Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
File: Lg1AUXqHO33CrrKNDtai-ZOj100.mft (raw, json)
Hash identifier: eDNxE85XdRqmSbZf+WtUOkQXhPnJ7e6unEbgkn9SApQ=
Subject key identifier: 16:0D:A2:10:BB:F4:75:C1:4F:65:D5:9D:00:F5:02:55:40:A7:7C:1D
Authority key identifier: 2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D
Certificate issuer: /CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d
Certificate serial: 0197526B925D611EC367057ACE7255DC4C1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
Manifest number: 1267
Signing time: Mon 09 Jun 2025 02:01:10 +0000
Manifest this update: Mon 09 Jun 2025 02:01:10 +0000
Manifest next update: Tue 10 Jun 2025 02:01:10 +0000
Files and hashes: 1: Lg1AUXqHO33CrrKNDtai-ZOj100.crl (hash: OodGrbva+MtX8DzEJmEsG0TQGl+kKSIhwi0Yq+TelJc=)
2: g5xnqTmVEZ7ZlTEWt6r937lOqAI.roa (hash: W28IbFUf6cfPKtxTT1Bs+8ajjdC7s7Nv39N6DzwHNwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:6b:92:5d:61:1e:c3:67:05:7a:ce:72:55:dc:4c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d
Validity
Not Before: Jun 9 02:01:10 2025 GMT
Not After : Jun 10 02:01:10 2025 GMT
Subject: CN=160da210bbf475c14f65d59d00f5025540a77c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:08:aa:e8:f2:1f:a3:68:f5:e2:d9:2f:55:fa:
14:b1:a6:ed:67:55:f6:c8:16:6b:2b:d5:de:31:83:
41:73:69:36:e1:49:1b:c4:30:61:f0:a1:a4:10:e6:
cd:9e:72:c4:1d:c9:53:90:74:96:b8:cc:7a:5e:e8:
d7:fa:5d:0d:09:48:3c:0d:1b:01:9d:46:5a:96:95:
ce:08:b1:ed:81:7a:15:b5:4f:0c:5c:c9:97:6c:27:
44:fa:b2:ba:a7:22:6a:7c:95:42:06:35:20:e5:00:
3b:e6:e5:28:46:44:b6:41:2f:f5:20:60:97:7f:22:
19:8d:09:f4:38:25:a1:09:d6:29:41:0e:d2:1c:1c:
e3:1f:ff:50:73:21:54:12:2a:56:fa:57:e5:4b:5f:
f2:53:06:42:2b:3d:d6:9e:e6:29:f3:d3:34:83:f8:
81:5f:0c:92:75:16:0e:48:3d:98:ff:30:b7:93:01:
6b:c6:d1:71:62:e1:ac:2c:b6:a0:05:41:c0:73:30:
04:2c:de:dd:8a:66:ae:b0:95:6d:47:1b:35:1b:d8:
1b:a6:a1:7e:a1:9d:03:a4:2b:aa:2f:f9:2e:1e:9d:
0a:39:d1:8b:aa:08:26:5f:13:55:c2:34:82:07:af:
51:5f:e4:0b:a4:61:cf:24:c5:57:20:15:43:7c:e4:
96:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0D:A2:10:BB:F4:75:C1:4F:65:D5:9D:00:F5:02:55:40:A7:7C:1D
X509v3 Authority Key Identifier:
keyid:2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:15:31:71:8e:c0:6b:4c:93:75:12:da:07:1a:90:cd:11:00:
8a:72:ee:c4:53:e9:1a:08:86:f2:a6:cc:5d:59:52:b4:96:b5:
c7:84:7c:fa:88:00:2a:50:e1:9f:f5:98:01:98:a1:40:68:d0:
9b:5f:9d:2f:41:26:f7:da:f4:12:8d:84:fd:17:8f:f0:d5:b9:
73:56:aa:71:f0:a4:01:ae:0d:b7:f7:ac:cb:0c:cd:05:b6:13:
5a:35:bb:80:ec:9d:e1:cc:ec:32:a5:9e:01:e8:3f:b6:1b:d3:
f3:9b:7a:01:dd:13:28:37:d8:d2:db:83:e1:24:53:54:46:b8:
77:ec:ae:01:a1:da:de:a3:bc:ab:e8:f9:d7:1e:59:4f:a8:c1:
e6:03:5a:5d:96:65:fd:d7:1e:c6:16:12:e8:eb:66:5f:1d:60:
93:a9:64:3f:70:1c:b7:c0:f6:e2:98:ff:a3:fb:45:35:f3:6e:
bc:eb:2a:16:08:8b:0c:04:ed:91:05:55:7d:45:3c:d2:a1:95:
ae:96:4e:59:33:61:c3:e1:74:da:49:a2:b4:09:26:d6:00:57:
96:68:d3:9e:d4:1e:92:83:f3:73:3f:83:b6:a6:51:3a:03:b5:
d6:29:e4:1e:cf:06:f9:2a:b6:f3:07:ee:fe:a0:f7:54:73:d1:
ea:99:93:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 11:57:02 2025 by rpki-client