Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: SdL/C+zDjdwANBo8lZ6r1ATpPd2hChsvIH2Zc5rAV+I=
Subject key identifier: D7:77:CC:CB:21:35:F5:6A:28:00:6C:79:64:12:7B:2D:48:71:5F:ED
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 0197CB02E1B9541C45CA4BDD98A7EE6AB2FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 158E
Signing time: Wed 02 Jul 2025 12:00:52 +0000
Manifest this update: Wed 02 Jul 2025 12:00:52 +0000
Manifest next update: Thu 03 Jul 2025 12:00:52 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: E+L8VrB6LvOMANmqYRR8wfqCwdbfOicD67gQBsCS2qA=)
2: LSDLxpYG9vUS-ynb5NuKXC0hxwk.roa (hash: iU/GAJxLreLcqJkb0jyy5NFNWuEEVZB548A5w51V+6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:02:e1:b9:54:1c:45:ca:4b:dd:98:a7:ee:6a:b2:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: Jul 2 12:00:52 2025 GMT
Not After : Jul 3 12:00:52 2025 GMT
Subject: CN=d777cccb2135f56a28006c7964127b2d48715fed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:50:49:99:ee:97:57:54:f8:4c:db:00:8f:e8:
5a:10:76:a3:94:5e:8e:d6:21:67:35:45:27:c3:8a:
f4:73:d4:bd:5d:a3:e9:10:40:bb:6f:0c:33:75:5a:
01:8e:a3:d6:6c:25:de:77:bf:23:bb:8e:ad:e1:0f:
20:8b:20:7b:b0:1e:c9:2f:2b:09:c3:ec:61:0d:68:
4d:c6:9e:a9:16:e9:04:5b:e5:71:84:e3:85:af:f1:
5e:89:ca:dd:78:30:56:ba:b0:8b:28:50:7b:23:e0:
24:b3:88:c3:36:ee:5c:5a:2d:5a:09:dc:ac:41:44:
92:fc:15:22:7b:b8:71:88:a0:45:c0:27:cd:db:33:
86:b2:ac:49:e8:9c:fb:eb:2a:9c:e8:67:4f:11:13:
0f:0f:15:3e:88:2e:18:fe:07:56:71:d3:83:84:18:
3e:b5:d7:42:ea:86:6a:79:a9:ae:2a:af:00:e3:b9:
89:bc:c7:9e:2d:0e:e1:d5:7d:93:02:8f:ec:48:9a:
6d:67:70:ab:d9:65:ba:de:56:3a:9a:9e:22:be:17:
ce:98:f0:5d:59:f5:a0:74:40:3f:ef:e0:61:8d:c3:
ca:e1:93:5f:b4:b2:c9:75:d0:85:80:e8:9e:e0:f4:
9a:8d:46:38:ba:5c:6a:c9:df:38:15:5b:25:75:1a:
17:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:77:CC:CB:21:35:F5:6A:28:00:6C:79:64:12:7B:2D:48:71:5F:ED
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:24:d7:ed:1b:2d:a4:63:5f:28:d3:b4:ec:54:eb:28:c3:0c:
ca:67:e9:c9:5d:6f:5a:ae:8d:07:5d:21:6e:af:2c:f5:04:38:
e5:95:7e:ca:44:20:3f:ad:f4:a1:c5:c2:ce:8e:af:fd:a3:03:
8b:97:e6:4b:30:84:78:f7:b0:eb:77:ac:e9:7b:f4:00:7e:5b:
d5:1a:49:d7:76:20:3e:d4:6e:13:d2:3d:6b:9a:19:7c:12:45:
ea:64:28:32:06:75:ba:19:ae:a4:94:6f:cd:f2:68:d4:8f:6d:
80:64:9b:36:00:4a:cd:81:ae:17:f7:83:96:68:b8:d5:68:b7:
9e:79:70:4e:7f:d8:ee:20:69:62:6e:c8:f7:7c:79:0b:37:89:
af:97:b6:4b:f7:9d:e1:ff:dc:b7:91:20:5c:9d:82:bb:0a:3b:
c7:a2:e5:11:00:bd:da:8e:37:de:38:80:42:8f:47:54:25:50:
64:98:56:f5:41:7f:29:72:ac:e8:d4:12:ed:8a:aa:d9:73:5f:
33:6b:47:73:d1:98:0a:b1:e6:ab:49:62:92:fb:b4:f7:1c:02:
ce:9e:03:0a:7c:a6:73:a4:2e:50:13:e7:a1:97:03:a5:f4:08:
1e:7a:ea:26:b1:fb:02:1b:49:8b:33:e8:2b:74:f0:0b:42:ad:
34:5a:86:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 20:00:05 2025 by rpki-client