Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: eMJO2oxGvAFy5QhLMqtc4SI9s00FDei1GMjumHLujVk=
Subject key identifier: DF:40:6C:95:BE:C4:B3:62:92:B2:35:D3:5A:8C:C2:B4:02:8B:FE:84
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 01974AB14CD1F7D75FF438DD3F40E465AA21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 158C
Signing time: Sat 07 Jun 2025 14:00:22 +0000
Manifest this update: Sat 07 Jun 2025 14:00:22 +0000
Manifest next update: Sun 08 Jun 2025 14:00:22 +0000
Files and hashes: 1: 96CoHDqUFKRWLMKpuPNky2AThV0.roa (hash: 2dbkXGtx2Y2iGJ3uWXJRyOKWK4j+bBsW6iNp6F1vwRk=)
2: RY1laGItUoxVJIk_-LMWBVWyksg.roa (hash: 2XSMStFm1b3LtGyzSq5VTDuf3Th2F/WRjN0yU8O9QSM=)
3: Zv6rhEtfx_jSCXc_S8UyXA0vo2U.roa (hash: upx9rJYDv3PHx1B1uURg+ybXETCTfjV8bsr8SvgJ3XM=)
4: biGYeNx8PlSGKHRmVucthKOSlnY.roa (hash: YxlSQax5Hky2oIIKAGXfmWIsjyjpaMRbBxvVdrI+BSI=)
5: g1Zk3nIRea2SYaHqoN92Ss1LCL8.roa (hash: aHQejC3hHy18rRg2jbGxWbnzx0KaJtZTncqKQ8jXn3M=)
6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: rWarT79XckwuaqIii2qG8Z3MnaAQEj3XAjqg7v2sfzk=)
7: mmvuqSKrxCIOK5dTOpgllxAuYB8.roa (hash: cXrhSBrwqA5XppxSkBQnZWJRKIyKnPJRdZjf9M/iItg=)
8: rZuO-15UbHThyJRmeryxRpgLk2M.roa (hash: /ED0vNPFUaV7PRvXzqX2jHZ983s8HtxjtsJuRuMtCvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:4c:d1:f7:d7:5f:f4:38:dd:3f:40:e4:65:aa:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Jun 7 14:00:22 2025 GMT
Not After : Jun 8 14:00:22 2025 GMT
Subject: CN=df406c95bec4b36292b235d35a8cc2b4028bfe84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3d:fd:ce:fb:2c:46:c6:09:af:b2:70:7c:83:
b5:bc:49:e8:58:b8:e1:e3:11:26:bb:0c:b0:fa:e9:
78:50:ad:6e:64:6c:40:43:81:00:df:eb:d8:89:ca:
e3:ba:f3:d6:58:72:47:55:ba:57:67:33:e0:12:4a:
33:c8:e1:f0:57:2d:c8:4b:da:67:f0:d4:42:0e:b0:
eb:ba:6e:42:03:b1:9f:4e:07:73:2c:9c:75:ef:f0:
46:69:ec:01:2d:b2:99:fd:a7:78:9c:e6:ab:b2:68:
fb:a8:6e:72:1a:cc:88:12:0b:7e:b3:11:ff:02:4b:
32:81:a7:29:30:83:fa:a4:10:d2:71:3e:5a:f2:c9:
c0:3b:0d:e7:79:64:ca:36:60:2b:61:b6:53:04:58:
30:9e:fb:9e:8b:21:28:55:ba:72:76:e2:e7:ea:99:
1b:83:e7:58:68:46:de:1a:58:78:90:3d:65:f0:e8:
fc:04:22:19:79:3a:aa:83:da:fa:93:89:a8:f0:ad:
5d:a7:66:3a:ba:96:c9:80:00:cc:32:7d:99:da:9a:
c3:50:cd:e1:02:2a:23:c0:0c:c0:05:bd:25:7f:5f:
b5:f3:10:f0:42:5d:51:c5:c6:ae:d4:01:fa:b3:4c:
84:75:89:f6:12:92:29:05:db:0a:39:61:da:4d:d4:
a8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:40:6C:95:BE:C4:B3:62:92:B2:35:D3:5A:8C:C2:B4:02:8B:FE:84
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:36:e8:24:ea:29:12:03:53:16:89:8c:b6:1c:99:3f:9b:46:
f3:b6:b9:e2:4d:94:52:89:e6:54:a3:17:76:49:fb:80:95:5a:
76:04:75:5e:0c:6e:55:a0:af:03:f9:6c:dd:0b:5e:3f:99:d3:
37:b0:f3:d4:07:b2:e8:cb:11:27:88:8e:0a:bf:7f:65:12:0a:
86:de:79:63:24:61:58:2d:40:79:02:ca:98:97:46:63:56:49:
1b:97:44:4d:d1:e8:26:ed:27:9a:bb:a9:d2:64:4e:e6:b4:31:
5c:59:9a:5f:6b:a2:66:e4:80:ea:21:d9:45:86:a4:1e:df:01:
b8:72:87:3c:6b:d9:da:b5:e5:9f:36:e6:d5:e8:fa:e3:23:e4:
3d:ae:9a:82:fd:8c:e3:c2:98:5f:30:a8:d7:be:f7:7e:e4:5d:
fb:d7:1e:94:4d:9f:bd:33:e8:5b:22:10:36:73:b5:46:48:18:
9a:a6:66:04:90:66:e0:cd:ca:24:27:e3:1a:d1:1b:35:b3:d6:
1e:9d:17:b3:45:4a:a9:98:ce:eb:ec:0d:b9:b5:34:2e:5c:4f:
fa:b4:ef:ae:c5:3e:8a:4a:03:b0:88:2f:59:aa:a6:7a:57:82:
53:df:9d:27:4a:cf:53:53:a3:b9:48:6b:bc:dd:fd:7e:8a:b0:
c4:1b:4d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:41:28 2025 by rpki-client