Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
File: lQ8oTPXDnybd0jUufyrfeo3GD44.mft (raw, json)
Hash identifier: HhRd+wxxv8OShJdUU4okDFrcv1D4mH17z0d3dK4bGks=
Subject key identifier: 14:A0:40:FF:22:66:9B:E1:84:CB:A1:9E:87:51:45:4C:2A:E4:78:18
Authority key identifier: 95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
Certificate issuer: /CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Certificate serial: 01985456CD50131DD44D01CFB3D428264CA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
Manifest number: 0C02
Signing time: Tue 29 Jul 2025 04:00:31 +0000
Manifest this update: Tue 29 Jul 2025 04:00:31 +0000
Manifest next update: Wed 30 Jul 2025 04:00:31 +0000
Files and hashes: 1: CIXcSM8wlZUJc9_olM2z-Sxe_fI.roa (hash: mDiY7MPNQSCh1DaHA5s1SG/E+/9GUkWw11IjIEdP7WU=)
2: lQ8oTPXDnybd0jUufyrfeo3GD44.crl (hash: uZrvwMJ7A21ByDnbwRTI37Ns8tSLBxuXZtpYPo0JuaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:54:56:cd:50:13:1d:d4:4d:01:cf:b3:d4:28:26:4c:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Validity
Not Before: Jul 29 04:00:31 2025 GMT
Not After : Jul 30 04:00:31 2025 GMT
Subject: CN=14a040ff22669be184cba19e8751454c2ae47818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b4:a5:fb:5a:00:86:e6:f9:bd:af:62:61:27:
c6:23:40:0c:01:7a:43:cb:bd:0f:2a:3f:ea:55:1c:
fc:82:7a:45:9f:78:17:81:7b:e4:a7:c4:e3:ca:84:
81:7c:1a:32:1c:3a:86:c0:65:16:5d:5e:71:37:9d:
03:3c:2a:98:fa:c4:cf:a4:30:7a:11:8b:a8:09:c1:
ae:8c:34:02:bf:bf:81:90:12:8a:9c:d5:26:40:04:
4d:58:e2:2f:78:e0:08:be:0b:56:c3:2d:46:f4:2c:
d2:25:0b:47:69:3c:c2:e3:43:17:21:c1:3b:af:69:
06:06:c5:27:0e:c5:24:f2:79:ca:49:79:d1:7a:4c:
8b:b1:81:2c:c2:14:5b:47:2d:8e:db:fc:88:b0:b9:
39:9b:a9:be:8c:97:d7:39:25:f0:93:c4:52:74:9b:
ce:c5:b0:76:05:9a:f3:8b:e5:98:c5:07:b0:7d:95:
88:62:b5:37:b9:12:7a:91:86:ed:40:7d:15:3f:1d:
41:f8:db:21:ec:33:44:7d:f8:27:27:14:77:23:59:
41:52:a1:a1:78:ff:c6:56:fe:b0:3a:5a:8c:de:22:
3f:fb:db:bd:74:18:21:7d:4c:d2:0b:3e:3b:c7:48:
2e:80:4a:6b:5c:3f:f3:61:2d:4b:2c:42:ef:a6:1d:
99:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A0:40:FF:22:66:9B:E1:84:CB:A1:9E:87:51:45:4C:2A:E4:78:18
X509v3 Authority Key Identifier:
keyid:95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:43:e7:35:3d:99:4e:4a:e8:a8:7a:a0:59:4b:b8:de:3e:d9:
ee:a4:cf:65:ed:8a:b9:4a:25:fb:0a:f2:d3:90:c4:97:c4:0c:
3f:a0:87:2a:86:94:40:d7:06:c7:2b:a9:97:f6:81:39:4a:dc:
cf:87:da:53:87:ca:1a:f6:8f:44:4c:32:60:38:df:f1:04:c5:
5a:2e:fc:86:a4:1b:fa:9a:7d:54:ac:94:24:c4:43:2c:99:8f:
5c:79:ac:2c:5a:1c:44:50:f0:41:37:ff:47:17:56:6e:e9:e1:
94:6f:d6:ff:bb:37:df:79:e0:45:99:dd:93:2e:9c:77:3f:4e:
90:b7:12:78:ff:e3:e2:fc:1e:6c:23:36:79:02:be:f6:7a:ad:
97:7b:e8:49:a6:52:07:be:d4:89:6c:09:a2:d0:ea:c4:07:e0:
68:81:92:4c:5a:a2:c9:cd:33:35:65:8e:9e:06:ac:dc:b0:bb:
c5:53:3f:7a:28:8b:30:00:91:64:c9:63:55:dc:aa:9a:63:51:
c0:8e:15:b9:18:0b:59:de:38:1f:31:14:6d:5e:ae:97:45:8e:
3e:24:5d:dd:87:14:8c:26:e9:db:67:1b:35:bf:03:d6:40:e0:
91:cc:a3:84:af:12:39:65:25:69:8d:bb:8d:61:19:72:6f:bd:
eb:13:51:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 07:23:28 2025 by rpki-client