Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
File: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft (raw, json)
Hash identifier: gDvBEIB6IRdKM+Iikrz97Om0YplcjUfL52/Wao6XhfI=
Subject key identifier: DA:CA:90:08:83:2B:3D:5A:94:04:F9:C3:FD:5B:84:C3:5D:3C:20:81
Authority key identifier: 94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
Certificate issuer: /CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Certificate serial: 01975046501016D981D0CAE2C320C0E486DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
Manifest number: 121A
Signing time: Sun 08 Jun 2025 16:01:14 +0000
Manifest this update: Sun 08 Jun 2025 16:01:14 +0000
Manifest next update: Mon 09 Jun 2025 16:01:14 +0000
Files and hashes: 1: GkmNRez_B8q96uaVOleqThEPoEs.roa (hash: aNQGHPeLClAe2Gmzc0jqm+MRXJ2xuLHjsljQiK1K4qw=)
2: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl (hash: QA7Owi8EVWWp7W6FdQkFeiZJ4+4PMGJHJl0oTpuYPQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:46:50:10:16:d9:81:d0:ca:e2:c3:20:c0:e4:86:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Validity
Not Before: Jun 8 16:01:14 2025 GMT
Not After : Jun 9 16:01:14 2025 GMT
Subject: CN=daca9008832b3d5a9404f9c3fd5b84c35d3c2081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7a:41:f1:a6:7d:34:48:13:fe:7f:0b:5b:eb:
36:1d:84:0c:e9:4e:82:82:cb:f9:3e:a6:9e:f8:9f:
19:92:c4:ac:60:2a:b5:79:16:29:c6:2b:6c:4e:36:
5a:b1:9d:0c:bf:11:68:ec:e8:a9:27:e5:40:93:71:
73:37:8b:11:b5:8f:85:db:13:3d:dc:44:ab:f2:55:
d0:df:39:f1:d6:50:52:86:9e:f7:cd:c9:44:01:5c:
9f:14:d7:ee:10:9e:c3:e3:a8:a2:7f:36:fa:28:e7:
be:08:c3:88:76:4a:97:63:25:fa:66:a5:2a:c8:89:
5a:a2:70:cd:97:95:bb:a1:0b:97:fa:f7:2d:85:ea:
1a:03:5d:ac:dd:a5:92:0c:76:df:6c:60:b0:ef:10:
be:6c:43:bf:59:3d:0c:13:ab:8b:31:34:59:1a:bc:
04:53:2d:6b:f4:0a:e7:d3:46:44:06:3c:c3:76:7b:
1f:7e:96:e1:87:0e:a3:48:ae:32:62:8c:04:c7:de:
33:41:3a:15:2c:29:66:9c:98:1d:46:6a:4f:f5:18:
17:a7:a6:e3:ed:01:49:ff:59:07:50:66:b9:2f:09:
c5:5d:42:1c:db:e9:6d:b4:fe:fe:94:83:fc:15:96:
6f:29:fc:b2:d4:fa:0e:74:d0:19:52:a6:bd:35:95:
dd:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:CA:90:08:83:2B:3D:5A:94:04:F9:C3:FD:5B:84:C3:5D:3C:20:81
X509v3 Authority Key Identifier:
keyid:94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:59:76:3e:da:8d:3f:78:e7:51:7d:51:8a:e9:04:15:84:37:
77:9d:3e:1a:50:19:3c:f9:50:b0:33:8b:40:8b:f9:56:11:bd:
db:0f:93:e0:dc:0b:63:08:76:67:28:eb:e8:aa:ec:bf:4f:6d:
d1:99:1a:1d:6b:d3:ca:e5:ff:14:bc:32:f2:cf:9f:03:4c:18:
aa:cb:fb:22:51:4e:e5:e1:84:4c:d0:3a:ae:7a:66:47:3c:93:
21:e5:45:e8:52:d3:87:5e:29:7b:c2:16:24:6a:e4:98:50:9a:
88:c9:e1:58:4f:46:84:8e:b9:da:b2:16:a2:5a:a1:b7:ea:67:
d2:e8:87:b8:89:ea:6c:fa:3a:35:fe:76:79:f7:ad:96:c2:b3:
a9:37:01:f5:27:54:d4:6e:9a:b8:fb:92:a5:4b:b8:93:05:4b:
aa:27:0c:f6:c4:ff:86:0d:a8:b9:f3:e3:2a:3e:f4:59:b2:72:
c1:4d:32:02:1c:99:b3:22:32:da:50:52:ef:dd:ae:6f:0a:3c:
70:a1:da:15:c4:24:3c:35:16:fa:fc:d2:08:bf:06:95:db:1c:
aa:56:3a:47:86:80:ba:d8:cc:d8:48:92:e1:e6:6a:5e:9c:f3:
c7:ec:2a:e1:a7:ae:7e:ef:06:dd:d5:9d:40:dc:67:7f:aa:7b:
83:21:c9:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 21:03:15 2025 by rpki-client