Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
File: lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft (raw, json)
Hash identifier: 2peDyFp7N74UO8aIGphzPvyTge4ZEvejpV0EH4BzirE=
Subject key identifier: 99:17:C8:C9:0F:2E:A0:37:7E:B2:73:E3:35:B5:F4:FA:DA:DA:4B:FD
Authority key identifier: 94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
Certificate issuer: /CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Certificate serial: 019749D5EC66CCA7DEF1123DD401081B1400
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
Manifest number: 0FA3
Signing time: Sat 07 Jun 2025 10:00:45 +0000
Manifest this update: Sat 07 Jun 2025 10:00:45 +0000
Manifest next update: Sun 08 Jun 2025 10:00:45 +0000
Files and hashes: 1: H33ZXIhbVy7xU6xnvVekDxlllNY.roa (hash: gLytCIr8moIJFxRmjTSWLIbls8kZi2qpSK/USMqXNdU=)
2: lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl (hash: vMjbMkkWMt4zXJqTArx2lTQl01Fq+OtiAxawZeK6wfE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:ec:66:cc:a7:de:f1:12:3d:d4:01:08:1b:14:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Validity
Not Before: Jun 7 10:00:45 2025 GMT
Not After : Jun 8 10:00:45 2025 GMT
Subject: CN=9917c8c90f2ea0377eb273e335b5f4fadada4bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:55:4c:38:8f:a4:84:92:95:a7:14:df:ba:9d:
4d:ff:b3:8b:f6:4c:93:96:8e:53:d6:3d:a8:30:77:
33:bf:b4:43:f2:29:15:26:5c:73:25:fc:d2:9b:53:
49:0e:1f:9b:f0:a5:a5:a9:e1:c8:7f:45:7a:85:ba:
2b:5a:61:c2:33:45:ec:1f:9a:f3:2b:38:a4:7c:5d:
ef:d7:b3:c4:a3:3c:cc:a5:58:aa:fc:40:fa:92:31:
74:d0:d4:91:c5:a2:7c:73:44:ed:6b:fb:66:71:31:
2c:4d:e8:12:22:10:b5:8f:c4:74:e0:42:7d:b7:3d:
58:1c:b1:6e:ae:78:e3:65:c9:17:95:66:bb:fb:28:
48:91:b5:cd:75:2f:87:0a:bb:41:21:de:bd:b7:36:
d2:2d:8d:01:ec:00:b0:a8:5d:82:29:30:90:c1:a0:
aa:8e:88:a5:6a:1e:26:45:2a:ae:d6:3c:18:ea:69:
7f:c6:3e:ff:17:72:55:86:8d:3b:a0:98:72:73:95:
50:6e:62:8e:c9:44:ce:ea:c7:67:e6:d8:11:2c:4a:
8a:fb:f4:9c:6b:04:36:47:0b:58:b9:03:ea:21:0e:
5c:5d:3d:dd:86:30:17:4a:3e:c0:be:1e:33:26:92:
1d:98:c6:5d:81:e3:02:f9:60:3b:1f:75:bc:da:44:
76:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:17:C8:C9:0F:2E:A0:37:7E:B2:73:E3:35:B5:F4:FA:DA:DA:4B:FD
X509v3 Authority Key Identifier:
keyid:94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:06:81:ef:4d:be:8f:10:6c:07:b2:a3:4f:1f:86:55:23:fc:
88:c0:ec:58:7f:e2:98:82:2f:76:f4:b2:23:9e:c5:af:98:8a:
d2:38:b0:8a:17:47:2e:9b:7d:a1:9e:f7:7e:86:3d:a3:37:79:
e5:75:a3:17:d8:e7:aa:e9:04:03:d1:88:eb:fd:f0:8d:ba:da:
7d:01:66:fc:17:da:5c:20:79:7a:cf:56:79:93:e8:e9:14:77:
f4:d4:31:c1:3c:07:e2:79:30:c3:d3:f2:bf:ed:9b:dd:34:21:
00:7b:a6:4e:73:7f:9e:f7:10:c0:98:e1:ad:cb:0e:6a:62:44:
c4:55:0a:43:2b:c4:50:59:d7:71:62:c7:eb:e8:ce:ad:1a:8d:
18:a6:73:c0:90:50:50:11:56:75:20:e2:dc:0b:24:5f:4c:3c:
b2:04:4a:e6:4b:a9:7a:a7:9d:b5:2b:b8:e2:1b:c0:3c:85:6a:
db:37:10:97:e9:47:ed:74:ae:c7:0e:3e:61:ea:d5:e3:6a:6d:
e4:46:c3:d8:bc:6c:f4:7b:30:52:58:c7:73:0b:3c:aa:f4:22:
03:f8:fd:a0:eb:de:d1:23:ae:73:eb:74:2f:4d:b7:1c:a0:4e:
60:1c:9c:48:d3:62:a0:7a:85:ee:40:24:7f:34:ce:25:10:04:
c9:ff:87:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:32:54 2025 by rpki-client