Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
File: lbzyUZp7TPNY-2x4A5pb56GxMFs.mft (raw, json)
Hash identifier: 8p54tQ2dw/jkObdYxrewne+sSlhZ0N0CGl85KcaUSzU=
Subject key identifier: 7F:C2:E3:A6:CE:B9:31:CC:15:42:AE:5B:AC:3A:B8:69:21:EF:D7:4F
Authority key identifier: 95:BC:F2:51:9A:7B:4C:F3:58:FB:6C:78:03:9A:5B:E7:A1:B1:30:5B
Certificate issuer: /CN=95bcf2519a7b4cf358fb6c78039a5be7a1b1305b
Certificate serial: 019769618C793AAE2AE3FB3ABE211A39639A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
Manifest number: 0464
Signing time: Fri 13 Jun 2025 13:01:30 +0000
Manifest this update: Fri 13 Jun 2025 13:01:30 +0000
Manifest next update: Sat 14 Jun 2025 13:01:30 +0000
Files and hashes: 1: lbzyUZp7TPNY-2x4A5pb56GxMFs.crl (hash: d/d9IDsXRUdIZgifxYMzJwZ5+EauVa/XN3PUyzwMxQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:8c:79:3a:ae:2a:e3:fb:3a:be:21:1a:39:63:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95bcf2519a7b4cf358fb6c78039a5be7a1b1305b
Validity
Not Before: Jun 13 13:01:30 2025 GMT
Not After : Jun 14 13:01:30 2025 GMT
Subject: CN=7fc2e3a6ceb931cc1542ae5bac3ab86921efd74f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:16:13:5f:46:0c:ce:e2:c7:d4:47:b0:64:61:
64:0d:f6:84:db:2e:03:be:08:d5:a1:66:4e:cb:29:
3c:b4:41:56:74:e7:29:ce:a2:09:3b:a6:50:92:72:
e2:fb:be:bf:55:e8:31:ea:fb:29:3b:f0:a1:7f:3b:
51:55:79:91:7e:ed:79:b1:07:d3:01:fe:62:31:f0:
61:7e:76:ee:00:4d:53:f7:a2:47:cd:92:70:e8:bc:
de:a1:84:d4:20:93:a4:5a:8d:36:43:37:05:ab:a7:
d9:79:46:52:d7:ca:80:40:2c:0a:ea:eb:82:4b:d8:
44:21:16:c1:ee:f3:7e:16:0c:b6:cb:0d:6a:93:e9:
9b:5e:42:d1:42:1a:2c:7e:69:74:a1:a3:58:2c:c3:
a8:e7:c9:ae:4b:70:56:33:1c:46:c5:68:2b:46:19:
31:72:b3:c6:d2:9b:34:a3:8e:d3:e5:81:05:5f:7c:
4d:3d:fa:55:55:dd:f4:5f:d8:2f:80:73:ad:23:af:
7f:59:c9:a9:98:cb:fa:c5:b0:4e:05:23:f0:da:d8:
ad:a1:c5:a8:5d:2f:1a:10:15:a7:ee:bf:4c:8e:f1:
dc:42:90:cd:7c:5e:23:f1:da:a8:13:5f:db:d9:a3:
24:07:34:fb:d1:ee:68:e2:a6:c0:ea:01:bb:7d:09:
84:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:C2:E3:A6:CE:B9:31:CC:15:42:AE:5B:AC:3A:B8:69:21:EF:D7:4F
X509v3 Authority Key Identifier:
keyid:95:BC:F2:51:9A:7B:4C:F3:58:FB:6C:78:03:9A:5B:E7:A1:B1:30:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:24:16:53:99:b2:27:05:f1:09:80:4f:20:f8:ea:6c:e2:1f:
41:bb:ff:47:ef:00:af:6c:70:fc:0b:ab:b4:18:55:31:d1:8f:
2c:0a:bb:63:65:0b:6d:ec:2b:0d:e1:0a:9f:0d:fb:60:a9:d8:
9c:e7:40:37:9a:3f:5c:e2:32:cd:9e:b3:64:c4:45:2d:1b:c5:
3e:96:9f:87:8e:47:bd:33:76:aa:47:66:f6:b6:52:31:d4:9b:
c1:27:11:96:35:7e:a4:9f:3b:78:b4:43:5e:e0:14:c2:a0:36:
92:e9:ae:41:17:99:3a:99:89:db:95:b3:b0:7e:6e:84:9b:fb:
54:b9:e0:48:38:a3:90:57:0d:bf:02:b3:fc:41:21:7b:59:e3:
d9:55:ef:0b:d4:4f:7b:0a:4f:95:0c:20:7e:49:d0:01:03:50:
5e:ae:5a:d5:24:ef:ca:df:e7:0d:54:5a:e3:f2:de:eb:63:d0:
48:13:68:63:7f:93:99:cf:a4:91:b1:8b:95:eb:81:69:e2:7d:
0b:53:77:c1:6e:14:70:b7:26:9e:dc:9f:06:cd:33:8b:76:21:
ea:74:e6:fc:4d:20:80:d0:b4:f2:99:1b:b5:95:f1:e8:24:d9:
f4:4d:03:41:89:c1:fa:0f:f1:1d:23:b0:a8:0e:15:d4:f6:fb:
16:03:8d:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:40:59 2025 by rpki-client