Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
File: L45RIlad5SzVCux5NJS_HOfCX8g.mft (raw, json)
Hash identifier: TrCImETZsJ/6jVoI7IHwn05wJmNX7vu5HYQTE2KIu4c=
Subject key identifier: 2C:59:7B:CD:FB:74:FD:15:B9:A5:FC:38:A0:BE:A7:E2:48:AD:41:14
Authority key identifier: 2F:8E:51:22:56:9D:E5:2C:D5:0A:EC:79:34:94:BF:1C:E7:C2:5F:C8
Certificate issuer: /CN=2f8e5122569de52cd50aec793494bf1ce7c25fc8
Certificate serial: 0197496836A952C3F9920A6859AC62368388
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L45RIlad5SzVCux5NJS_HOfCX8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
Manifest number: 0C30
Signing time: Sat 07 Jun 2025 08:00:55 +0000
Manifest this update: Sat 07 Jun 2025 08:00:55 +0000
Manifest next update: Sun 08 Jun 2025 08:00:55 +0000
Files and hashes: 1: 4inp3rmc8abBZrSpYG-9NzczLIs.roa (hash: qFrZA2CrZBITypnTYdQbhEuRjClc/T+Pn0jtn1pc/ok=)
2: L45RIlad5SzVCux5NJS_HOfCX8g.crl (hash: a64mJpz6OCJA16JlkpZj2gFildYDHsi4oneViRnXW/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
rsync://rpki.ripe.net/repository/DEFAULT/L45RIlad5SzVCux5NJS_HOfCX8g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:36:a9:52:c3:f9:92:0a:68:59:ac:62:36:83:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8e5122569de52cd50aec793494bf1ce7c25fc8
Validity
Not Before: Jun 7 08:00:55 2025 GMT
Not After : Jun 8 08:00:55 2025 GMT
Subject: CN=2c597bcdfb74fd15b9a5fc38a0bea7e248ad4114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:61:bc:13:15:cb:8b:8d:f3:7a:3d:84:cc:a0:
67:c9:10:82:5e:7a:2c:0b:c6:84:ca:69:18:fc:27:
47:50:7c:57:27:39:a9:7b:f8:40:7b:9d:66:23:f0:
8f:35:6a:f6:e7:49:4a:21:b0:59:41:0d:3d:95:86:
22:c0:7f:61:83:4a:08:e1:1b:1a:ed:1b:45:2e:06:
6c:06:c9:72:8a:9b:9a:43:76:11:f9:7b:f7:cb:79:
07:18:a0:59:cc:06:d0:ba:47:0f:18:a5:19:2b:9b:
5a:69:8e:3d:d6:73:0d:a0:32:59:33:8a:35:e7:13:
0c:34:22:78:e6:57:34:5e:cb:a9:94:50:53:64:8c:
28:e3:e0:24:5e:53:62:30:f8:8e:e1:18:7a:85:f0:
da:b8:66:35:e6:c0:68:7c:c2:7a:e4:b7:8e:4f:d8:
33:64:21:15:ce:d4:8f:10:e6:e8:f5:ae:f4:37:5d:
25:fc:dd:1a:7d:e0:3d:f0:cf:a5:ef:24:88:33:e3:
18:bb:e3:fb:9b:2a:75:eb:35:3b:ce:86:50:61:e0:
a3:b4:9c:16:1d:ed:fa:29:72:f7:1a:4f:47:1d:c1:
1e:0c:24:15:f3:94:60:1a:91:43:89:3b:d5:47:e2:
e1:65:5b:93:d0:1c:03:de:7c:38:fe:94:15:fe:76:
cf:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:59:7B:CD:FB:74:FD:15:B9:A5:FC:38:A0:BE:A7:E2:48:AD:41:14
X509v3 Authority Key Identifier:
keyid:2F:8E:51:22:56:9D:E5:2C:D5:0A:EC:79:34:94:BF:1C:E7:C2:5F:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L45RIlad5SzVCux5NJS_HOfCX8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:12:99:6b:2f:a1:7c:73:1b:3a:8e:40:d7:f7:3b:52:20:cc:
2e:34:ad:29:f8:e9:5a:fb:a1:03:53:7b:c0:08:de:72:ce:f8:
fb:43:16:1b:3f:b2:84:a3:3e:1e:c9:1f:1e:6d:49:50:03:8e:
e5:b3:2b:4b:b8:95:b5:49:9d:6d:1e:a4:87:7c:2d:77:ce:e2:
2f:1a:b3:b0:c9:c9:97:10:6e:05:f9:5a:d9:6c:5e:fc:f9:e0:
9a:bc:7a:9a:37:3d:52:74:d0:47:07:82:55:d0:b9:c5:85:03:
23:8e:4a:9b:0c:ac:52:80:83:31:9a:ba:bb:68:56:f5:b2:8d:
ff:a6:2b:37:83:b9:ff:92:b3:18:4b:1a:4a:c2:7d:26:70:5e:
4f:0b:8c:68:41:2d:1b:39:99:f7:ef:62:f2:38:6d:ba:0e:59:
5b:50:16:ff:1e:b8:3d:95:95:3f:17:4d:37:72:29:be:78:a3:
73:b3:b0:91:f7:a6:14:bf:b6:dd:ee:f1:6a:1c:19:6d:17:29:
1c:06:ba:fc:bd:7d:b5:13:80:3f:2f:f0:00:55:58:92:10:42:
01:be:8a:ab:16:d8:8b:57:ab:a5:8e:08:f3:77:b2:00:33:a5:
e2:51:67:47:82:c6:4d:03:d6:f2:08:54:27:2b:7c:5f:91:2e:
c5:6c:2e:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:37:41 2025 by rpki-client