
ec:14:53:36:d0:1d:92:01:4d:1a:2b:ba:f7:2a:30:5d:96:a1:
7c:7f:1b:3b:bf:0b:41:47:7b:ae:f4:ae:37:e7:c5:42:de:7b:
c7:b2:05:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:29:50 2025 by rpki-client