Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: qxD/j8ND6O/0TB6F7GBY7l5mOyjMvfiPFsLBUmNJCnI=
Subject key identifier: BA:4C:DC:F5:46:70:1F:BF:BE:1F:16:B6:C7:DE:4E:1E:BB:C6:1A:BF
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 019762B9DC2B8348965349752D0E67A8C202
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0CE9
Signing time: Thu 12 Jun 2025 06:00:37 +0000
Manifest this update: Thu 12 Jun 2025 06:00:37 +0000
Manifest next update: Fri 13 Jun 2025 06:00:37 +0000
Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: 0q7TJBKf5172tIwy4YTI/+N+J+20SNpbDwfZ9ukSS4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 06:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:b9:dc:2b:83:48:96:53:49:75:2d:0e:67:a8:c2:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Jun 12 06:00:37 2025 GMT
Not After : Jun 13 06:00:37 2025 GMT
Subject: CN=ba4cdcf546701fbfbe1f16b6c7de4e1ebbc61abf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0a:9d:60:b6:27:b7:5b:76:55:f1:17:79:34:
da:59:1e:2f:37:3d:ef:6f:53:a7:06:75:32:dc:29:
15:e5:8e:d9:32:27:b4:69:c2:21:b9:03:29:79:7e:
1e:3e:c6:de:62:e5:1d:29:ca:25:97:2a:00:b2:ee:
69:27:e3:e3:3f:f2:c1:a5:92:7c:13:2d:c1:3d:79:
23:93:eb:bc:5f:5a:41:64:66:08:08:29:bb:9d:6a:
cf:bd:9e:64:eb:48:96:89:e8:42:c2:5b:04:19:d6:
b2:b0:72:df:a9:d3:68:e3:8b:6c:a6:16:6b:9c:39:
18:42:4c:cd:a7:6d:eb:b1:8b:c6:5d:4b:5d:24:8f:
14:7c:4c:5c:ff:b6:4b:5e:7e:c4:ed:5d:5a:76:e4:
c3:8a:0b:32:8e:38:35:bf:c0:2d:6c:36:5f:ab:54:
73:75:d7:09:19:0f:ed:f1:47:73:fc:05:1a:2a:20:
8c:e9:7b:35:6b:5b:25:54:7c:65:b4:28:07:3f:a3:
b1:73:61:78:0b:50:47:33:47:0f:9e:f6:a2:80:88:
a4:01:86:48:43:ef:a5:cd:60:08:31:00:af:d7:4b:
2d:6d:3f:a7:32:56:7b:b1:bf:af:60:04:ab:b8:44:
83:c1:eb:53:c3:98:33:ff:f2:b6:93:7f:9d:78:6e:
e7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:4C:DC:F5:46:70:1F:BF:BE:1F:16:B6:C7:DE:4E:1E:BB:C6:1A:BF
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:f5:07:4d:47:6b:de:b4:af:1a:0b:68:8c:9f:cf:32:99:61:
cb:6e:52:06:3c:f5:6a:65:ed:19:b6:e3:c0:3f:7b:30:8c:d1:
15:55:25:f7:60:01:7f:9a:0a:95:d7:11:47:e3:2d:bf:78:4e:
00:7a:64:41:79:46:7b:93:d1:c2:37:3c:a4:34:eb:82:71:0a:
9b:a2:95:ad:75:43:56:b9:d3:f5:34:9e:2f:6f:a8:46:63:83:
47:dc:5d:42:09:6a:04:08:db:6b:ad:3b:b3:53:be:0a:4a:fd:
a5:51:f5:29:b8:21:5b:c3:ae:ed:57:af:d6:89:4a:3b:5f:9a:
e3:43:74:ec:cf:d4:da:c9:c3:54:e5:58:bf:50:6d:53:9c:2c:
e1:d6:2c:7f:7c:33:a1:89:10:b2:7c:71:22:0f:1f:12:a6:ba:
39:74:51:98:bb:ad:7c:98:2f:6c:82:3c:94:52:27:60:2e:e7:
2a:45:c0:b9:24:27:c4:97:89:21:84:6f:67:17:56:d3:cd:f7:
e0:04:80:ea:8f:9a:79:0d:15:e0:a7:ca:08:79:41:62:70:d7:
63:f7:2a:41:8f:b8:1c:2e:bd:76:74:08:78:2e:e4:bd:a3:f0:
65:6f:30:21:49:60:6d:41:12:2b:9b:19:bd:5c:0d:6d:52:e3:
e1:46:6c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 13:45:37 2025 by rpki-client