Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
File: LokBk3Q73yTdIsPtbyizAxouyAY.mft (raw, json)
Hash identifier: m9ovNss8B9R1tsoMf4MSKiSNCmDZjdYq3843l2bvlGs=
Subject key identifier: 21:CF:DF:DB:B2:6D:48:4B:14:E3:9A:F5:7C:0E:27:61:99:43:D8:6E
Authority key identifier: 2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06
Certificate issuer: /CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806
Certificate serial: 01987908F15BE2C7F5F94D2C2DD31B14F5A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
Manifest number: 11A7
Signing time: Tue 05 Aug 2025 07:01:25 +0000
Manifest this update: Tue 05 Aug 2025 07:01:25 +0000
Manifest next update: Wed 06 Aug 2025 07:01:25 +0000
Files and hashes: 1: 6EZjDJryRoANWPhlSHpMG7n7IU8.roa (hash: 9isLxzfXlIyOPcXFup6Ou1baZV3mC8KRz9wBcZ1Igfs=)
2: LokBk3Q73yTdIsPtbyizAxouyAY.crl (hash: XnNwD5ZrpneuZvq+agTXYm3yLOnJrenipqnHiND6k/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 07:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:08:f1:5b:e2:c7:f5:f9:4d:2c:2d:d3:1b:14:f5:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806
Validity
Not Before: Aug 5 07:01:25 2025 GMT
Not After : Aug 6 07:01:25 2025 GMT
Subject: CN=21cfdfdbb26d484b14e39af57c0e27619943d86e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:b7:3c:c9:c1:15:90:cf:92:fc:5d:f1:33:ea:
96:ad:e1:69:3a:1f:c2:9f:2c:cf:e9:e7:10:11:cc:
7a:db:1b:cb:58:a9:cd:4a:70:71:1f:4f:d2:c4:8c:
54:46:62:b7:2e:04:62:1f:6d:29:f4:f9:48:ad:aa:
00:ca:07:9c:9d:ac:7c:20:34:97:ee:55:aa:ee:7b:
c6:95:bd:77:1a:fb:80:d7:7d:7a:5c:dc:c8:40:8e:
a5:06:b6:ad:68:d5:04:66:21:c6:58:5b:34:bf:0b:
50:22:93:b4:18:f9:b4:1d:84:0e:83:7e:92:87:be:
1c:83:23:25:a5:b8:c8:80:6a:44:45:72:4a:49:75:
83:06:d5:d9:6a:94:a1:b6:43:c9:ca:54:09:6a:f6:
24:20:57:86:97:da:d2:59:0e:61:71:7e:22:01:b4:
89:14:22:dc:ba:9f:e8:ee:df:30:63:71:f1:51:06:
71:c3:87:9f:c8:49:c5:cf:98:48:8e:7d:6a:88:c0:
b3:e5:7f:0f:00:6b:16:7c:2a:b0:3d:30:06:c8:6d:
f8:03:18:5e:93:81:01:34:f2:73:56:48:f2:e9:67:
61:e7:f0:8e:e7:48:05:27:85:b5:42:e3:b6:46:40:
b6:0d:02:ef:dc:72:35:c8:0d:79:cd:35:d3:33:8f:
eb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:CF:DF:DB:B2:6D:48:4B:14:E3:9A:F5:7C:0E:27:61:99:43:D8:6E
X509v3 Authority Key Identifier:
keyid:2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ec:32:0c:59:3d:3b:b4:6c:37:e6:25:2b:78:b5:d2:e2:3c:c2:
33:8f:9f:67:67:d1:62:ce:66:c4:fd:97:01:eb:d3:3b:01:9a:
c0:f8:57:40:64:a8:55:41:46:86:b4:48:e4:d4:c9:c7:d4:44:
13:31:e4:26:28:6d:74:0f:6f:ab:40:3a:2c:e4:fe:5f:29:7d:
49:23:ec:53:18:89:15:ac:25:7a:78:03:c3:ab:93:1d:ee:c5:
b0:8c:2b:dc:9d:c4:36:c0:2d:7b:4e:3a:da:75:6a:b5:e7:53:
12:4d:98:7a:0b:c4:e2:ab:2a:37:05:b1:b2:80:b8:79:4f:f3:
74:46:ef:7c:5e:7a:2c:61:87:ae:5e:c2:6b:d8:0b:28:78:bf:
16:85:a4:17:10:03:59:ac:4a:98:13:aa:bd:20:f3:89:a5:87:
03:53:68:40:3c:33:35:cb:b9:d1:77:39:b4:44:db:9d:eb:4b:
8c:e3:b6:50:3e:9a:cb:6b:79:5b:59:e8:5e:6f:79:8c:98:6f:
b7:04:0e:09:a2:e4:a7:d4:12:29:9e:13:00:ad:68:13:a5:58:
f4:fd:e4:fb:33:67:12:40:96:81:ab:ed:f0:86:0c:b5:0c:cf:
cf:ea:18:fe:07:36:6a:8f:3a:f5:c9:7e:bf:67:94:68:df:1d:
98:d8:52:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:23:44 2025 by rpki-client