Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft
File: lZI0IMz-4DjNyutDkjEKBZivej4.mft (raw, json)
Hash identifier: ndvJ6sTBrwwLflpT5z0pX3Mg6ikvpq9NAbG9USEsBTc=
Subject key identifier: 58:1B:5E:95:BB:AD:7A:5D:65:7B:A1:D0:AF:BD:E4:62:67:CD:0D:E8
Authority key identifier: 95:92:34:20:CC:FE:E0:38:CD:CA:EB:43:92:31:0A:05:98:AF:7A:3E
Certificate issuer: /CN=95923420ccfee038cdcaeb4392310a0598af7a3e
Certificate serial: 01974B5699A023BC75BD7A3E315BB5141D8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft
Manifest number: 0184
Signing time: Sat 07 Jun 2025 17:00:55 +0000
Manifest this update: Sat 07 Jun 2025 17:00:55 +0000
Manifest next update: Sun 08 Jun 2025 17:00:55 +0000
Files and hashes: 1: fATmKoPkxnFaeIEAAJJ02F6yM_M.roa (hash: 9vZ8Uz6k4By0kjf2AHSVtoIff7eSff80iL0R5CgM+Wc=)
2: lZI0IMz-4DjNyutDkjEKBZivej4.crl (hash: w5xiVkzhwqE/Yo9b1NCwHw/ia7MO+1b4w2kyIs7Hxo8=)
3: nxwl4psj0ZeUsfjLgqXGlryR_84.roa (hash: V1Lgl4QJ6FifoZAOxyZaoWJeRw45hAvPFwT3/eP0Ph4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 17:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:99:a0:23:bc:75:bd:7a:3e:31:5b:b5:14:1d:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95923420ccfee038cdcaeb4392310a0598af7a3e
Validity
Not Before: Jun 7 17:00:55 2025 GMT
Not After : Jun 8 17:00:55 2025 GMT
Subject: CN=581b5e95bbad7a5d657ba1d0afbde46267cd0de8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:22:02:23:f3:4d:74:e5:cd:df:86:e0:38:9a:
ed:4b:f3:9f:f5:25:e1:f5:89:87:74:be:1e:85:a9:
da:5f:14:5b:f9:71:75:7b:59:23:af:5b:73:13:fb:
5b:aa:16:fe:ff:e2:18:3c:6a:ce:06:50:ae:04:38:
a6:4f:16:e2:b2:0c:f4:0f:3a:40:eb:a0:b8:69:e8:
c2:4a:e2:7c:46:36:32:58:cc:9d:47:4e:7f:2c:aa:
28:63:ad:a0:56:b2:72:f9:d4:9f:28:eb:8a:0b:f2:
84:ea:b1:6f:9f:09:7f:9f:5a:b2:60:8c:86:d7:dc:
44:45:6d:a2:e9:d1:ee:99:53:2e:63:02:96:bb:a2:
20:f5:31:ba:d9:7e:f1:38:f8:6e:80:78:81:41:4f:
03:bf:a9:fe:4c:63:0d:71:a8:dc:63:5c:11:31:86:
38:81:9b:1e:c4:ea:56:4b:fe:7b:24:16:dd:6b:b9:
dd:b9:55:fe:78:4b:c8:25:3b:8f:58:bd:fc:af:b4:
d4:d6:94:ac:16:cd:8e:fd:c2:a3:8e:c5:6c:e5:24:
e8:77:0d:c0:b8:1b:c4:0d:1e:fb:75:8b:2b:9f:1e:
7e:5d:bb:56:17:54:25:1f:da:3a:c9:ba:72:f7:0e:
a6:3e:6c:b9:e9:b5:e9:7f:1d:cd:74:f7:a6:d9:77:
b5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1B:5E:95:BB:AD:7A:5D:65:7B:A1:D0:AF:BD:E4:62:67:CD:0D:E8
X509v3 Authority Key Identifier:
keyid:95:92:34:20:CC:FE:E0:38:CD:CA:EB:43:92:31:0A:05:98:AF:7A:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:e2:28:49:e5:e4:28:10:41:2b:64:f8:5a:42:45:ca:02:cf:
9d:68:30:89:45:8e:99:af:54:60:46:b4:1d:fd:11:08:8f:18:
01:47:b0:d7:47:8a:67:3c:49:6a:99:e3:25:1a:60:14:51:f5:
07:88:4e:e7:1c:87:3c:f5:0b:45:52:d9:b9:c0:06:82:a1:c8:
c7:28:a3:8d:31:fd:ce:da:d8:89:cd:33:ad:3f:22:7a:9a:fe:
67:10:4e:86:f0:07:2a:b4:59:57:e6:16:74:1a:7f:74:40:c9:
17:a6:bf:66:83:4b:63:7b:9f:f6:1d:4e:28:69:48:60:a7:80:
40:3b:af:54:5f:cc:48:4a:d2:18:10:40:d1:58:85:16:b1:a0:
e0:0c:25:86:44:e7:c8:1d:ad:07:04:a8:05:28:40:5f:bb:5d:
35:3b:c2:18:6c:c8:40:66:67:b8:41:8e:f6:1e:b0:d8:9a:07:
4b:db:44:72:cf:8f:89:46:71:2d:4c:da:39:6d:1a:f2:f2:20:
90:7e:72:7c:db:c2:2e:9e:01:47:5d:03:b5:0b:75:d1:4a:bb:
63:f1:25:0e:30:bd:cb:53:9d:78:84:7e:76:64:a2:a3:61:84:
87:7e:62:46:66:b0:c5:0f:66:b8:60:6d:35:b0:da:d7:7b:2b:
db:b2:63:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:57:35 2025 by rpki-client