Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/l2aFR6QzND3em7NllbyQO08UlgQ.mft
File: l2aFR6QzND3em7NllbyQO08UlgQ.mft (raw, json)
Hash identifier: 8EtkphDjifzRTMf0rEKMoA6GCWYtucyZLTJu/wHCZio=
Subject key identifier: E0:69:72:B3:2A:4A:CF:B0:68:4A:99:D2:16:67:61:D9:41:2F:D1:21
Authority key identifier: 97:66:85:47:A4:33:34:3D:DE:9B:B3:65:95:BC:90:3B:4F:14:96:04
Certificate issuer: /CN=97668547a433343dde9bb36595bc903b4f149604
Certificate serial: 0197458AE0EA07EADC252B29E6CD92B938B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l2aFR6QzND3em7NllbyQO08UlgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/l2aFR6QzND3em7NllbyQO08UlgQ.mft
Manifest number: 157F
Signing time: Fri 06 Jun 2025 14:00:18 +0000
Manifest this update: Fri 06 Jun 2025 14:00:18 +0000
Manifest next update: Sat 07 Jun 2025 14:00:18 +0000
Files and hashes: 1: 4iS4euTiQtItVR9HBATrZ2d1jzs.roa (hash: Nz/wJMhE4IZvQI592qdr0LdN9YN/43igAFLk6lhCh5w=)
2: l2aFR6QzND3em7NllbyQO08UlgQ.crl (hash: NY2EMur/R8pHzIaCcZPhQ3MREyvzK5he7Y78FtWNJvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/l2aFR6QzND3em7NllbyQO08UlgQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/l2aFR6QzND3em7NllbyQO08UlgQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/l2aFR6QzND3em7NllbyQO08UlgQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 14:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:8a:e0:ea:07:ea:dc:25:2b:29:e6:cd:92:b9:38:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97668547a433343dde9bb36595bc903b4f149604
Validity
Not Before: Jun 6 14:00:18 2025 GMT
Not After : Jun 7 14:00:18 2025 GMT
Subject: CN=e06972b32a4acfb0684a99d2166761d9412fd121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:92:4c:ef:5a:c2:be:5c:29:64:39:62:8a:59:
1e:b7:85:9d:f0:84:ba:90:ae:0d:50:c2:50:7d:ca:
7f:11:02:a9:f3:3f:02:e6:73:47:f0:d5:27:6f:7a:
38:40:79:a3:d5:9f:19:59:c7:2f:43:20:00:5b:9c:
61:79:78:a8:e8:f3:e5:cd:a0:4d:74:5e:9f:57:c4:
b3:e1:75:86:77:6c:3a:87:15:bf:a0:f9:b9:4b:b4:
52:1b:0e:11:ca:9b:73:6c:0f:f2:53:20:f4:22:fa:
07:2b:7e:65:81:8e:74:a9:94:4b:8b:29:cf:9c:79:
ed:dc:5f:18:93:7a:69:8d:b9:12:00:1e:52:53:c9:
28:79:97:ff:0a:65:c6:a3:0f:25:d2:87:a2:b9:3d:
64:a7:10:47:a7:99:15:75:6e:01:cb:cb:1f:f9:f4:
44:ce:c8:d6:e5:53:b2:bb:2a:73:fc:83:0b:a5:85:
01:d5:9b:c3:63:af:45:a2:03:ac:00:9f:aa:19:19:
6e:d1:49:d2:57:d9:ad:ab:48:7e:13:b9:f3:39:ac:
24:cd:e8:80:b9:86:b6:e4:fa:6c:f0:f5:c4:ed:c3:
cf:35:4e:6e:6d:30:89:a0:de:69:cd:13:60:7a:e4:
d2:a8:70:83:c2:48:82:7c:d5:34:32:7b:95:69:f1:
0f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:69:72:B3:2A:4A:CF:B0:68:4A:99:D2:16:67:61:D9:41:2F:D1:21
X509v3 Authority Key Identifier:
keyid:97:66:85:47:A4:33:34:3D:DE:9B:B3:65:95:BC:90:3B:4F:14:96:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l2aFR6QzND3em7NllbyQO08UlgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/l2aFR6QzND3em7NllbyQO08UlgQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/l2aFR6QzND3em7NllbyQO08UlgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:c0:65:47:06:2c:31:22:5f:b8:05:e9:eb:d1:10:e3:8f:b9:
80:70:d2:ef:c7:33:7d:e3:a2:7b:d6:b6:1d:9e:15:da:bf:69:
71:36:c9:7f:fa:9e:ae:99:cc:e0:a5:86:e2:db:21:77:45:1f:
50:f6:0d:1b:9f:95:0e:66:86:c7:eb:ce:9c:9d:17:7c:b4:57:
6e:02:ce:7a:2c:e6:fa:d2:51:3a:43:00:86:2a:33:e9:bf:c5:
92:39:80:62:b2:dc:de:98:3a:66:06:f5:75:75:e4:e0:66:c4:
c1:50:98:af:cd:0c:c2:6d:20:03:65:e1:b7:d6:50:73:a9:8f:
ed:37:76:09:7d:e4:13:db:5b:6c:f5:16:42:42:c6:33:23:5d:
30:a8:8b:fa:87:a2:0f:a3:8e:0a:9f:e3:bc:c4:8c:ea:e4:0b:
16:99:27:4a:c4:0d:f9:dc:7e:67:6c:c3:04:e9:24:c8:ad:fc:
cf:53:5f:8d:b9:56:7f:50:94:00:1a:1d:96:66:36:e0:5a:1a:
12:a1:2b:9b:04:ea:2a:49:74:96:64:13:c0:1a:68:9e:ec:41:
15:7c:10:c1:73:ce:e2:9e:4c:07:b5:8b:ed:89:52:04:74:dd:
5e:38:8d:72:2a:76:35:a8:a0:11:97:dd:f6:a4:c5:6e:4e:90:
d5:62:7a:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:16:32 2025 by rpki-client