Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
File: lBZrcEhD09l1QJXIOpG0k4KCAKI.mft (raw, json)
Hash identifier: nqw40jEI5uSbbNC9J030l5U43QELRrAy2mKPigHmowc=
Subject key identifier: 39:1A:55:C5:DE:0D:A2:5F:CA:5F:2A:EA:59:60:6F:CE:ED:5D:19:25
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 01973D9B0CDDB45AFBA6F283B548121DD26C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
Manifest number: 162E
Signing time: Thu 05 Jun 2025 01:01:00 +0000
Manifest this update: Thu 05 Jun 2025 01:01:00 +0000
Manifest next update: Fri 06 Jun 2025 01:01:00 +0000
Files and hashes: 1: 7NOWSwr6Ix9WqMtFCauUoXq2B4E.roa (hash: 71eyC9fYC2VExHc19u8sJwP29ASsjLuAVH+CBPHOF2M=)
2: Ruw-x4zfVCc3GTiQCnnMayYLrMQ.roa (hash: VPqD7NaSAxVUR7gCvmAQcQt1SUni3lPjk7OqIt9I1TI=)
3: Z7uuC5XE4-fMCsGBtqQw7mSeH9U.roa (hash: W7maKhHagBpEQgNK15fnWc66E1ZuDuwRIn7gOriSZAo=)
4: h9d0ktI5MHIktnWrhY2zneTKIew.roa (hash: 9qkOa4Wd+V/Z+xQC2CIhkz1VoRa5qCsYXEwwfKMwhGQ=)
5: iLiQdmyWfTSKLtGAKTv8i9pD7b8.roa (hash: Kr8U4lUGZbLkZ8pUjbEG8aEkHuf+c7USfKgTZhieF7c=)
6: lBZrcEhD09l1QJXIOpG0k4KCAKI.crl (hash: 8R0ME3TRZB0mytv+XrE9UixVcINm6R8er6hNA2myVJA=)
7: zIA6BDrr_xrDLDlzAGpw_9P6klo.roa (hash: pfzDsna4zGoCQX7v3ji49EBWdSr9XYlq27X+4n1BNgY=)
8: zRIEfiHVhkzqHiYdm3McIGPDP2Q.roa (hash: 32bioXyHcsiw84uow4i7c6KhRJSD3457u6OM44k/3vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 01:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:3d:9b:0c:dd:b4:5a:fb:a6:f2:83:b5:48:12:1d:d2:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Jun 5 01:01:00 2025 GMT
Not After : Jun 6 01:01:00 2025 GMT
Subject: CN=391a55c5de0da25fca5f2aea59606fceed5d1925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e9:a0:2c:bf:2b:c8:91:99:ab:ce:0a:e3:82:
ee:aa:67:7c:f5:d0:41:9a:3e:97:02:cb:67:88:9b:
6d:18:28:9d:3c:85:84:7c:12:b9:ba:4e:41:ad:04:
f6:78:05:37:6f:dd:75:53:c0:8f:fd:3e:7a:48:a5:
e0:cf:ec:41:5f:40:b7:a4:19:ed:30:ee:0a:bb:9c:
34:62:62:79:78:ed:31:d7:ad:fd:0d:bd:31:40:b1:
f2:9d:8e:a0:16:66:e9:6f:33:31:ae:fd:da:99:08:
33:ed:7b:0b:66:f4:79:6f:f5:c2:5c:6a:dc:8e:a8:
3d:7c:08:13:76:88:78:ad:8e:94:b3:e8:46:af:5d:
9a:f9:d2:c4:65:aa:62:15:b1:8a:79:d4:cc:0f:ad:
3c:f6:fd:16:46:d2:cf:85:68:fd:e4:2f:1d:c9:0b:
ec:d9:71:3b:78:9b:f9:b9:30:8c:e6:ef:0a:46:80:
c5:0b:32:92:c2:e9:1e:8e:8b:67:ac:c1:3e:88:4e:
4e:c8:69:b6:5d:10:01:35:7f:7f:29:d3:b8:bd:1c:
37:59:f8:7f:83:a1:ce:fd:2d:b4:dd:9f:73:5b:4d:
40:67:2b:3c:2d:e0:0e:a3:39:6b:2e:6c:14:50:1d:
1e:1e:b0:9c:55:68:e7:37:fe:02:05:00:04:04:b0:
2e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:1A:55:C5:DE:0D:A2:5F:CA:5F:2A:EA:59:60:6F:CE:ED:5D:19:25
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:71:94:2e:38:25:8e:40:45:1f:22:34:57:00:09:b6:99:c7:
1a:f4:27:bf:40:17:32:32:48:c9:25:a1:02:34:24:c6:e1:11:
9f:6e:db:3a:56:34:c5:4f:fa:09:87:5c:c1:3b:61:c5:a5:d6:
ed:14:44:c9:66:83:43:ca:57:68:27:12:6b:16:28:d2:00:70:
3d:36:b4:6d:4f:41:c9:f1:22:f3:f2:91:c6:25:dc:a6:65:91:
84:c0:6d:d1:20:c5:25:44:2e:8a:d9:a6:14:24:d7:40:2c:9f:
81:27:f0:80:f9:df:c0:67:d6:86:70:77:d2:85:01:b0:eb:fb:
79:52:e5:62:11:3e:51:34:18:3d:ea:0d:9d:b9:6e:51:94:8a:
38:37:df:ff:2f:12:00:13:fb:97:c7:58:e8:20:1a:f2:e3:84:
a4:ed:f8:e5:d2:01:f2:63:6c:f8:9c:c0:0c:40:a9:b2:59:4d:
db:fe:d8:4c:e0:58:73:b2:49:dc:4f:13:d2:6d:5c:5b:85:bd:
48:39:93:48:18:f8:0d:9f:62:96:ac:55:76:d3:78:17:f1:4c:
4c:10:10:25:b7:02:15:32:2f:8e:95:b1:67:78:63:b0:00:b3:
bd:9d:6f:0c:fd:d8:c8:07:4f:07:c7:c6:30:d7:aa:7a:17:b2:
f8:16:6b:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 07:10:19 2025 by rpki-client