Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: 7MpdW8L6lr39RjyN4RFUZM7gylzReluu9cRT7tjBXpA=
Subject key identifier: 1D:CB:C8:CF:3C:93:EB:89:74:5D:7E:A5:42:A6:57:FF:51:21:4D:E0
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 019764A80C9E6D40C05925CD72994197512E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0CEA
Signing time: Thu 12 Jun 2025 15:00:24 +0000
Manifest this update: Thu 12 Jun 2025 15:00:24 +0000
Manifest next update: Fri 13 Jun 2025 15:00:24 +0000
Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: 1C8gRSbN/ySEXjpty8qSM3MWN0jvuoT1tU0/5iJAuMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:a8:0c:9e:6d:40:c0:59:25:cd:72:99:41:97:51:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Jun 12 15:00:24 2025 GMT
Not After : Jun 13 15:00:24 2025 GMT
Subject: CN=1dcbc8cf3c93eb89745d7ea542a657ff51214de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:93:46:1e:f8:4c:4a:09:a7:70:fb:41:3b:e0:
90:92:03:bb:10:2b:c1:ac:f2:34:f8:c1:74:b6:04:
cb:91:6e:f5:56:5a:fc:b9:7d:be:f6:31:9d:ac:a6:
fd:0e:0f:d4:f6:49:53:a0:ce:7c:84:3e:ad:02:28:
d1:3a:66:91:7c:a1:77:c5:11:65:d2:4c:5c:6b:92:
df:2e:62:9a:1c:3a:dc:55:d3:f8:68:0a:00:25:11:
56:94:52:6b:33:84:ae:cd:89:0e:fb:45:9a:84:b2:
97:79:2f:cc:37:74:6d:2c:56:ab:eb:cd:0f:94:a6:
ee:d5:09:3d:6f:41:7c:7d:9c:60:4e:11:07:5e:17:
cd:66:8d:1e:08:9f:11:85:1b:98:a6:66:f2:19:04:
cb:54:4c:5b:54:df:ec:db:94:f4:00:4d:5c:ad:c6:
21:46:63:dc:56:74:f5:fa:c6:1a:68:47:11:ab:74:
e3:10:ac:ca:16:91:a1:8b:27:84:2c:de:8f:0d:20:
f9:67:50:79:33:87:8c:21:3e:20:e3:fb:93:bf:2c:
01:7f:13:ce:0c:e2:a2:70:cb:fd:61:88:69:2d:e6:
2a:53:9d:f3:0e:6e:51:30:00:33:af:cd:7f:e4:66:
a8:c2:5f:9b:5e:7e:7d:96:e0:90:e0:31:18:ec:c5:
7b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CB:C8:CF:3C:93:EB:89:74:5D:7E:A5:42:A6:57:FF:51:21:4D:E0
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:08:98:80:4c:8b:24:bb:a9:0a:80:1a:dd:15:f1:f0:8c:6e:
b9:bb:62:98:46:12:2a:c7:cf:d5:34:d0:2b:0c:1a:2a:f1:41:
82:09:aa:ed:33:9e:1c:2e:cf:73:2d:a9:85:9f:2d:28:02:ce:
a7:91:58:20:e1:05:49:5b:d3:2f:c5:60:2d:25:e8:3e:8e:91:
65:6a:f3:bc:e0:c8:a6:07:9b:b2:a6:99:00:94:e9:dd:a1:1b:
37:62:82:68:d1:36:74:17:29:73:e2:58:8b:73:25:f3:e0:24:
c6:dc:28:ef:49:af:8f:ee:e6:35:54:f2:65:13:fc:2d:ed:e8:
62:5b:66:e0:2a:46:c6:80:a0:03:ed:3c:df:e5:91:9a:0d:fe:
35:93:93:6e:29:f4:02:76:a7:fd:ba:49:80:1e:86:c7:64:61:
8c:4d:d8:c1:64:48:94:08:37:32:aa:37:94:13:40:f9:5a:68:
69:ac:86:5e:d1:6a:d5:ad:38:35:76:38:9f:da:48:54:dd:4e:
22:70:b5:bb:26:b6:23:52:72:2d:2b:5a:d1:8f:ea:6c:ae:c2:
2c:66:7c:37:51:ad:c6:61:96:d9:f9:9e:cf:8a:ca:a6:06:92:
8c:c3:7e:4e:98:23:ba:70:2b:26:78:03:32:95:fe:b5:dc:54:
d6:a2:53:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 20:43:03 2025 by rpki-client