Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
File: cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft (raw, json)
Hash identifier: tLYjGacB+C4D309GWzr99PstifJTAbUwxRY/SbAsOxI=
Subject key identifier: 3F:AE:64:69:F9:63:4E:A1:F0:07:04:85:5C:55:72:B7:59:43:1E:33
Authority key identifier: 70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
Certificate issuer: /CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Certificate serial: 0197B6A2272900EE394124F26360A5DDEF41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
Manifest number: 11FE
Signing time: Sat 28 Jun 2025 13:02:49 +0000
Manifest this update: Sat 28 Jun 2025 13:02:49 +0000
Manifest next update: Sun 29 Jun 2025 13:02:49 +0000
Files and hashes: 1: Pmv8pM8XqssRTrBIwYfMIrBu2co.roa (hash: v4JQsWfqUQF/aizb6/kkH5lzSW7tzkWIy4FJVzppxAI=)
2: RQjHthweEF9-820WAQ_PQzmnlEM.roa (hash: nBMPnR4O6VvmGYLIOUpQxt7mk0o9gXGO9uw/qf7b94A=)
3: Wwvcf_CdHRy8gkrOQZUQURuseiI.roa (hash: xkPyebxyoo94+1+QeBv80ewSsDDTwjJTGd/zo7NXJ5g=)
4: cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl (hash: 9GnFSiO5dR+cjxkGWGrPMj4w1bFd2bI9OOdei20PG0s=)
5: lVsIvIm2siK76Iwlc1JEpwaFSPI.roa (hash: TUnieu9UOgS3hw0oaMGHMZ2FiYRQqrhlAMNc6BYERoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:27:29:00:ee:39:41:24:f2:63:60:a5:dd:ef:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Validity
Not Before: Jun 28 13:02:49 2025 GMT
Not After : Jun 29 13:02:49 2025 GMT
Subject: CN=3fae6469f9634ea1f00704855c5572b759431e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f3:5b:4d:83:ac:3e:0b:4c:54:ec:9a:7b:5d:
04:f7:ba:62:40:37:0d:42:d2:7a:7a:bb:f0:49:8a:
16:3b:fb:70:5c:28:7f:18:39:c5:10:81:22:5f:00:
3c:03:47:ec:d6:99:61:92:04:de:2e:e4:29:f4:77:
3c:40:66:69:22:80:9c:7a:95:82:61:b4:eb:80:2d:
7d:9e:5a:70:69:bb:2a:ab:46:c3:0e:14:8d:36:f9:
45:5e:70:d0:45:00:73:b3:13:cf:a1:1f:ad:1c:02:
66:02:d4:e8:70:18:36:dc:53:f3:c0:89:92:d4:99:
f3:4f:97:09:f1:dd:8e:ba:f9:36:e2:b8:61:69:53:
e5:1c:e9:1f:73:c0:ca:e1:d6:ed:04:3d:41:6b:ad:
a1:e3:28:7b:73:d5:2a:87:e6:49:c9:30:d7:d4:52:
4f:25:a9:cd:66:7b:1c:d7:11:48:4f:72:3c:27:80:
79:33:ba:2d:2c:bd:32:d5:19:41:23:1e:56:8e:80:
7b:5e:e0:de:11:85:19:78:76:82:86:27:52:cc:d2:
ff:b7:6b:11:c4:ef:af:5c:f1:98:95:02:a3:90:ee:
5d:2f:32:9f:06:e0:f7:0a:01:3e:97:ca:34:14:7c:
0a:9d:3c:0e:0b:fc:54:57:0c:62:e4:07:61:78:51:
cb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:AE:64:69:F9:63:4E:A1:F0:07:04:85:5C:55:72:B7:59:43:1E:33
X509v3 Authority Key Identifier:
keyid:70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:21:40:9d:f6:2a:9d:35:cb:44:20:c4:cb:72:3c:63:2b:ca:
c8:2a:26:7d:c3:aa:73:bc:6c:b4:e8:cf:54:b4:57:66:48:3a:
5e:1a:cd:4f:4a:e3:c2:37:e2:2e:b2:8a:b7:b2:0e:a6:db:da:
bd:05:3b:cd:72:1e:dd:e7:35:c4:4a:39:30:43:87:19:dd:b2:
58:37:c5:71:83:27:a3:60:f6:2a:74:04:86:b2:4c:21:04:80:
8b:d6:a2:b6:cd:f5:d7:c9:0a:9a:b1:f5:53:ae:48:85:82:f9:
e1:f4:7d:b1:f4:f3:80:ed:d8:69:5f:2f:55:af:d7:e8:cf:d0:
46:c6:81:12:9f:1b:80:9f:64:3d:ef:da:ee:b9:86:c6:7e:84:
c5:a4:13:d6:d4:4d:28:fa:58:88:ce:26:d4:d3:36:03:26:27:
fa:6e:71:b4:7f:ff:9c:0a:7d:44:06:1f:e7:03:8a:f7:b7:89:
8f:41:58:e0:a4:29:90:cc:ab:d5:1a:9f:d7:17:2e:ce:ba:14:
72:f6:9f:5b:f5:25:32:7b:9b:78:ad:d1:72:46:99:ed:10:9b:
18:56:48:01:a4:21:02:f5:d0:11:8e:b1:ee:1d:b6:67:a8:59:
16:24:58:44:1d:b7:00:0c:d3:8a:d2:17:7f:42:9c:8f:3e:ed:
cb:5b:af:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:19:16 2025 by rpki-client