Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
File: lN7qVibZ6DJkDx7N9_i7clckCEc.mft (raw, json)
Hash identifier: KtTye5OZ+ix3laKhpqqRdcondi9aE2i45yLvT9qdK54=
Subject key identifier: C6:54:CF:FE:DE:99:97:73:23:16:FD:09:1A:25:1D:69:38:20:71:DC
Authority key identifier: 94:DE:EA:56:26:D9:E8:32:64:0F:1E:CD:F7:F8:BB:72:57:24:08:47
Certificate issuer: /CN=94deea5626d9e832640f1ecdf7f8bb7257240847
Certificate serial: 01974666F82926463AD4051BB655A9BAE3F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
Manifest number: 0A6F
Signing time: Fri 06 Jun 2025 18:00:42 +0000
Manifest this update: Fri 06 Jun 2025 18:00:42 +0000
Manifest next update: Sat 07 Jun 2025 18:00:42 +0000
Files and hashes: 1: cJPUTKGhm9-SQMKgHrLgVtONres.roa (hash: YPKASk/Rrx47xThFCgmIxwpwkFMGL6Ambuvld828dUQ=)
2: lN7qVibZ6DJkDx7N9_i7clckCEc.crl (hash: yrE+Qf3FVkLvvYVtfgP5glECGGHlkSSzJzsq2BIO/0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:66:f8:29:26:46:3a:d4:05:1b:b6:55:a9:ba:e3:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94deea5626d9e832640f1ecdf7f8bb7257240847
Validity
Not Before: Jun 6 18:00:42 2025 GMT
Not After : Jun 7 18:00:42 2025 GMT
Subject: CN=c654cffede9997732316fd091a251d69382071dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:13:7c:5e:47:01:2c:65:fa:00:d5:dd:d9:d0:
27:df:ca:f4:a0:b6:75:7c:36:e2:72:8a:db:3d:39:
d8:8d:92:4e:2d:1c:6b:20:81:46:2b:28:b2:5b:7d:
d9:c6:12:5b:bb:b8:5a:8f:03:6d:49:d7:cc:04:94:
c5:d4:e3:50:d0:6d:6e:9e:10:41:2f:06:1f:43:6f:
a4:98:25:10:bd:a5:a6:b8:86:e2:51:17:57:74:c6:
b9:b9:49:fe:5d:90:6a:16:d5:95:df:01:e7:9f:ff:
9f:e3:6d:a5:3c:6e:0e:e7:5b:7b:8e:76:7e:de:3e:
8b:22:69:07:ab:b4:76:96:00:15:3a:21:71:dd:9b:
0a:d6:6d:5f:a5:96:68:8a:55:24:84:90:20:26:6a:
cd:56:19:89:c6:90:93:2a:64:ff:52:41:5b:3c:92:
87:25:a5:bb:05:86:57:e4:98:61:77:93:e9:b5:0b:
aa:c1:b6:ff:f7:d3:05:71:ab:69:8e:f6:0e:9e:f3:
e8:c1:02:a9:38:f1:ca:24:e2:a3:48:ef:04:6f:39:
75:17:a1:b4:b4:86:09:3c:6e:03:0d:4a:d4:8f:38:
35:44:f0:07:c7:79:d1:59:f0:3d:3a:34:36:e6:ca:
5d:c4:92:3d:4b:42:c1:0a:73:81:1d:fd:14:ba:71:
6d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:54:CF:FE:DE:99:97:73:23:16:FD:09:1A:25:1D:69:38:20:71:DC
X509v3 Authority Key Identifier:
keyid:94:DE:EA:56:26:D9:E8:32:64:0F:1E:CD:F7:F8:BB:72:57:24:08:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:ca:be:d1:b6:65:7b:9c:af:b4:82:2c:3b:be:db:8a:23:55:
95:bc:c0:ca:31:c3:da:3e:ee:22:cb:a1:f7:ff:61:2e:14:ae:
41:45:d2:8e:5e:f5:b3:3e:68:47:69:cd:cd:29:af:53:3c:c4:
79:f3:d1:2d:ce:2a:71:43:68:a7:2a:07:4b:9d:7e:38:30:3a:
18:27:4d:bf:97:93:88:78:24:36:29:a3:68:2b:31:2b:9c:80:
92:22:25:66:68:ae:c4:d8:9e:6b:7d:d0:dc:3f:67:9e:8d:ed:
b1:0d:d7:8d:1c:40:e4:11:4e:12:d7:19:ef:d5:e7:5a:a5:6e:
4e:5f:65:2d:24:d4:80:a0:a3:4c:37:6b:2f:21:9d:27:4b:38:
88:aa:8f:a8:84:87:3a:67:5c:c9:f1:d4:90:39:6c:89:1c:45:
97:d4:27:75:e5:90:65:10:d0:c0:bb:0e:ea:da:ca:9d:9e:64:
a3:9b:ea:5a:fe:75:61:1a:3f:19:a8:60:f0:7a:f0:9e:cc:d1:
22:30:32:60:7f:8e:aa:4a:03:46:a6:d3:a0:2c:46:86:7e:db:
c3:2f:ed:5b:c4:0b:43:c8:1e:9b:37:09:b9:16:69:e0:04:a9:
61:b2:ab:be:ab:54:4f:b4:da:7a:c8:76:59:dd:47:e0:db:a1:
18:7c:41:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:18:57 2025 by rpki-client