Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json)
Hash identifier: k9x01eSkMeOh50+Ll2IDlUKhPQG2xmUjzK7zZWkY3P4=
Subject key identifier: 50:3A:CC:95:11:CA:06:5E:F4:C6:44:24:12:60:77:B7:AB:27:D4:84
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 0197B7EA2A0E74B7E789333B2F48FF8922B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
Manifest number: 0A37
Signing time: Sat 28 Jun 2025 19:01:06 +0000
Manifest this update: Sat 28 Jun 2025 19:01:06 +0000
Manifest next update: Sun 29 Jun 2025 19:01:06 +0000
Files and hashes: 1: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: wizSZMwOFXq/QBj3rBfXGEOwFJ7Xu9DTYRSFTToG/FI=)
2: r2nr9uHWjEIdTibij9wAoHFt-FM.roa (hash: 9uPtC9m4AAQGXek/5tdGjDekJKVu5XPicOZ4ymE6WZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:2a:0e:74:b7:e7:89:33:3b:2f:48:ff:89:22:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: Jun 28 19:01:06 2025 GMT
Not After : Jun 29 19:01:06 2025 GMT
Subject: CN=503acc9511ca065ef4c64424126077b7ab27d484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:bf:c5:96:bd:aa:a8:87:b8:8b:3b:bb:9c:0c:
6c:f1:a7:53:e0:04:6b:86:d2:0c:69:4f:89:71:43:
07:67:1d:23:9e:e0:1d:00:9f:dc:20:3e:25:75:a0:
f4:b6:5a:05:14:22:0d:d9:f5:60:ce:a0:a3:9c:03:
c4:16:3d:2b:73:be:a0:28:5e:d5:41:ba:f4:34:e1:
89:b5:fb:e8:60:51:5b:a7:fe:8a:3d:2e:4a:51:ba:
52:05:d5:4e:7e:b1:a0:61:79:b9:a2:79:ab:5b:64:
78:09:e4:be:70:72:ff:1e:b1:86:4f:3b:c7:34:29:
ad:b6:20:9f:b2:1a:d4:f9:81:7f:ba:c9:4d:3f:35:
a1:b0:c2:e9:94:9f:fa:a8:7d:6a:30:94:e5:ff:94:
ec:5b:64:d6:5c:ba:d3:96:0f:ea:fb:28:04:55:14:
25:2a:02:b0:dd:21:b4:4a:83:30:14:ea:dd:5a:28:
e2:f7:e6:0c:56:83:88:fa:26:f5:92:d4:81:aa:f2:
c1:70:61:2f:ad:b1:b0:74:4f:32:b6:cc:39:28:50:
5e:6b:1d:e1:4f:f4:49:fe:26:94:ba:f4:4d:19:14:
b7:be:09:e2:3d:20:6c:d2:09:e0:6d:d1:d0:bd:51:
fa:c2:31:46:fb:67:1d:a3:38:2a:be:3b:02:e3:8f:
ca:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:3A:CC:95:11:CA:06:5E:F4:C6:44:24:12:60:77:B7:AB:27:D4:84
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:5a:a5:b2:6d:bf:f6:5a:ee:ed:b2:e3:0e:27:db:fe:11:54:
82:69:46:94:e8:44:e5:e9:9f:50:60:09:ce:64:d9:c9:35:9c:
2d:20:ea:a9:39:ad:a2:2a:e7:d1:1c:7e:6a:d6:b3:54:e5:01:
6d:15:9f:7d:77:4a:c0:7a:c7:19:c8:b7:06:f3:ca:cf:a4:53:
87:cd:a9:0e:94:1b:d9:5a:a9:ab:28:8d:ac:1b:b1:fa:b3:55:
2c:f8:66:0f:8c:6c:d1:51:d7:cb:27:9e:a0:92:b2:85:69:72:
f2:d1:8f:1d:db:d2:fd:2d:7c:e5:c4:0e:bc:d1:20:d1:85:08:
d8:f1:d8:f9:5e:cd:43:70:94:59:be:85:ad:dc:21:51:27:ec:
53:e2:67:6c:4f:27:11:5f:4d:e2:d2:51:21:5b:e5:4f:e0:2c:
f6:31:1a:68:60:b3:2c:93:b5:2a:9c:78:e8:39:87:60:09:20:
81:ae:28:a1:81:db:9a:04:b6:c1:95:25:f0:8b:a2:61:e9:c2:
e3:0d:3a:00:3a:f3:73:7d:01:03:12:f9:d3:80:bd:f1:c3:7e:
d1:44:bb:7b:6a:20:79:60:1d:5a:fc:ce:d0:27:64:1a:f8:2e:
7c:e9:8c:71:6d:35:5e:b6:95:af:33:cd:f6:cb:76:78:48:e5:
1a:7d:7a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:48:50 2025 by rpki-client