Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
File: lWmTFkJJYHEcLo7LU2vdArxyT60.mft (raw, json)
Hash identifier: b0zrM4jqKEi4i1qTaIG8ws1YsQYseplkPHeabOL4wvY=
Subject key identifier: 81:03:56:0D:C7:5E:3C:A5:1B:BC:E6:49:9D:36:38:FB:F3:6B:9D:3F
Authority key identifier: 95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
Certificate issuer: /CN=95699316424960711c2e8ecb536bdd02bc724fad
Certificate serial: 0197493173FFE0274B9AEB963C18167CB47B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
Manifest number: 03F5
Signing time: Sat 07 Jun 2025 07:01:07 +0000
Manifest this update: Sat 07 Jun 2025 07:01:07 +0000
Manifest next update: Sun 08 Jun 2025 07:01:07 +0000
Files and hashes: 1: QlwSz5QY3CNReEwoqy5_qdcxp7E.roa (hash: J1QwLI9Oak3umoZp+VK8k+3z4SfC016Ed6Yx+Y0FOX0=)
2: lWmTFkJJYHEcLo7LU2vdArxyT60.crl (hash: PAgrejlA8aIwoEurdZgEuVnb6HujTT5ELeE0ea5gkDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:73:ff:e0:27:4b:9a:eb:96:3c:18:16:7c:b4:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95699316424960711c2e8ecb536bdd02bc724fad
Validity
Not Before: Jun 7 07:01:07 2025 GMT
Not After : Jun 8 07:01:07 2025 GMT
Subject: CN=8103560dc75e3ca51bbce6499d3638fbf36b9d3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:93:17:45:c8:fe:4c:f9:ee:21:65:1c:13:ea:
2d:df:b8:c1:7d:df:3f:e2:a8:dd:87:1b:83:c0:cb:
18:69:85:3a:1b:e1:bb:20:8b:c9:34:40:b6:27:22:
5f:78:86:0b:9d:09:79:e4:7c:c0:82:79:68:9e:ff:
62:50:84:2f:80:f5:1a:34:87:97:ed:5f:bc:72:d5:
42:3f:ba:a8:19:e9:a0:02:13:1a:e2:62:13:a8:1e:
32:c5:57:09:0b:f0:85:e4:42:8f:b2:06:46:d8:ae:
d6:b8:ee:62:31:e1:dc:45:ea:83:52:64:71:47:f9:
12:97:7b:da:3d:fa:10:fe:80:fb:5a:16:6d:55:f3:
cb:83:b7:9e:14:bc:ed:b2:8f:af:9c:2c:52:03:e4:
c9:c4:ba:de:56:a7:2a:a1:ec:c1:12:50:e8:e4:e1:
b0:75:f0:9e:0a:78:11:3c:22:e8:5e:a1:9a:71:28:
69:c9:c5:ae:01:00:35:f2:ec:10:2e:11:80:4e:45:
ae:f2:b3:5c:8b:99:25:d0:de:6c:b9:e0:a2:db:e8:
dd:87:60:d3:25:33:8a:28:da:5e:c5:37:a9:ef:15:
6e:5b:fa:7d:94:bc:49:ff:4e:c7:0e:c9:ae:60:81:
77:e5:47:c3:60:03:14:d9:aa:d0:99:30:a7:73:c8:
2d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:03:56:0D:C7:5E:3C:A5:1B:BC:E6:49:9D:36:38:FB:F3:6B:9D:3F
X509v3 Authority Key Identifier:
keyid:95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:ba:df:8d:da:7a:a5:2c:42:a7:3c:4d:e5:85:b4:f1:f2:7e:
c1:41:b1:36:07:66:8a:5b:4c:20:83:f0:26:67:0b:cf:ed:11:
03:24:ce:9b:9a:91:61:7a:b8:6a:71:fc:10:85:d0:db:8c:6f:
bd:cf:c1:e4:77:ac:dd:06:70:be:64:f0:a2:ac:bf:35:ca:da:
ea:e9:bc:95:2e:f2:91:5d:d0:54:46:8e:26:b9:6c:f9:69:cf:
64:c8:11:22:25:47:1a:d7:be:c9:7f:1d:99:fd:a3:ed:a4:c4:
65:9f:e2:f3:05:1d:dc:2b:0e:e4:ed:7f:c6:fe:e1:7d:44:54:
4c:fc:62:fd:02:40:83:94:5e:bd:2b:d1:a5:26:34:59:f2:ca:
20:65:8f:56:ee:17:3a:38:a1:e7:85:b6:23:9f:ef:cc:e0:44:
02:6a:0a:9d:dc:6c:73:01:b9:fa:7a:fd:03:40:ec:fa:f8:dc:
ee:81:63:e2:e4:1a:49:f4:69:b8:30:c1:ba:a5:55:47:10:e9:
db:b5:95:81:59:f9:8d:e6:51:08:23:99:6a:59:91:e7:a5:d8:
88:7a:f4:9f:f2:50:45:a1:76:56:09:c5:53:ad:2b:96:22:ce:
2f:7f:32:a1:b6:62:66:e8:71:d1:d1:1d:4c:42:9d:25:c1:b8:
fa:6a:d4:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:23:54 2025 by rpki-client