Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
File: Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft (raw, json)
Hash identifier: roRBdCl370TAT5FCcWQnef6sPFimKf5gvryJml3vq+k=
Subject key identifier: BE:DA:CF:39:84:1E:06:6D:52:6F:0B:53:29:2C:78:80:86:85:86:C4
Authority key identifier: 2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E
Certificate issuer: /CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e
Certificate serial: 01974630395113DE262341F3EBE063209239
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
Manifest number: 157E
Signing time: Fri 06 Jun 2025 17:00:54 +0000
Manifest this update: Fri 06 Jun 2025 17:00:54 +0000
Manifest next update: Sat 07 Jun 2025 17:00:54 +0000
Files and hashes: 1: LDfn0M5v99IHnOQFUNXp12Nf90k.roa (hash: do0pH7tAz4W21wYBRY5jEznU82Zdd3DteyiFEbjbCqA=)
2: Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl (hash: hZ1gly+6+rWl+1D7c9HVBLwiOHLe71fg2KgDUn15NCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 17:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:39:51:13:de:26:23:41:f3:eb:e0:63:20:92:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e
Validity
Not Before: Jun 6 17:00:54 2025 GMT
Not After : Jun 7 17:00:54 2025 GMT
Subject: CN=bedacf39841e066d526f0b53292c7880868586c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8a:c4:95:ca:ec:07:66:a7:71:1f:a0:3f:29:
f6:a5:fb:7c:79:3d:ed:12:0c:a3:e0:5e:b8:9b:22:
5e:4a:71:bf:84:fa:86:19:5d:fd:14:d3:36:dc:c4:
4b:18:80:31:4b:1a:2d:bc:0a:16:a9:52:de:e6:e1:
bd:4c:6b:c1:54:0c:ca:8f:ec:72:68:e9:77:06:cc:
1c:af:2f:04:2e:71:02:cf:12:f0:9e:fe:5a:52:66:
33:d5:60:83:9f:9e:bb:3d:01:47:28:c4:09:c3:be:
a9:74:73:82:ff:52:4d:a9:48:63:b7:63:06:49:e7:
bc:a0:9c:41:9a:07:29:61:74:73:b5:9b:d8:0f:5a:
bc:d4:32:b7:3c:18:ec:36:06:df:c8:ae:77:20:d7:
78:39:99:61:64:5e:05:34:b3:ca:51:88:0e:c0:8d:
a9:8d:fa:24:6f:30:45:fc:73:03:51:6b:18:b7:08:
32:c0:51:4b:8d:5c:d1:26:97:32:e3:a7:96:8b:32:
1b:2c:09:12:85:9a:8e:d2:31:16:25:2b:b1:07:82:
02:49:e4:27:ea:85:dc:88:29:af:1a:fb:c2:9e:d3:
4a:f5:38:6b:52:8c:59:94:1b:dd:d1:4f:27:ca:50:
b3:e3:d8:68:f1:6a:87:15:c2:db:3c:39:a6:29:76:
b4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DA:CF:39:84:1E:06:6D:52:6F:0B:53:29:2C:78:80:86:85:86:C4
X509v3 Authority Key Identifier:
keyid:2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:e2:c5:35:88:ee:ca:65:45:1b:c1:11:83:04:90:49:d9:81:
cd:40:95:2e:7c:ef:a6:ac:f5:bb:1e:85:1e:fa:5d:c1:f2:aa:
a5:7a:b5:79:fa:b0:19:ca:79:ca:31:f6:c8:d6:7a:cb:53:cc:
4a:7d:ce:23:62:ff:11:2e:da:01:99:27:9c:b3:f4:d9:1c:8e:
ab:bc:0c:5f:6e:a4:0a:48:c2:64:b8:d4:9f:a8:0f:ac:6f:47:
d9:5d:56:c8:5d:a1:25:2c:8e:7d:dc:2b:65:69:fc:ad:94:55:
40:e0:46:24:81:0e:27:2c:88:4d:5c:32:73:31:a1:e7:5a:92:
87:7a:ca:59:26:36:3e:56:d2:96:bd:49:79:2d:c7:93:42:79:
ca:ab:26:5b:a2:cf:93:71:41:cc:a5:71:67:af:89:cb:4d:88:
54:a0:54:92:22:c5:8c:78:a2:fd:a8:7e:05:cf:aa:ff:d0:be:
dd:23:f6:29:22:eb:19:c1:14:03:a4:83:46:74:d3:76:80:ea:
54:dd:65:8d:e7:17:d1:2c:27:5b:0a:20:83:77:e6:e6:b8:22:
1e:6c:02:53:d0:a7:f6:24:a6:e9:d4:05:fe:88:c6:3e:d3:1d:
3c:43:f2:01:e4:9f:dd:93:55:a4:da:18:a9:27:d8:79:f6:22:
cc:bf:f2:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:50:08 2025 by rpki-client