Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
File: lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft (raw, json)
Hash identifier: +VEBJckLasIoDAIoSsTMi30Auky9L+TtEurumspnadE=
Subject key identifier: B4:BB:D4:88:F4:C6:9B:74:1F:A1:3A:E4:4E:F5:12:2C:CE:84:68:BB
Authority key identifier: 96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
Certificate issuer: /CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Certificate serial: 01974E8E7155288F4D4774B2570A2DDAED20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
Manifest number: 0D37
Signing time: Sun 08 Jun 2025 08:00:47 +0000
Manifest this update: Sun 08 Jun 2025 08:00:47 +0000
Manifest next update: Mon 09 Jun 2025 08:00:47 +0000
Files and hashes: 1: ew1zgYS28PrRo2_vyICjeeeZzZk.roa (hash: Fhi/oH9QUYxK/iP3UryNP+xQPg6T4wc9jRF/RdGEuMY=)
2: lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl (hash: VMarFmxDScwldPYarZenkbzXeiUlUo2QH6T0nTbTrOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 08:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:71:55:28:8f:4d:47:74:b2:57:0a:2d:da:ed:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Validity
Not Before: Jun 8 08:00:47 2025 GMT
Not After : Jun 9 08:00:47 2025 GMT
Subject: CN=b4bbd488f4c69b741fa13ae44ef5122cce8468bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:47:f3:cd:da:0f:aa:ba:35:24:c9:b7:8b:0d:
15:e0:ea:6a:7d:dc:5c:ee:f6:60:d2:a5:39:ab:00:
ce:98:66:57:e7:13:87:4e:95:5a:47:c9:af:d0:c4:
12:92:36:09:7b:b8:66:7a:98:4b:b7:ff:88:d1:3e:
e8:71:11:4b:ae:65:8e:7f:66:89:e3:c2:83:06:c6:
10:80:63:28:1f:9d:29:ad:1b:ba:f5:2e:d0:e3:ae:
90:33:ea:75:e6:7c:97:9f:15:57:f4:56:a5:7c:6a:
1f:ed:c7:60:ad:ae:3e:fb:b7:a9:ae:ff:2c:42:07:
c4:b4:ab:21:d2:40:ba:7d:e3:dd:00:66:55:39:27:
7a:f0:4a:82:c8:26:f2:fa:67:43:9d:63:55:8b:92:
7b:5c:17:2e:cc:5c:53:fb:78:31:b5:3a:f1:de:47:
83:c1:80:44:f6:bb:21:77:0e:c4:c1:d2:35:99:f8:
a5:4e:f4:f4:8e:b0:a2:48:69:e6:21:f4:8d:37:5a:
b1:52:a8:86:dc:3e:81:28:9e:aa:8b:de:e6:a0:23:
f1:90:f9:60:ce:fa:e0:28:14:dd:b2:4f:a6:b0:bd:
70:ac:8e:71:11:01:77:5c:64:fa:c9:77:0c:e3:cd:
03:d0:5e:2c:51:1b:23:60:09:1c:3d:01:0b:fd:83:
6d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:BB:D4:88:F4:C6:9B:74:1F:A1:3A:E4:4E:F5:12:2C:CE:84:68:BB
X509v3 Authority Key Identifier:
keyid:96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:d6:38:cb:b9:b4:3e:66:9b:aa:d5:fc:5e:ab:49:08:98:75:
5e:81:b9:44:d2:fd:11:2a:ae:2e:cf:5c:95:16:e1:88:88:85:
eb:e9:a1:66:8b:07:64:53:11:45:82:e5:e2:dc:7b:f1:fe:14:
43:be:17:cb:6f:59:bd:8c:32:96:00:6b:fd:81:61:f8:f5:41:
3d:92:ef:8f:dd:8a:e7:9e:e1:09:19:87:cb:d7:a3:52:92:80:
45:75:6c:51:3b:60:01:69:e5:05:7c:c1:44:c1:4d:6b:c2:91:
dc:cd:d9:36:c6:a6:40:2d:3e:4f:b9:46:de:f6:2f:75:10:05:
72:dd:2d:53:30:f3:a7:bf:d5:7d:15:20:70:d2:ec:79:4c:39:
e0:58:94:a2:a5:25:92:33:61:86:e2:4a:bf:af:3a:c1:21:f2:
f4:b2:93:c3:3b:ef:d5:f1:97:aa:9e:34:77:e9:1c:dd:6f:db:
3e:ae:cd:58:b1:83:69:dc:a5:d0:f9:63:09:ef:58:92:be:58:
3c:9e:c9:46:ec:6f:c7:49:9f:65:73:04:38:c5:8d:18:07:c9:
ee:b9:77:c8:dc:e3:43:e7:0d:6c:db:73:4b:5c:46:38:de:87:
fb:ef:94:bc:f1:a8:47:e3:73:48:66:e4:9a:72:9b:66:59:f4:
fd:43:0d:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 17:47:49 2025 by rpki-client