
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: FnTi/sfYu23/zSWK/tCwmWEFLv1iyAEpVrXheNy3acE=
Subject key identifier: BB:38:21:60:FC:E0:D7:77:2B:B2:F3:2F:AD:58:FB:3A:E4:F0:D7:9A
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 01975EDCE28F093758FA116C97DEF7EB0EF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0CE7
Signing time: Wed 11 Jun 2025 12:00:23 +0000
Manifest this update: Wed 11 Jun 2025 12:00:23 +0000
Manifest next update: Thu 12 Jun 2025 12:00:23 +0000
Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: qYDk4Joknh0MgihMjWXKfHoJnoj4jB6D0VcGOplDqgU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 12:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5e:dc:e2:8f:09:37:58:fa:11:6c:97:de:f7:eb:0e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Jun 11 12:00:23 2025 GMT
Not After : Jun 12 12:00:23 2025 GMT
Subject: CN=bb382160fce0d7772bb2f32fad58fb3ae4f0d79a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:05:0f:3c:a0:03:b4:32:f2:70:64:68:3a:b1:
a2:b6:3c:fd:0f:05:16:e2:6b:55:3b:7c:2d:df:99:
e5:82:61:e7:e4:72:1b:15:06:35:fb:fe:44:94:3e:
79:4c:10:61:12:d9:dc:4c:90:34:b0:0a:bc:c5:81:
cd:d7:92:8f:31:ce:d0:11:91:f8:9c:cd:33:9f:aa:
fa:69:9f:51:eb:e7:5b:3f:3e:2c:0b:c2:82:f6:73:
ff:c1:19:11:a2:bd:75:78:56:51:a3:60:28:7b:ce:
15:7c:04:71:90:04:5f:11:c3:b6:99:3c:3f:76:04:
f4:69:c0:93:1d:a5:b8:a7:a7:00:42:97:1b:26:53:
8c:dd:cc:f1:60:d8:20:9f:c3:41:a0:da:65:2d:38:
a3:8a:14:61:fe:33:89:64:ec:b1:aa:51:1e:a1:81:
1d:46:a7:31:3c:88:0d:41:0b:af:f5:40:ae:72:29:
af:23:34:85:da:fa:01:29:14:f2:99:c1:06:e3:cf:
cb:a9:71:db:76:15:15:59:f3:9f:db:06:d2:f3:5b:
ae:5c:d6:48:7f:51:3d:12:79:17:df:2b:90:64:e3:
59:0a:ee:a3:9b:73:9b:93:50:cd:eb:3c:a0:df:7f:
c9:84:42:15:ec:f9:58:2e:52:a2:8b:e7:74:29:ec:
ed:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:38:21:60:FC:E0:D7:77:2B:B2:F3:2F:AD:58:FB:3A:E4:F0:D7:9A
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:16:71:93:c0:67:08:7e:e5:fb:57:14:f0:3e:b6:83:74:78:
60:1d:30:e1:5e:ae:97:36:ea:f5:e1:67:a0:05:ec:92:aa:c9:
94:6b:6c:a8:11:8e:69:43:d0:ca:fe:54:41:d6:06:8d:bf:ac:
f0:4a:5a:cf:6a:24:fc:24:64:c8:02:4a:5d:4b:4b:ae:d4:b8:
b6:e7:7f:d0:c0:94:1b:cd:ed:11:93:6d:fd:eb:eb:5f:44:ab:
8d:d4:67:2d:48:93:74:89:2b:9a:c1:94:b1:8b:0d:5b:b2:56:
29:4a:9b:4d:11:48:eb:33:38:2c:99:d1:e3:46:4e:bd:52:7a:
8a:0f:8c:fe:11:a2:08:01:07:51:86:de:6d:74:26:98:d4:f0:
d9:9b:7b:bc:9c:cd:17:08:b4:d8:dd:fa:2e:ec:e7:5e:3c:86:
ac:ea:52:94:85:e5:ff:5c:7a:43:5b:3f:35:ac:f4:44:24:d6:
6f:72:95:39:8c:18:fb:a3:63:e7:8e:fb:43:ca:6d:c8:b6:a5:
27:b8:60:16:e8:e6:00:24:7f:0e:c3:4d:ab:a7:37:7c:d0:30:
72:22:a3:61:4e:06:f8:ea:ca:63:e5:8b:a8:db:53:16:45:1f:
85:c3:5a:6b:b4:b0:f7:74:fe:5b:98:63:5f:82:01:76:cf:52:
56:80:00:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZde3OKPCTdY+hFsl9736w73MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2MGM2ZDc4N2U2YjVlYjY0MjQ4ZGQ5YTdhMTA2NWIxMDUz
Zjc0NTgwHhcNMjUwNjExMTIwMDIzWhcNMjUwNjEyMTIwMDIzWjAzMTEwLwYDVQQD
EyhiYjM4MjE2MGZjZTBkNzc3MmJiMmYzMmZhZDU4ZmIzYWU0ZjBkNzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwUPPKADtDLycGRoOrGitjz9DwUW
4mtVO3wt35nlgmHn5HIbFQY1+/5ElD55TBBhEtncTJA0sAq8xYHN15KPMc7QEZH4
nM0zn6r6aZ9R6+dbPz4sC8KC9nP/wRkRor11eFZRo2Aoe84VfARxkARfEcO2mTw/
dgT0acCTHaW4p6cAQpcbJlOM3czxYNggn8NBoNplLTijihRh/jOJZOyxqlEeoYEd
RqcxPIgNQQuv9UCucimvIzSF2voBKRTymcEG48/LqXHbdhUVWfOf2wbS81uuXNZI
f1E9EnkX3yuQZONZCu6jm3Obk1DN6zyg33/JhEIV7PlYLlKii+d0KeztdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLs4IWD84Nd3K7LzL61Y+zrk8NeaMB8GA1UdIwQY
MBaAFJYMbXh+a162QkjdmnoQZbEFP3RYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8wNWFiMTYtMjIyOC00ODhlLWIxNTIt
ZWIwOTIxODk1NzE0LzEvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC8wNWFiMTYtMjIyOC00ODhlLWIxNTItZWIwOTIxODk1NzE0
LzEvbGd4dGVINXJYclpDU04yYWVoQmxzUVVfZEZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAARZxk8Bn
CH7l+1cU8D62g3R4YB0w4V6ulzbq9eFnoAXskqrJlGtsqBGOaUPQyv5UQdYGjb+s
8Epaz2ok/CRkyAJKXUtLrtS4tud/0MCUG83tEZNt/evrX0SrjdRnLUiTdIkrmsGU
sYsNW7JWKUqbTRFI6zM4LJnR40ZOvVJ6ig+M/hGiCAEHUYbebXQmmNTw2Zt7vJzN
Fwi02N36LuznXjyGrOpSlIXl/1x6Q1s/Naz0RCTWb3KVOYwY+6Nj5477Q8ptyLal
J7hgFujmACR/DsNNq6c3fNAwciKjYU4G+OrKY+WLqNtTFkUfhcNaa7Sw93T+W5hj
X4IBds9SVoAA/g==
-----END CERTIFICATE-----
Generated at Wed Jun 11 21:05:48 2025 by rpki-client