Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
File: LX893KDLOOx7CMaQKeIPUtxAjxc.mft (raw, json)
Hash identifier: iZf7G/E67smzPag7o4ky5erqKOEoAolO2OS9Nw8iHeM=
Subject key identifier: 49:31:C6:31:1E:0D:FF:AB:B5:74:53:DE:DC:BE:0C:38:C4:C9:E8:7C
Authority key identifier: 2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17
Certificate issuer: /CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17
Certificate serial: 019749D5E1A1A209151DC2DA753AFF8C1BCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 10:00:42 +0000
Manifest this update: Sat 07 Jun 2025 10:00:42 +0000
Manifest next update: Sun 08 Jun 2025 10:00:42 +0000
Files and hashes: 1: LX893KDLOOx7CMaQKeIPUtxAjxc.crl (hash: rIMr96P0/YmUaWThfiSj/pF+gXD0YYqKz+iVWCfo7VU=)
2: NJtD_wJPtwe6yI8QzJv-rd_AAv4.roa (hash: goN8mo/tdm+T4x5aP0V4Y6dre6dhF2ryG392gou/4Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:e1:a1:a2:09:15:1d:c2:da:75:3a:ff:8c:1b:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17
Validity
Not Before: Jun 7 10:00:42 2025 GMT
Not After : Jun 8 10:00:42 2025 GMT
Subject: CN=4931c6311e0dffabb57453dedcbe0c38c4c9e87c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:16:6e:46:ec:4d:81:3c:02:29:4f:f7:74:93:
b5:dd:8c:f8:c4:22:5e:91:7b:52:0f:82:2c:e2:c6:
77:12:e4:03:d8:a4:6a:dc:12:6b:a3:5c:df:28:fa:
34:a0:ff:8d:df:aa:fe:a0:75:ee:90:0b:6d:b2:43:
07:8a:6d:59:75:cd:42:21:83:90:6d:b4:0e:34:44:
ee:a8:3c:29:0e:1c:37:82:36:72:6d:a1:04:90:ad:
b9:7b:4e:76:90:9e:e2:65:87:c1:05:f4:07:36:c9:
0a:70:05:57:3d:96:10:7f:af:2c:1b:e0:e0:94:d5:
6c:db:00:e9:e3:5c:6a:ae:fb:6e:85:80:ad:c3:04:
1a:10:be:44:c2:18:eb:97:57:53:b8:c6:66:e3:c6:
f8:63:a0:2e:18:e1:20:42:05:f2:2a:a7:8b:8d:40:
8a:17:1a:94:bc:04:e4:20:c9:c0:0c:ab:3a:e1:82:
c1:75:df:5c:4f:47:0f:a1:28:78:50:c7:e0:e5:63:
f1:f2:f5:34:c8:97:0a:81:61:76:01:55:3d:24:b5:
ed:a0:b3:58:4b:88:d9:54:28:6f:62:0a:38:7f:92:
5c:09:9f:d1:65:bc:76:c3:2a:0a:9d:1e:88:38:27:
5a:91:c8:da:08:82:35:3d:d1:f6:16:2b:5c:d4:95:
d3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:31:C6:31:1E:0D:FF:AB:B5:74:53:DE:DC:BE:0C:38:C4:C9:E8:7C
X509v3 Authority Key Identifier:
keyid:2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:b2:ab:40:b7:3f:75:37:66:b4:e7:3f:4d:4c:20:9e:65:bc:
21:0e:e2:ff:94:19:f8:b9:44:b2:ed:cf:f8:58:3a:dd:88:fe:
dc:67:01:91:e1:14:99:da:6a:b2:bc:cf:cb:aa:d8:9e:ae:27:
ec:51:1d:a0:b9:05:c3:cd:aa:1d:62:44:f0:42:3e:b4:25:d2:
63:40:6e:f3:35:d1:f4:7f:59:5b:49:30:42:9b:f1:27:5a:6b:
16:06:c6:6a:16:0d:94:1d:1d:86:46:0b:26:d4:28:04:97:15:
be:98:3d:11:42:ae:cf:fa:71:42:3c:28:ee:cf:62:ca:7f:5a:
86:f4:b2:6a:bc:6e:8c:00:4a:a5:33:e3:0f:b0:10:57:35:d5:
7e:d5:99:de:9c:34:25:53:d5:9d:9e:f3:db:f3:3f:6e:38:cc:
24:dd:c6:e4:ab:52:5b:ac:37:f8:48:49:af:27:f3:11:63:b4:
a2:03:98:6a:ec:e8:58:5f:f5:97:f2:4d:b9:f7:9d:af:0d:bb:
29:59:5d:cb:b8:3f:73:30:2a:ce:18:7f:42:4a:8a:32:e8:5b:
f5:4a:2d:42:22:21:90:ad:f0:b7:fd:c1:1d:bf:61:a6:31:72:
bc:d9:bc:c4:5d:1c:73:4c:bf:a0:59:ad:df:cc:2d:1c:8e:31:
d0:e9:16:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:26:19 2025 by rpki-client