
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
File: Lr_2z7gya0RylaEbEHhoIS5mX90.mft (raw, json)
Hash identifier: W9i1d+7q8/GzRGihrpM7ZbZLhfICC2mXSX0Z/5LZAco=
Subject key identifier: 12:6C:2D:57:40:F3:3C:A9:68:1F:E7:DD:DE:68:09:5C:6A:EC:2C:DC
Authority key identifier: 2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD
Certificate issuer: /CN=2ebff6cfb8326b447295a11b107868212e665fdd
Certificate serial: 01976C2ABA6659DB4A9C039939DD6FB1BB41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
Manifest number: 066E
Signing time: Sat 14 Jun 2025 02:00:28 +0000
Manifest this update: Sat 14 Jun 2025 02:00:28 +0000
Manifest next update: Sun 15 Jun 2025 02:00:28 +0000
Files and hashes: 1: 2EHY0ANqI6GjPJ3q8F_H43sabIk.roa (hash: 6KKbNu6n/lBjRM28xxVSQgucF7edE6uzeJUy5fL1Psg=)
2: Lr_2z7gya0RylaEbEHhoIS5mX90.crl (hash: Y5vcCy9PMr9BydeQscxPl5YvUu2ZtdujwypXN8kRiUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:ba:66:59:db:4a:9c:03:99:39:dd:6f:b1:bb:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ebff6cfb8326b447295a11b107868212e665fdd
Validity
Not Before: Jun 14 02:00:28 2025 GMT
Not After : Jun 15 02:00:28 2025 GMT
Subject: CN=126c2d5740f33ca9681fe7ddde68095c6aec2cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ae:9b:00:82:c9:fb:1b:36:13:43:9e:d3:1c:
9c:ef:e7:fd:0e:31:3a:32:fd:18:cf:aa:59:6a:f4:
49:5e:79:65:d0:c3:65:22:5e:80:bc:9b:cd:34:30:
52:4e:5d:f0:f3:a2:ff:51:d1:ea:a9:f3:9b:91:54:
73:24:0c:c4:4e:20:90:dc:d8:16:b5:15:7c:95:73:
07:b3:96:56:d3:14:8c:a4:58:19:79:a5:9a:90:fe:
01:2a:9c:75:08:f9:bc:66:6a:ac:83:fb:5f:4d:6f:
37:92:a9:6f:b8:cc:d4:6a:4e:2a:d8:be:a0:12:57:
0f:d2:b2:c9:79:d7:5a:12:03:5f:af:38:c5:f0:34:
cf:b9:00:15:2b:d5:2f:22:99:5e:bc:9f:20:68:dd:
fe:7d:27:92:09:55:33:8c:ed:68:62:ec:65:85:52:
6a:e9:6f:1e:e2:c5:4e:37:92:2f:02:3e:08:82:e6:
f9:17:d0:58:44:03:f8:89:e1:ff:9e:f4:d1:d9:2b:
fb:8e:f8:ae:58:a7:1f:2f:14:ff:f5:19:3c:a3:e6:
4c:1a:ba:36:4a:1d:e7:63:7e:63:2b:16:8a:2d:93:
82:62:27:67:58:f9:8b:16:11:ee:f0:1a:bf:47:2d:
d0:8d:67:f2:d3:88:11:92:ce:12:3c:9a:07:5e:ff:
31:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:6C:2D:57:40:F3:3C:A9:68:1F:E7:DD:DE:68:09:5C:6A:EC:2C:DC
X509v3 Authority Key Identifier:
keyid:2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:9f:6d:d0:69:f4:8a:1f:df:d8:ae:f5:ab:37:b4:7b:01:d9:
32:dd:4d:66:ce:f6:e5:21:f9:00:06:a2:52:ee:ba:d6:68:6a:
da:47:25:12:d2:64:44:0d:78:cc:9c:c2:ea:b2:c5:21:45:0f:
96:d2:81:b2:7c:e2:50:f5:88:48:67:5d:f5:7e:34:3c:bb:64:
63:c5:ca:c3:9a:17:d8:1f:d6:ff:25:03:bd:79:93:7e:12:6b:
28:3c:8a:39:a8:3e:f0:35:25:0f:72:4b:53:cb:4b:f1:92:e5:
df:70:c3:2b:4e:2a:ca:d9:ee:d9:26:ba:59:84:0e:45:e3:68:
56:83:3f:00:43:da:47:69:14:38:a0:73:13:08:25:8f:c5:8f:
26:c4:a7:19:e3:5e:a6:d9:26:73:aa:e8:d2:c4:d3:4c:a1:af:
0c:bd:3e:c2:6d:5d:34:00:c7:7d:df:4e:76:78:3d:a7:75:f0:
ed:32:cd:7d:d2:2c:a2:fc:ea:f1:ec:16:e9:b9:63:58:11:e8:
9e:79:86:b4:b9:05:67:7f:53:de:d5:c5:19:3e:ee:b4:85:0c:
85:e7:85:de:cf:44:2e:e7:23:1a:21:bb:cc:2e:b9:0c:af:eb:
fa:9f:c6:7b:ac:44:1a:c0:42:9d:32:8f:ea:94:d3:e1:2f:16:
30:ed:4d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:56:19 2025 by rpki-client