Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
File: lJgy8CXL76HqG8oMOQtjwXaUjNI.mft (raw, json)
Hash identifier: b3G40tYz3gPkRKaNJHCzvwYt7ZTNWzCXzvp1ghxlYAE=
Subject key identifier: 09:50:74:E9:69:F4:B7:E8:FE:CD:34:AC:AC:5F:9F:4E:80:DB:DE:6D
Authority key identifier: 94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
Certificate issuer: /CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Certificate serial: 01974DB2F09EA041CF1C7660A47933DBD839
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
Manifest number: 03F9
Signing time: Sun 08 Jun 2025 04:01:02 +0000
Manifest this update: Sun 08 Jun 2025 04:01:02 +0000
Manifest next update: Mon 09 Jun 2025 04:01:02 +0000
Files and hashes: 1: euJQQHPXaEEafjtTEpsACoT0UO8.roa (hash: LMr9+ppvHgb0CfRsIuadMwP8K1TTGxo74gFD8Bmp2bs=)
2: lJgy8CXL76HqG8oMOQtjwXaUjNI.crl (hash: x+MlzPCDowmVwZH8Whab6UhHTa2XAkLhHw+H+4FfoWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:f0:9e:a0:41:cf:1c:76:60:a4:79:33:db:d8:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Validity
Not Before: Jun 8 04:01:02 2025 GMT
Not After : Jun 9 04:01:02 2025 GMT
Subject: CN=095074e969f4b7e8fecd34acac5f9f4e80dbde6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f9:ec:60:60:84:55:c3:8b:f5:2c:85:45:4b:
3a:2b:f7:83:92:a6:96:c0:76:65:3d:fd:99:ba:16:
1c:69:d6:c3:9b:fd:f9:f5:9a:6d:f8:20:69:fa:6a:
c2:a6:e9:23:27:7e:45:84:b1:18:1c:b7:19:30:ab:
be:1a:a6:02:ed:2b:f9:7a:23:63:3d:59:6c:ab:bc:
0e:ae:96:b5:6d:67:a2:4f:b3:75:1c:5b:9a:7e:31:
ae:88:81:7a:4c:ff:5b:95:03:59:ad:c7:71:a3:67:
cd:7e:02:db:3d:04:29:f5:e9:c4:89:46:30:e0:12:
1e:e1:bd:3a:72:d0:c9:06:2e:d5:58:c6:8f:5f:58:
d7:3c:d1:51:06:ed:45:a0:eb:37:37:12:35:94:d5:
80:98:9a:c7:eb:ac:1b:98:bc:ca:6d:84:f3:c0:55:
81:dc:c9:0c:2f:02:e0:6f:4d:0d:64:29:d2:e3:71:
ca:66:43:94:5d:71:fd:b4:6e:89:5e:28:30:1d:55:
c5:83:1c:2a:9c:86:7c:48:0b:14:16:ed:68:79:f3:
20:83:7b:22:d7:b1:0a:9d:4f:38:e7:6c:55:01:4c:
c8:3e:98:cc:88:1a:87:1e:63:62:84:05:8f:a1:72:
49:87:af:df:56:77:bc:ef:96:d6:0f:55:33:a4:f5:
b2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:50:74:E9:69:F4:B7:E8:FE:CD:34:AC:AC:5F:9F:4E:80:DB:DE:6D
X509v3 Authority Key Identifier:
keyid:94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:57:7b:16:19:d0:52:8a:13:cb:00:e4:1f:01:59:0e:a9:ec:
c3:4d:79:c5:52:e9:6a:8c:e2:6f:56:b6:ab:17:59:6a:ab:b1:
52:97:9a:16:36:58:16:9b:6e:e7:5a:a8:3c:87:97:d7:0a:a3:
73:b9:0f:77:dd:83:fa:e2:5b:25:9a:76:fd:b6:8b:1c:3e:2d:
a1:ae:6e:9b:16:d7:28:81:39:aa:71:1f:b4:b9:a9:22:83:9f:
98:25:71:d4:96:5a:db:93:f0:8b:60:c4:a3:e9:5e:1a:c7:8f:
79:9f:9c:26:04:8c:eb:6b:4f:12:96:73:88:ee:05:f4:49:a1:
37:95:e7:5c:40:8a:59:88:d7:60:65:82:40:c2:74:31:b8:06:
0d:c0:e8:b0:74:85:ec:f5:89:10:30:29:90:b7:72:f0:50:2d:
18:1e:45:52:a5:96:23:e4:71:cf:40:e3:a0:94:af:c2:b9:3f:
9f:99:42:61:cb:8d:cb:13:61:93:d9:f2:be:64:ae:3f:67:0c:
b0:17:69:da:fd:dc:80:59:e2:21:da:7a:7c:2e:31:0e:bf:ec:
2d:bc:eb:41:98:47:01:43:cb:32:f0:2e:58:01:ce:b1:48:85:
74:81:97:e1:cc:3e:6e:33:ce:0a:f1:b4:8c:33:94:5b:64:a3:
5b:f9:09:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:25:25 2025 by rpki-client