Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: L7waBYwhtR5GxbZPBi3Br/8JwIgSxzV9U3hXD1X4KVY=
Subject key identifier: A3:F3:38:9E:70:68:79:25:9F:68:B2:FA:28:AC:00:E8:FF:FB:81:BD
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 01974F3373321F3393DD096A107D9FB00CE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 01EE
Signing time: Sun 08 Jun 2025 11:01:01 +0000
Manifest this update: Sun 08 Jun 2025 11:01:01 +0000
Manifest next update: Mon 09 Jun 2025 11:01:01 +0000
Files and hashes: 1: 32WtKH3EfM7-S6v7tTmyQcU-a9s.roa (hash: Fn/80HetfWjEwrwQy2saw9cqkA9VjrY/6O3eDGyjCbw=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: 9XljFtGqdd7kg6AP7bQC07OJb0XDVr9a4X1aVEXXJnE=)
3: ef1K6dC6_lGn3rxGTHxMT8fcB0w.roa (hash: KYKxli5ZRinkaBImEiWWBBcr8lpZPoWAqbzOeddaU7I=)
4: pLMH0ozDSiYZXzqiHdSEzphkheE.roa (hash: CFbM9K2hMJ4HkUaVbEdJq2H47xHqfonXY2RvABtKsw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:33:73:32:1f:33:93:dd:09:6a:10:7d:9f:b0:0c:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Jun 8 11:01:01 2025 GMT
Not After : Jun 9 11:01:01 2025 GMT
Subject: CN=a3f3389e706879259f68b2fa28ac00e8fffb81bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:87:f8:da:c3:a9:06:be:fb:a2:e8:20:ac:70:
3c:e1:19:fc:f4:14:c8:b5:95:fb:4c:77:5c:39:6a:
8d:4d:8d:93:a1:65:c6:3e:ea:60:8e:43:0c:40:da:
06:ce:c1:7a:48:35:3b:39:26:10:43:e3:d1:15:64:
eb:57:ac:a7:b3:e7:eb:80:27:89:6e:be:e4:af:f2:
7c:5c:2f:8d:0f:5c:68:63:cd:ac:19:48:9b:73:1f:
a1:6a:16:68:5b:a5:f4:20:17:4e:d1:55:24:bb:e4:
91:88:8c:85:02:fc:82:38:38:db:b2:a9:4a:bc:74:
f1:29:58:53:a9:8f:0f:55:88:55:74:43:7e:11:09:
45:ea:a4:f2:c3:12:3b:50:8e:0d:0d:45:d0:d5:0a:
54:3f:0f:ef:6f:d8:fe:53:73:e3:83:d5:0c:26:50:
70:f3:ca:18:35:76:4b:3e:34:55:d6:45:5d:74:8c:
60:a7:2f:cb:4b:a5:af:c2:b7:c0:22:aa:d5:2d:ea:
f3:ab:37:a3:fc:1e:77:d1:ee:92:fa:06:03:73:b9:
f4:9e:3f:16:5c:40:9d:4e:64:a5:19:2d:d5:57:4a:
ad:b2:aa:2f:9b:74:c3:c0:3e:79:6f:b0:5b:20:dd:
cc:0e:09:8c:f1:41:63:ff:ee:45:c8:66:54:c4:50:
92:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F3:38:9E:70:68:79:25:9F:68:B2:FA:28:AC:00:E8:FF:FB:81:BD
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:c3:36:17:14:6c:b6:65:2a:76:b3:e4:20:b4:2d:1c:ec:6d:
30:23:05:33:74:32:24:c6:1f:cc:2e:4a:7d:85:18:f7:32:01:
06:e1:a7:a0:9d:0c:4a:8e:f7:e3:e0:b2:e0:d3:7b:bc:25:08:
7d:c4:e3:f7:8c:d5:93:bf:00:b8:63:73:23:38:fa:01:6b:4e:
58:59:5e:79:a0:fa:44:69:06:c5:53:41:ac:a5:44:c8:dc:1a:
31:66:c2:32:72:ba:f7:0a:c3:98:f9:5c:86:14:7e:7a:f3:da:
bd:8a:bc:d6:6c:71:25:fd:8a:83:6b:43:e3:95:9b:ef:e5:87:
a0:80:19:31:eb:08:eb:e9:00:99:25:a2:c3:f1:74:97:c0:58:
f6:21:d4:98:92:c9:b6:77:a9:40:15:fd:41:e7:b5:ff:6f:33:
15:fc:20:55:a4:12:93:a6:a5:fc:bf:b5:0c:9b:f9:f9:a6:3c:
89:90:e0:30:8b:f7:9b:22:96:6d:42:21:5d:57:26:ab:e2:77:
27:56:d4:80:af:9e:0f:6c:2c:da:bc:44:ff:65:33:48:d6:aa:
76:a2:99:19:f6:20:ff:98:4f:f2:e3:63:b6:dd:08:f3:30:99:
f5:7f:19:a4:9d:b6:03:92:fa:19:ff:d0:76:90:26:57:8e:29:
62:cb:f7:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:53:04 2025 by rpki-client