Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
File: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft (raw, json)
Hash identifier: wKWe7X8MXxXVIgGqoVBLu1y9mPh1RrpettvlhdKjfSk=
Subject key identifier: A8:27:8C:4B:0F:02:BC:7B:F2:B0:A3:22:8B:04:3D:AF:0D:D0:48:11
Authority key identifier: 94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
Certificate issuer: /CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Certificate serial: 0197846A6726CF61418BF2554E60039CE074
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
Manifest number: 1235
Signing time: Wed 18 Jun 2025 19:00:54 +0000
Manifest this update: Wed 18 Jun 2025 19:00:54 +0000
Manifest next update: Thu 19 Jun 2025 19:00:54 +0000
Files and hashes: 1: GkmNRez_B8q96uaVOleqThEPoEs.roa (hash: aNQGHPeLClAe2Gmzc0jqm+MRXJ2xuLHjsljQiK1K4qw=)
2: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl (hash: 6qw7E17WbBerHCk8b0bW9pfbxlQpfSjzzqOLIvYUy3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:84:6a:67:26:cf:61:41:8b:f2:55:4e:60:03:9c:e0:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Validity
Not Before: Jun 18 19:00:54 2025 GMT
Not After : Jun 19 19:00:54 2025 GMT
Subject: CN=a8278c4b0f02bc7bf2b0a3228b043daf0dd04811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:10:ab:7e:c5:d9:b6:60:51:68:67:cb:ca:df:
f6:18:97:d0:6a:de:f6:db:96:7a:2e:0b:16:14:c1:
61:8c:6d:e5:26:b3:9b:c7:4d:69:7a:28:da:5b:8a:
84:86:bd:57:4e:5f:41:2f:25:20:5e:1e:8b:e2:18:
7f:2c:ea:14:4c:ce:20:a1:80:29:db:c9:ba:4b:11:
11:bc:f5:09:81:a2:10:b4:5e:70:8a:55:e2:81:31:
fa:42:6a:30:60:9c:92:03:d0:b7:66:43:35:37:11:
01:39:57:cc:c2:58:77:a7:78:21:b8:97:81:4d:7b:
7a:a8:26:77:f1:5c:84:9d:ba:d6:d7:80:74:77:ad:
04:4a:e6:7c:57:3e:80:db:cf:5c:13:b3:03:9e:60:
8b:59:4d:a0:69:c8:4a:0b:b8:3d:4d:10:f9:d7:57:
58:c6:a2:83:c2:fb:68:f1:8c:f2:cb:98:eb:e5:fc:
0c:41:8b:85:4a:3e:0c:86:67:22:e2:5d:2b:68:2d:
0e:9b:1b:22:dd:ba:f2:58:ee:ef:02:1e:d6:0a:b9:
53:16:23:a1:c6:b6:8c:15:90:a7:fe:10:5c:5b:c1:
e5:bf:69:a4:19:b8:fc:9a:30:a7:f2:c5:63:8a:b6:
8f:76:ec:76:3a:96:87:fb:d3:40:4b:71:af:9a:13:
42:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:27:8C:4B:0F:02:BC:7B:F2:B0:A3:22:8B:04:3D:AF:0D:D0:48:11
X509v3 Authority Key Identifier:
keyid:94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:7d:01:39:53:df:64:43:00:88:21:a6:8b:34:97:b0:b3:0c:
a5:85:24:bd:6d:5a:96:48:71:94:c9:c7:6c:bc:b0:fb:c3:00:
ae:42:ad:3c:db:5f:ec:79:0d:30:bf:42:9b:bd:9d:5e:e9:73:
c1:27:f5:21:ec:71:97:b3:7d:47:41:09:e1:bb:5d:18:f6:44:
15:a8:27:fa:f6:bb:75:8a:5c:9c:4b:d1:3b:b8:91:d4:f9:83:
fe:e4:1f:49:dd:5e:18:16:17:8e:f0:28:37:f8:e9:94:5c:15:
84:89:0c:4e:43:94:cb:71:bb:51:7b:92:9b:da:77:8d:63:e2:
2a:f4:83:6c:9b:26:56:5b:36:00:72:b1:3f:2e:4a:e7:90:d1:
53:16:1c:38:ae:71:0a:05:7a:17:49:d7:06:76:21:35:a5:df:
19:e0:6a:74:44:38:e4:1f:9e:b4:d6:e9:fa:ef:f7:19:66:fe:
82:91:cb:e8:d8:cb:9d:af:fd:85:96:c8:04:42:3d:c7:cb:fc:
fc:44:27:7c:22:d3:02:84:07:6b:5e:8b:ec:1a:58:94:87:33:
e2:9e:63:31:b0:89:5d:74:da:e1:f9:68:5e:72:87:74:09:77:
f3:4f:10:6d:05:85:50:fe:5f:c8:08:5a:c7:a2:d1:57:2a:f0:
a6:84:3a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 00:45:50 2025 by rpki-client