Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json)
Hash identifier: bf8ihKaU/khZtbi6jOxrQt70hxe8HzZj0Cm/1gKecB8=
Subject key identifier: E2:F7:40:65:2E:97:26:79:A3:8E:4A:9F:83:60:6A:A1:FC:F0:67:72
Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066
Certificate serial: 01974AE8443CA06C84D467DD8374ECBC0ECD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 15:00:25 +0000
Manifest this update: Sat 07 Jun 2025 15:00:25 +0000
Manifest next update: Sun 08 Jun 2025 15:00:25 +0000
Files and hashes: 1: alfL1bRTQjOY-E2KjHP8N4Ulue0.roa (hash: ybSj2AdhAA+9tbRInXwXzkVBfMf3WHllqssGw6/wFUI=)
2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: Ac9l6dFGPLlZRBLV7EWOmJtl3qmxYIPycHy5JDDPyNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:44:3c:a0:6c:84:d4:67:dd:83:74:ec:bc:0e:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066
Validity
Not Before: Jun 7 15:00:25 2025 GMT
Not After : Jun 8 15:00:25 2025 GMT
Subject: CN=e2f740652e972679a38e4a9f83606aa1fcf06772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3b:b9:11:e4:6c:cd:15:9c:85:f9:66:bd:1a:
e9:2d:50:e3:42:45:b8:30:0c:27:5c:f1:6e:cd:1b:
04:70:4e:ed:5d:ca:87:80:d9:f7:5e:3c:e7:d5:ce:
26:c5:bf:c3:8c:89:8c:17:9e:91:e0:59:60:28:9d:
a9:1e:0f:42:77:62:1d:b8:c6:5b:e9:95:4f:bb:c9:
3c:0d:d2:92:d2:18:d0:3b:d3:ef:0e:8a:93:44:6d:
c3:6c:36:98:b7:79:54:8f:4a:9e:04:3c:71:7b:44:
dc:0f:bd:91:73:47:89:2e:06:0f:e5:fc:bd:1c:f8:
6b:aa:5e:66:1c:d6:26:16:a4:45:40:56:92:33:2e:
4c:a6:68:29:1a:f4:5a:8c:68:6e:a7:6a:cc:b5:82:
8e:83:06:59:8f:d5:2f:9e:5e:e8:59:c9:cc:c2:76:
22:27:b2:5c:30:d6:05:5c:cd:a8:00:10:29:62:a6:
b0:3f:a1:0d:4f:74:2b:d3:43:aa:bd:99:bf:7a:76:
d6:5d:4a:7c:b7:63:93:4f:dc:08:57:47:27:cb:a4:
35:ec:f9:bd:d0:41:00:26:54:e8:76:86:eb:42:29:
44:00:a0:c3:5c:f5:ca:3a:9b:ad:4b:c3:e7:58:d5:
e8:bb:47:20:4b:98:9c:47:7f:da:c5:c6:9b:27:1e:
51:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:F7:40:65:2E:97:26:79:A3:8E:4A:9F:83:60:6A:A1:FC:F0:67:72
X509v3 Authority Key Identifier:
keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:8e:ba:92:1b:d5:85:2f:e9:4c:03:0d:b4:08:9b:b6:ed:2e:
ca:ba:3b:50:cd:47:31:54:54:b9:df:03:95:60:66:dd:11:c8:
1c:39:cc:eb:79:ea:e1:a4:d2:88:bb:9a:11:50:66:21:05:66:
5f:13:51:b4:24:5e:3c:62:5a:60:06:ca:3f:ad:63:15:54:33:
97:ee:0e:f6:74:1c:9a:a9:76:88:8d:2e:10:5f:1d:d2:0b:9c:
95:67:30:54:2c:70:6e:4f:60:37:b3:6c:2c:61:89:44:a2:17:
9c:10:89:5a:ec:10:6e:5b:45:a4:a7:07:2e:cf:84:5b:a2:26:
d7:a5:45:d0:86:c4:d8:40:59:50:0b:58:9d:88:16:b1:2b:3b:
f3:c1:2b:ec:d8:13:65:43:ef:0f:bb:c6:ff:05:55:f2:0a:2d:
5f:c1:6b:ff:8a:03:39:68:b1:f6:07:e4:a2:a5:93:80:c6:79:
39:23:2d:01:8b:06:26:fd:3b:b5:c3:ff:6a:79:63:bc:81:5c:
ee:18:10:70:80:19:29:a4:7a:db:a4:89:64:58:f7:ee:02:7a:
96:d7:4a:2c:ae:19:85:b1:dc:ba:7b:eb:c5:3b:b3:b4:ce:03:
21:02:25:d9:be:06:d3:b0:5e:b8:02:77:89:cd:88:84:ef:c7:
37:e8:da:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:16:36 2025 by rpki-client