Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.mft
File: LZKAom-DFWYViyYXyV0Z0zjuFdM.mft (raw, json)
Hash identifier: XIm4GDASeJO1YInviI2Y0HjTfkHMDlCnk6gtyhgYpR4=
Subject key identifier: 1D:00:5A:06:23:72:0A:D5:A0:57:7B:E7:A7:62:9A:AC:AA:6A:03:B0
Authority key identifier: 2D:92:80:A2:6F:83:15:66:15:8B:26:17:C9:5D:19:D3:38:EE:15:D3
Certificate issuer: /CN=2d9280a26f831566158b2617c95d19d338ee15d3
Certificate serial: 0197CACC4C39A28D590AC5B6F4BAD2B0E3D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LZKAom-DFWYViyYXyV0Z0zjuFdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.mft
Manifest number: 02D4
Signing time: Wed 02 Jul 2025 11:01:15 +0000
Manifest this update: Wed 02 Jul 2025 11:01:15 +0000
Manifest next update: Thu 03 Jul 2025 11:01:15 +0000
Files and hashes: 1: LZKAom-DFWYViyYXyV0Z0zjuFdM.crl (hash: egI3Ky8OQ69fKzsWghpjUpZ6ksT9tbl82Alaw1lLKWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/LZKAom-DFWYViyYXyV0Z0zjuFdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:cc:4c:39:a2:8d:59:0a:c5:b6:f4:ba:d2:b0:e3:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d9280a26f831566158b2617c95d19d338ee15d3
Validity
Not Before: Jul 2 11:01:15 2025 GMT
Not After : Jul 3 11:01:15 2025 GMT
Subject: CN=1d005a0623720ad5a0577be7a7629aacaa6a03b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f8:42:85:94:a7:85:f9:79:2b:a0:87:c2:f2:
d3:d0:36:f5:f8:08:22:18:33:76:e8:41:18:19:0a:
55:ad:45:82:d4:9f:17:13:c9:63:bc:cb:24:46:a2:
93:20:3d:bb:2b:6a:2f:8e:ca:98:67:4d:d0:44:15:
d8:fa:7c:4e:28:5e:4f:21:95:70:74:ad:6a:bd:29:
8c:75:cc:1f:8b:b3:df:db:c5:f3:a2:44:38:17:30:
f7:0b:7e:2b:d7:fc:59:4d:b4:e6:02:30:82:0f:e3:
69:9a:50:e9:60:b1:b2:37:07:28:46:b0:9a:c6:9e:
da:f9:3d:98:40:ea:95:79:2d:2c:b8:4e:bb:b8:a6:
65:54:3e:53:15:f5:0c:1c:b0:c2:29:39:a8:1c:d6:
f5:c5:4b:1e:0d:4f:44:7e:9e:85:da:21:c2:b4:48:
ed:f2:ab:be:31:4d:07:66:b0:20:8b:19:2d:e9:7e:
9a:60:19:30:fa:ba:bd:db:65:09:e0:ee:a7:80:09:
00:40:e3:61:09:84:3d:35:c8:e9:43:31:b8:f4:d9:
e7:0b:8f:ef:df:c4:e4:7a:14:26:48:43:c3:27:2b:
52:f7:d1:f2:36:eb:9b:a5:65:b0:49:52:42:f9:03:
c9:8d:84:84:3f:8a:85:5b:25:c0:f8:6a:ed:35:e5:
d7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:00:5A:06:23:72:0A:D5:A0:57:7B:E7:A7:62:9A:AC:AA:6A:03:B0
X509v3 Authority Key Identifier:
keyid:2D:92:80:A2:6F:83:15:66:15:8B:26:17:C9:5D:19:D3:38:EE:15:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LZKAom-DFWYViyYXyV0Z0zjuFdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/be730a-27e6-4136-b2c5-cae40384c6bf/1/LZKAom-DFWYViyYXyV0Z0zjuFdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:84:f1:07:ee:c5:fb:0a:f4:12:15:a6:a6:24:89:fd:67:54:
47:f8:1a:72:0f:06:43:7d:3f:df:98:54:98:38:66:a4:18:ec:
8b:5a:f1:c5:ea:6e:48:dc:68:4a:c9:44:bd:9e:57:48:34:40:
ce:2b:c9:14:2d:6d:5e:89:46:27:20:36:45:16:be:ba:bc:6b:
09:b0:cc:be:36:1f:05:db:58:2e:34:d3:7a:08:28:c9:a6:67:
f6:8f:12:f1:dd:eb:9e:13:6a:54:01:33:f6:79:24:66:01:be:
90:e9:da:87:e6:e2:f9:e4:71:12:ff:ea:8d:23:22:65:2b:6a:
25:e6:2f:2f:3b:88:16:5c:80:15:9f:bc:a2:81:1a:bf:ee:dd:
2a:09:3b:55:a9:6e:ec:d8:3e:41:4f:e0:f1:fe:18:a5:ad:df:
dd:00:a0:77:cf:a4:90:7e:1c:2c:bb:05:b8:99:95:37:ed:6e:
56:be:c1:9b:94:7e:6e:54:52:b6:79:06:92:2a:a0:1b:21:4f:
4e:ab:c9:a5:a2:8e:27:d3:9b:33:d0:18:6f:ae:04:7a:b0:c6:
a6:b6:af:bd:d2:ba:07:53:9b:7e:37:c8:f8:0b:79:62:ed:97:
a5:fd:79:27:98:43:4c:d2:32:8c:80:61:3c:73:9c:31:37:f3:
c2:c9:86:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:55:48 2025 by rpki-client