Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
File: Lw47dY4ki4AfwfMNNF1giwevG_Y.mft (raw, json)
Hash identifier: G784tsZr6Iebk57mRZK+ginvy7A17bAScF3gXmp5gm8=
Subject key identifier: 1A:AF:4D:4E:53:9D:00:24:89:55:CF:B8:E0:CB:3A:F9:8F:04:81:29
Authority key identifier: 2F:0E:3B:75:8E:24:8B:80:1F:C1:F3:0D:34:5D:60:8B:07:AF:1B:F6
Certificate issuer: /CN=2f0e3b758e248b801fc1f30d345d608b07af1bf6
Certificate serial: 01989ECC083ED2B4F3AA300D9A85EB8BE390
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
Manifest number: 0653
Signing time: Tue 12 Aug 2025 15:00:28 +0000
Manifest this update: Tue 12 Aug 2025 15:00:28 +0000
Manifest next update: Wed 13 Aug 2025 15:00:28 +0000
Files and hashes: 1: Lw47dY4ki4AfwfMNNF1giwevG_Y.crl (hash: 1+GiUNsRRAJjKtm06tWyvyNYNOuPZT/XbH87jfk80K8=)
2: MBtZdpS4ymxgginyDhvfCoGQ29s.roa (hash: Taga/JoIPOZ2TxBr6cVw0HmmUo2VGq5/DtsPjFffmvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9e:cc:08:3e:d2:b4:f3:aa:30:0d:9a:85:eb:8b:e3:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f0e3b758e248b801fc1f30d345d608b07af1bf6
Validity
Not Before: Aug 12 15:00:28 2025 GMT
Not After : Aug 13 15:00:28 2025 GMT
Subject: CN=1aaf4d4e539d00248955cfb8e0cb3af98f048129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c8:55:02:0d:64:4d:44:74:ac:06:30:c0:52:
be:41:4b:af:67:f3:b1:63:e9:b5:89:69:c5:e8:70:
e2:a0:89:45:29:76:c4:ac:c5:fa:47:82:c8:86:cd:
8b:2b:ad:99:ea:5b:25:3e:d0:88:92:d9:44:6a:ef:
66:44:b8:33:6d:54:0a:bb:c9:ca:ca:ab:09:ec:03:
fd:52:d5:eb:bb:76:01:c6:09:aa:07:0a:4f:86:1a:
a0:6e:60:ed:33:77:93:93:30:bf:4e:54:81:32:ed:
49:cd:a8:ff:76:09:a8:cc:4b:d3:7c:6b:c2:c4:d4:
d5:e8:c7:9f:7c:0a:08:56:96:04:4e:ce:17:32:5b:
ed:7c:11:84:ee:38:80:f6:3d:e7:b9:f5:c3:67:b3:
00:e7:3b:3c:bf:78:05:b8:41:d7:8d:17:9f:8a:c9:
3b:d0:fb:40:d5:bd:ad:9f:9a:31:d7:6c:94:57:29:
e1:25:ce:eb:69:f2:7c:59:4d:c8:6a:58:01:f4:57:
84:b4:10:0f:4e:33:cd:a7:76:8c:38:0a:9e:1f:29:
3b:f5:15:0f:66:ab:4f:40:b4:81:1e:f6:7b:01:b0:
66:7e:e2:da:47:db:86:56:68:ce:5f:87:78:52:88:
00:a9:c0:e8:44:b4:8c:81:d6:66:19:80:33:6f:cd:
cf:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AF:4D:4E:53:9D:00:24:89:55:CF:B8:E0:CB:3A:F9:8F:04:81:29
X509v3 Authority Key Identifier:
keyid:2F:0E:3B:75:8E:24:8B:80:1F:C1:F3:0D:34:5D:60:8B:07:AF:1B:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:62:b7:4a:ce:a1:8f:a1:80:ff:22:69:25:1a:c6:8a:8c:54:
0c:78:28:09:4b:31:61:4f:94:16:52:d0:af:50:43:11:99:ec:
20:a7:5c:43:b3:71:98:30:84:cd:c0:f3:e0:12:ed:0b:44:bb:
b4:eb:e0:98:c6:1f:47:fd:a6:79:6e:99:2a:8e:33:d3:a4:32:
f5:c8:66:c4:08:e1:03:d6:29:25:1e:89:6c:7e:f9:f2:10:0e:
2a:4a:c3:b2:b7:04:b5:7d:7b:b8:26:f9:32:7a:27:f6:0e:56:
0c:36:e9:79:e2:ce:b2:2f:34:7e:b6:b3:17:92:cb:9c:4c:91:
9d:1b:90:2d:c7:95:3b:4f:42:2b:69:e6:3d:b9:3e:57:d7:48:
31:55:d3:20:b1:da:8a:59:cb:1f:44:e0:a2:a1:bf:78:e6:74:
c8:91:b2:df:91:6f:49:a6:50:4f:9a:3e:52:0b:09:aa:df:14:
b9:bf:ae:69:66:38:ff:8f:db:9e:65:3c:00:84:99:25:f4:4f:
0c:cc:79:ff:a4:14:eb:56:3e:a8:1e:d9:0e:62:5f:95:19:ee:
42:cc:53:d4:b2:a9:12:16:9b:be:1a:d1:1f:d6:d1:38:5e:48:
c7:fe:55:14:24:10:28:16:05:28:87:2f:a0:26:8e:af:9f:1d:
c1:20:91:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:40:32 2025 by rpki-client