Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: Zs+Eop0yJfgAQa3FdA/kRBY5dEDJkm6Hzxs90Vvemks=
Subject key identifier: 9A:70:77:80:DF:AB:1E:51:6E:27:B1:B1:A9:DE:23:51:69:07:1F:1E
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 01976884BA9A2665F51A422E5EEA8E459D85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0CEC
Signing time: Fri 13 Jun 2025 09:00:18 +0000
Manifest this update: Fri 13 Jun 2025 09:00:18 +0000
Manifest next update: Sat 14 Jun 2025 09:00:18 +0000
Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: Aicn0grBV0y4+9OD+hG5ijdT+NW+NiTnPeLYMOSP6Vk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:84:ba:9a:26:65:f5:1a:42:2e:5e:ea:8e:45:9d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Jun 13 09:00:18 2025 GMT
Not After : Jun 14 09:00:18 2025 GMT
Subject: CN=9a707780dfab1e516e27b1b1a9de235169071f1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:74:95:61:46:e5:66:27:9f:48:1d:bc:1a:48:
03:89:64:a9:f3:85:dc:bb:65:53:8a:7d:c8:f2:6f:
48:ca:66:47:a9:76:9c:fa:00:50:a9:cf:97:9d:03:
78:67:67:1b:d2:95:5b:ab:61:7d:ed:9f:d0:65:8b:
79:6d:58:b2:9c:3e:cd:40:9c:27:d8:ab:66:92:3d:
43:a7:d4:d2:55:f6:9b:50:19:e4:e7:3e:6c:9c:06:
e8:50:c3:f2:df:4e:7d:4a:bc:c0:e9:da:30:6a:34:
7b:30:69:9c:e1:d9:08:df:47:62:be:35:51:f9:60:
a3:c2:33:aa:dd:45:a6:36:ed:4e:0f:60:2b:44:5d:
fe:2b:d1:15:e0:d0:b5:6a:56:bd:0e:65:eb:95:f5:
4f:5c:12:a2:91:ad:4f:86:83:b0:b1:58:55:c3:2c:
4e:28:30:d5:1f:4b:d5:28:84:d6:7b:6a:36:21:15:
79:c2:80:08:fe:0d:47:06:cf:f3:e6:36:99:33:cc:
f1:23:cb:d8:83:80:e1:7c:73:b4:f1:7a:b3:24:3f:
f0:dc:94:ca:41:a9:c6:03:2f:7f:04:20:63:29:8b:
c2:3e:c0:99:39:09:5d:fb:c3:06:63:08:9c:3d:46:
73:82:5e:70:d8:b6:af:39:01:5b:34:b2:27:4f:1a:
a1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:70:77:80:DF:AB:1E:51:6E:27:B1:B1:A9:DE:23:51:69:07:1F:1E
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:f9:6e:f0:bb:58:52:f0:91:2d:c2:dd:e0:fe:79:6a:1f:21:
27:0b:bd:9d:87:61:8b:d3:00:78:03:f4:fb:14:19:b8:51:23:
bd:ee:41:d4:9b:83:4d:61:cd:e4:5b:3e:8d:ea:87:f4:40:b1:
e7:fb:67:0a:c9:a5:80:98:d3:66:b1:30:7a:72:25:2d:6f:6b:
a3:af:2a:dc:83:5d:b9:69:a1:c1:33:0a:a0:e4:da:3e:7c:09:
09:7f:ce:92:f3:f0:a2:24:6d:c2:65:39:e4:bf:22:65:c7:d1:
3f:b7:17:f6:55:78:92:c2:1d:98:84:98:d4:72:90:f6:24:b0:
70:1a:85:cb:6e:d4:f4:70:a2:86:47:a3:1b:0d:f7:1f:b5:60:
64:ea:20:3f:24:95:0d:f2:6a:54:d8:25:f1:c3:eb:d6:b4:2f:
e0:66:c4:26:2b:df:39:2a:75:5e:60:4f:88:a5:19:f3:ad:22:
fb:8d:8a:22:37:a5:33:a6:97:14:e7:10:78:bc:c2:45:f0:72:
cb:89:46:d1:9e:f3:37:e8:c6:79:33:8b:cc:d7:02:a9:9d:98:
15:a7:31:c1:c5:96:e2:82:eb:78:c1:58:d2:f4:1d:bd:10:48:
90:9b:cc:95:b0:2d:9b:73:d3:9b:cd:d4:91:1d:39:29:00:1e:
f9:f8:9f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 13:00:20 2025 by rpki-client