Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
File: lywzrtjvsmnTdEgT0oxTYJLnzzg.mft (raw, json)
Hash identifier: kc8TnfzaQiV7mOkFa/VEpBbcUNGvWWtPAQlwIiiCs70=
Subject key identifier: 09:1C:34:70:1F:2B:95:B1:91:A8:09:6A:3C:43:85:57:7C:16:9E:EE
Authority key identifier: 97:2C:33:AE:D8:EF:B2:69:D3:74:48:13:D2:8C:53:60:92:E7:CF:38
Certificate issuer: /CN=972c33aed8efb269d3744813d28c536092e7cf38
Certificate serial: 01977309623037E749899F2B115E6A4CF5B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lywzrtjvsmnTdEgT0oxTYJLnzzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
Manifest number: 0B63
Signing time: Sun 15 Jun 2025 10:01:24 +0000
Manifest this update: Sun 15 Jun 2025 10:01:24 +0000
Manifest next update: Mon 16 Jun 2025 10:01:24 +0000
Files and hashes: 1: ABgvtVRWI6brZz3FziMb4rv0_78.roa (hash: xcpeYC06fvzRoHxarxnxi+ZpU9v7tXYglNgTbxJJFa4=)
2: lywzrtjvsmnTdEgT0oxTYJLnzzg.crl (hash: 8DeJbdv1dZ3Ftj9rl+cd6cn2Wfky+ibX1FrPcu9lwm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lywzrtjvsmnTdEgT0oxTYJLnzzg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 10:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:09:62:30:37:e7:49:89:9f:2b:11:5e:6a:4c:f5:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=972c33aed8efb269d3744813d28c536092e7cf38
Validity
Not Before: Jun 15 10:01:24 2025 GMT
Not After : Jun 16 10:01:24 2025 GMT
Subject: CN=091c34701f2b95b191a8096a3c4385577c169eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7e:d8:db:1d:f5:aa:b2:dc:df:2d:43:51:3c:
2c:54:0d:28:9b:bb:d7:1a:13:27:50:00:2f:33:9f:
39:78:82:2e:ea:ea:01:89:dd:2b:87:54:8e:a0:b3:
8c:a1:30:73:3b:57:56:32:3f:96:e1:e9:c5:52:56:
3f:f9:88:08:e6:f1:86:ea:f7:d0:cf:15:32:63:9f:
bc:3f:ab:62:dd:95:43:7c:59:9b:99:9a:3c:da:ef:
b0:e7:30:59:18:b1:6b:64:18:97:39:97:55:79:b3:
1b:e6:25:fb:67:db:9e:4b:b7:13:66:3f:bd:12:5c:
5b:0c:72:17:14:f7:ba:52:f0:3d:ec:44:ca:5f:a8:
b7:d5:64:5f:66:08:b9:ab:47:4f:69:14:c6:7a:06:
ea:fc:9a:8d:e2:9d:82:9c:15:e1:4e:56:96:e0:e5:
71:c1:01:83:57:a9:5f:1d:d7:9b:d6:c0:b4:81:f3:
3f:4b:b4:1b:a9:b2:f3:c8:d8:89:c5:ba:12:3e:39:
a4:2a:31:ff:6c:09:02:c2:3a:f3:34:50:c2:4d:e0:
d6:72:14:ae:68:34:a5:e8:40:67:eb:a2:ce:df:4e:
bc:ee:02:be:cb:ee:be:de:ac:b5:f8:86:00:74:f0:
d9:4a:f7:88:30:c2:9f:4d:6e:3e:49:56:32:b1:d3:
e2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1C:34:70:1F:2B:95:B1:91:A8:09:6A:3C:43:85:57:7C:16:9E:EE
X509v3 Authority Key Identifier:
keyid:97:2C:33:AE:D8:EF:B2:69:D3:74:48:13:D2:8C:53:60:92:E7:CF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lywzrtjvsmnTdEgT0oxTYJLnzzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:d5:31:a0:16:c4:df:28:68:01:10:b7:a7:84:ef:91:62:16:
4d:24:46:af:b7:89:b4:ec:56:34:ae:c3:e0:8e:07:7b:e5:16:
e7:63:d2:1f:87:a5:49:f2:cc:e9:9b:1d:6f:6e:22:ac:d0:77:
8d:c8:fd:a6:32:13:3b:78:7c:ba:b3:5b:cb:bc:c3:7b:7d:8c:
1a:29:64:80:c3:4d:10:41:b1:12:9c:ad:d6:03:e4:6b:e0:de:
4f:01:5f:0e:98:c1:74:4a:55:2f:f6:ef:14:05:d5:db:8b:e2:
b0:1b:79:08:fe:eb:ce:f3:f5:c6:8b:16:64:89:6b:e4:f8:62:
77:3f:d2:4d:8c:26:51:28:02:89:6c:34:85:73:c9:49:37:b1:
d4:45:e5:99:0c:d1:93:f1:53:cc:a0:14:33:c8:60:95:35:99:
e6:5a:39:bc:38:d2:3f:eb:af:8a:50:0b:32:1f:07:d1:55:3f:
5b:e1:9f:5f:f3:b6:de:76:2c:69:06:69:ad:c7:3d:a4:d6:dd:
29:a9:49:75:75:12:50:b1:c4:d7:01:a4:73:7b:ae:56:15:f8:
ad:c9:70:b2:0b:05:1e:be:da:bb:ec:a6:34:44:48:83:10:1b:
11:ca:e2:30:fc:01:b8:7c:dc:bb:d2:79:d9:fc:0b:26:96:e6:
64:ce:17:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 18:54:48 2025 by rpki-client