Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.mft
File: lSC_jHciaj-ojr4RzI8RacxWCnk.mft (raw, json)
Hash identifier: x1yRcD8gsXa5ebXCR4vGe4r0/xqa+rBxph3ZeoXJRnU=
Subject key identifier: 75:2B:32:B5:DA:F4:DE:76:7A:D6:41:75:78:1E:7C:E3:1B:54:C7:F8
Authority key identifier: 95:20:BF:8C:77:22:6A:3F:A8:8E:BE:11:CC:8F:11:69:CC:56:0A:79
Certificate issuer: /CN=9520bf8c77226a3fa88ebe11cc8f1169cc560a79
Certificate serial: 019748C338B14CCEF7CEA88299D530465CF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSC_jHciaj-ojr4RzI8RacxWCnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.mft
Manifest number: 0C96
Signing time: Sat 07 Jun 2025 05:00:42 +0000
Manifest this update: Sat 07 Jun 2025 05:00:42 +0000
Manifest next update: Sun 08 Jun 2025 05:00:42 +0000
Files and hashes: 1: 5_9mocxdNZ9MQ0g3lwcXXvM4yBI.roa (hash: QFa9yzo72h2sHM5VVVFbluHjiQ4dadLFT4v/+o9O32g=)
2: lSC_jHciaj-ojr4RzI8RacxWCnk.crl (hash: pc4VZVFjNbLvH/fGiMS7APyVLaz8Qaq6p0IT6td0Gpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/lSC_jHciaj-ojr4RzI8RacxWCnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:38:b1:4c:ce:f7:ce:a8:82:99:d5:30:46:5c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9520bf8c77226a3fa88ebe11cc8f1169cc560a79
Validity
Not Before: Jun 7 05:00:42 2025 GMT
Not After : Jun 8 05:00:42 2025 GMT
Subject: CN=752b32b5daf4de767ad64175781e7ce31b54c7f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8a:b7:1b:ea:62:e5:4a:c9:12:3d:73:ee:6f:
ff:96:a3:7e:17:44:2f:2c:aa:83:a7:ec:0c:47:5f:
2d:9c:7f:c1:87:14:8a:48:e8:d2:6a:38:75:63:52:
07:d9:46:dd:58:20:46:58:b8:6a:9b:3c:de:88:3f:
c1:7a:e8:9e:ef:bb:fe:3d:73:d0:47:8a:cc:4e:c7:
03:af:4f:32:84:e3:5b:6b:aa:fe:93:48:2a:73:e8:
8a:8c:68:c5:0d:b4:dd:7a:4b:9e:f0:dc:98:0a:b4:
8d:63:02:44:cc:0e:51:7e:38:28:23:3e:96:5c:f7:
c8:39:f1:28:31:01:b1:f7:51:d0:94:cd:ef:8a:5d:
8b:10:69:32:0e:39:6b:38:b5:81:d7:79:0b:94:16:
f8:42:83:2d:aa:39:aa:4d:f3:fb:b1:fa:ce:be:d5:
04:3b:7b:5b:23:46:fc:21:f3:e1:40:04:76:68:fc:
90:c5:8d:12:02:8e:8e:1d:e9:37:f6:7d:22:f7:80:
0a:16:fb:1e:06:5e:76:1c:54:f9:ac:31:38:ea:76:
1c:a3:0c:b9:70:c5:37:7a:11:e3:ec:98:c1:b0:13:
97:3f:5d:43:33:59:6e:29:00:ab:06:a3:84:ad:60:
cc:51:92:76:16:9d:4d:62:0d:63:19:5f:67:67:72:
f3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2B:32:B5:DA:F4:DE:76:7A:D6:41:75:78:1E:7C:E3:1B:54:C7:F8
X509v3 Authority Key Identifier:
keyid:95:20:BF:8C:77:22:6A:3F:A8:8E:BE:11:CC:8F:11:69:CC:56:0A:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSC_jHciaj-ojr4RzI8RacxWCnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:0a:5f:3f:8c:c8:82:fb:d4:ff:94:9b:f3:7d:40:35:33:53:
e8:d2:a6:40:b0:fc:f3:c5:2a:3c:c1:10:ac:21:81:30:d2:79:
6a:b0:36:0c:0b:bc:c4:5e:de:29:6d:1f:32:7c:1b:0e:01:5b:
d8:bf:6b:41:c1:ef:70:cd:c2:be:6f:d7:9f:96:c5:d5:01:aa:
60:54:5b:ce:06:7c:77:dd:29:c0:f1:7b:63:ab:d4:06:79:7d:
50:91:f5:21:79:5e:5f:dc:13:e7:74:40:55:a6:b4:5a:66:4a:
a5:c7:9c:a5:cc:50:6f:58:10:0c:53:60:ef:ac:7c:0e:49:81:
4e:af:f7:75:40:41:46:ad:f0:41:a5:b4:00:92:89:3f:18:67:
fc:88:b2:0c:aa:e7:d4:d1:c3:c2:f1:33:56:a6:5c:b2:9f:d2:
ee:2c:56:eb:5b:5b:9b:54:3d:44:65:bc:4e:a7:3f:fb:40:ca:
04:0e:92:02:87:ff:51:82:52:b3:63:3c:0d:46:a5:f7:cc:29:
8d:9a:95:f9:8b:53:5f:49:f3:55:4d:80:14:8b:6a:ae:38:6c:
0d:cd:cc:77:d5:ee:4b:77:c1:81:1b:87:19:40:cc:34:6b:82:
8c:dc:0b:a8:53:50:de:73:5a:21:de:7f:ca:5b:c9:01:d6:8a:
65:18:9d:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:54:07 2025 by rpki-client