Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: MDaZbeMF95Bg1mWC30KuMydQef3Zwt5o8nJSjTq30Kw=
Subject key identifier: 8D:25:51:69:97:86:8E:0C:2A:74:EF:BB:78:D0:BA:6B:1C:DF:06:BE
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 01976696906C6A4B744717D5F42C6618CC90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0CEB
Signing time: Fri 13 Jun 2025 00:00:32 +0000
Manifest this update: Fri 13 Jun 2025 00:00:32 +0000
Manifest next update: Sat 14 Jun 2025 00:00:32 +0000
Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: WeiCEtYha/CFMpo3yGh7RhvXfWVhB9KfxKdlvGPTex4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:96:90:6c:6a:4b:74:47:17:d5:f4:2c:66:18:cc:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Jun 13 00:00:32 2025 GMT
Not After : Jun 14 00:00:32 2025 GMT
Subject: CN=8d25516997868e0c2a74efbb78d0ba6b1cdf06be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cb:90:37:56:d4:c4:f8:05:1f:3a:bf:a2:e5:
53:0f:ec:23:f5:7c:ac:99:18:94:3b:f4:7e:5d:17:
07:f2:ad:1c:a8:19:f4:3c:8e:b5:ed:f5:10:6b:bf:
6a:67:97:4e:db:4a:c8:e6:b5:ed:b0:e0:47:81:35:
d4:78:f9:24:a4:01:6b:1a:dc:07:31:23:8d:2b:db:
01:32:c2:b9:cd:78:4f:91:ba:45:7c:33:f3:03:e3:
47:22:0e:82:5e:57:9a:23:aa:f9:76:88:19:9a:79:
57:48:f5:cb:bf:02:de:03:a1:6e:16:b5:cd:f0:e5:
f5:96:6e:e8:be:07:39:c9:55:67:22:33:16:20:97:
d6:b0:45:61:b3:39:a3:4a:af:dd:50:e5:08:c6:37:
9b:ba:68:14:af:9a:27:c4:57:f2:d9:d8:fc:a2:9a:
db:e1:68:15:14:dd:eb:0a:51:77:7c:73:bf:66:e7:
55:89:61:3a:e3:57:92:7c:98:90:d9:3a:d0:00:ad:
3d:8e:19:6c:39:ab:37:61:ed:58:b9:0b:b8:67:dc:
7b:2c:49:b0:78:e8:dc:c4:98:33:9c:be:7b:4f:81:
a4:df:27:87:99:cd:a3:f5:bd:1e:dd:c2:ba:73:43:
d4:31:96:17:8d:b0:65:ae:0e:4e:d3:10:3f:10:34:
81:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:25:51:69:97:86:8E:0C:2A:74:EF:BB:78:D0:BA:6B:1C:DF:06:BE
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:37:f3:51:63:8f:6d:4e:7c:28:40:e2:18:dc:31:23:b4:8f:
9e:43:1b:6f:e6:96:68:6d:1b:62:43:8b:cd:f7:59:b5:8d:68:
c9:31:ca:b9:23:3c:7c:94:65:a0:ab:6c:9a:e2:c4:bc:60:f0:
a8:79:98:87:2c:f7:b1:7a:fd:81:0a:6d:22:49:32:c3:20:b7:
90:2e:04:11:97:c8:1b:7d:12:30:6f:58:64:b4:4f:48:bb:4f:
57:91:e9:53:a4:c6:6d:57:cb:6a:57:fe:31:aa:a7:dc:4b:f5:
c5:2c:15:5a:24:9b:02:92:97:20:fa:8e:45:ea:0f:c6:78:56:
07:c3:8e:79:fd:6d:69:05:8d:01:bf:a5:e0:76:15:16:c1:d4:
71:2c:7a:f6:ab:fd:12:e1:35:5a:b1:e3:57:a5:76:87:13:8f:
3f:30:33:58:c7:25:c2:de:09:16:8d:b6:35:a4:75:89:d1:7f:
48:dc:c0:ad:5a:c9:9f:09:0f:ba:e5:55:12:10:3d:cb:d3:3c:
c8:fd:e8:cb:7d:5a:7c:82:2b:33:d2:31:21:b6:dd:59:01:49:
87:72:f3:04:2e:f4:e8:f8:6f:05:16:7e:3c:c6:05:57:b9:83:
13:a4:99:e4:3f:46:7f:01:70:d7:9b:23:7f:e7:5f:70:8b:cd:
7a:9d:44:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 03:23:39 2025 by rpki-client