Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
File: lJQumzXZGQbREkXXO9WM3Y7KSdE.mft (raw, json)
Hash identifier: ueVQ2/yY4FZzeT0C7YFMBXmhyaQT+bFfOlAYguClQQQ=
Subject key identifier: 9E:41:3F:82:DB:8E:26:2D:8A:FA:44:FB:64:FF:FF:D6:0E:F7:BB:EC
Authority key identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
Certificate issuer: /CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Certificate serial: 01976D3EA1505A3A33416A440CD42D9CB2E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
Manifest number: 14E6
Signing time: Sat 14 Jun 2025 07:01:50 +0000
Manifest this update: Sat 14 Jun 2025 07:01:50 +0000
Manifest next update: Sun 15 Jun 2025 07:01:50 +0000
Files and hashes: 1: V6dzQYTukirsU-gqtCUSWtxmwyw.roa (hash: TAhPxTUSZwI4JsrpdkkvjRG18+wELOBapOWsonm/zpw=)
2: lJQumzXZGQbREkXXO9WM3Y7KSdE.crl (hash: dCYijayVQOOo1MfHVghsg3LRLGMMMuF7rnYZ0oHfITM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:a1:50:5a:3a:33:41:6a:44:0c:d4:2d:9c:b2:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Validity
Not Before: Jun 14 07:01:50 2025 GMT
Not After : Jun 15 07:01:50 2025 GMT
Subject: CN=9e413f82db8e262d8afa44fb64ffffd60ef7bbec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9e:95:ec:eb:bc:a0:6e:03:d4:d7:2b:d8:2e:
c1:55:d6:d0:16:27:f4:45:1d:76:46:c1:af:40:80:
4e:19:d7:e8:f7:d7:b3:10:e7:b0:cd:80:d7:ca:f4:
19:96:90:f9:1e:c9:86:fd:86:15:c7:9c:91:00:20:
73:3b:ac:9e:6d:4f:df:b0:04:76:8c:f9:47:f0:f9:
7f:9d:6f:4f:1f:09:03:36:11:b1:67:63:a7:8d:e9:
48:88:29:19:6d:5c:74:f0:5e:47:dd:60:41:5b:35:
bf:8a:c8:fc:32:76:0a:6b:18:87:c8:15:5b:b2:89:
e6:b2:6e:ed:1f:bb:cc:12:20:be:c2:2e:79:ef:56:
b4:24:31:5d:1e:89:56:50:eb:8a:54:6b:eb:c3:0d:
35:38:a4:df:10:be:60:d5:33:39:d2:43:93:0b:8d:
f5:3c:9c:bf:8d:ae:8c:55:4f:c7:5d:48:15:db:47:
9c:7b:0d:07:ed:6e:ce:56:54:70:c0:63:b7:f9:a6:
33:8d:b8:34:52:18:cc:46:4b:bc:7c:c7:42:0f:b5:
2c:de:41:17:59:4e:ba:8e:67:6e:38:eb:e5:e0:68:
75:1c:48:68:7a:44:5f:7b:45:fd:13:05:63:ac:1f:
6a:f4:df:05:54:3d:27:d1:70:51:9c:e1:b5:e2:9b:
f4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:41:3F:82:DB:8E:26:2D:8A:FA:44:FB:64:FF:FF:D6:0E:F7:BB:EC
X509v3 Authority Key Identifier:
keyid:94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:a0:77:10:47:97:aa:eb:84:ed:15:d3:64:5e:c5:04:ef:99:
bd:81:4c:c4:8e:dc:2a:68:51:47:76:f9:8f:5f:93:09:22:01:
80:dc:8a:ee:05:f3:95:5d:4b:d6:12:c2:14:d2:33:19:27:59:
f1:e5:11:6b:18:6d:1a:a3:dc:c6:5d:73:4e:06:f8:d0:b8:11:
a6:f4:02:db:42:19:cc:e5:ce:9b:b0:28:8c:39:9d:91:c9:2c:
d6:0a:05:aa:51:f2:6f:19:96:b8:b9:8a:2f:c0:e4:60:fb:7d:
5b:78:03:49:6b:0a:78:0a:f9:93:4e:75:ff:8b:0f:3c:c4:da:
05:45:aa:4f:0e:5d:98:5e:a7:26:0a:cb:b1:25:47:92:fc:0d:
ae:72:d5:4b:63:21:c3:56:77:b5:36:e8:a5:49:35:f3:b2:de:
1a:17:8b:eb:6d:f0:64:a9:fc:e0:c4:fd:17:58:2d:75:d9:8f:
bd:cb:6d:27:b4:26:a0:17:63:16:00:98:13:3d:85:e2:3e:a2:
12:90:f7:5c:3d:6f:ba:9f:f1:f3:d7:7a:44:12:96:56:60:3c:
9d:ff:db:59:2b:90:a8:58:b0:dc:82:3a:6b:e1:9b:93:ad:b1:
dc:87:dc:81:98:f8:b5:82:cb:0f:66:fc:fa:d7:e9:bb:54:c2:
24:14:fc:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:02:53 2025 by rpki-client