Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
File: lSGiYvUHXiSys8m2nIr0DimIoeQ.mft (raw, json)
Hash identifier: Bf6ex+eM9x1cLGGBg9SW058fb3d0y3fM0Mpjnz+1fl0=
Subject key identifier: 1B:03:37:1F:C5:06:95:48:45:52:91:3F:8A:41:0A:2B:6E:3C:A6:3F
Authority key identifier: 95:21:A2:62:F5:07:5E:24:B2:B3:C9:B6:9C:8A:F4:0E:29:88:A1:E4
Certificate issuer: /CN=9521a262f5075e24b2b3c9b69c8af40e2988a1e4
Certificate serial: 0197B820ED67C2128E15B66BFF1A0D1BA5A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
Manifest number: 02D6
Signing time: Sat 28 Jun 2025 20:00:55 +0000
Manifest this update: Sat 28 Jun 2025 20:00:55 +0000
Manifest next update: Sun 29 Jun 2025 20:00:55 +0000
Files and hashes: 1: Lpcsk8pQMiEPT6ApZhOXx9JAafQ.roa (hash: UQY6sisXum2gKK35fkWx14SykCBKN5d6dEz3tT5FKwk=)
2: lSGiYvUHXiSys8m2nIr0DimIoeQ.crl (hash: i4VXgbmc4bC6CxuC1Td2fjNC7HZNHSSthMcXdvPYTRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:ed:67:c2:12:8e:15:b6:6b:ff:1a:0d:1b:a5:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9521a262f5075e24b2b3c9b69c8af40e2988a1e4
Validity
Not Before: Jun 28 20:00:55 2025 GMT
Not After : Jun 29 20:00:55 2025 GMT
Subject: CN=1b03371fc50695484552913f8a410a2b6e3ca63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:c4:a2:50:28:91:21:f6:80:75:bd:b9:42:56:
24:6f:73:e5:9f:38:5f:1d:21:86:46:08:3d:b4:75:
b0:24:53:dc:2d:00:7f:83:e8:09:04:d1:d3:14:83:
69:f8:cf:e0:99:ef:78:db:1d:79:04:55:e7:15:83:
55:5d:6f:31:7a:a7:22:2b:5f:08:de:d4:d7:e3:f8:
70:6b:15:65:98:22:bc:0a:49:ff:20:42:dc:5f:b6:
65:5d:d8:5c:c1:16:12:ef:10:b9:d2:5b:fd:85:5b:
1c:07:c5:64:28:86:44:f3:bf:a3:37:91:e9:e9:3a:
e0:41:7e:17:20:28:8a:77:4f:cc:20:bd:4a:e9:ac:
aa:87:1e:16:8e:e8:02:94:43:4e:15:b5:df:fd:4b:
e9:15:de:a7:10:a5:71:03:7d:bd:cd:69:57:81:5c:
6f:1e:fd:3b:32:41:3b:ce:98:0f:71:ea:b6:05:9f:
b0:0b:f5:43:62:3c:da:0f:93:c3:98:ed:80:c9:f1:
4f:c5:e2:c8:24:5d:a6:e7:ef:42:69:2b:87:c1:32:
3a:da:5b:ec:64:b5:42:8e:c8:9e:92:a4:c5:9c:87:
98:c6:75:bc:07:8b:fa:37:0b:c6:7a:78:a1:59:20:
d5:b3:79:c7:7d:c6:f0:2d:90:73:06:08:84:9a:19:
55:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:03:37:1F:C5:06:95:48:45:52:91:3F:8A:41:0A:2B:6E:3C:A6:3F
X509v3 Authority Key Identifier:
keyid:95:21:A2:62:F5:07:5E:24:B2:B3:C9:B6:9C:8A:F4:0E:29:88:A1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:5e:19:a2:fd:24:f5:06:32:21:eb:a9:0e:35:89:11:da:00:
73:8e:ae:1d:51:7a:b2:69:20:b9:5b:5a:a3:93:73:f1:a2:fa:
97:d3:68:d2:2f:3d:80:a6:a7:93:7d:a0:64:61:d4:42:73:66:
3c:74:ac:5f:39:d4:61:77:9e:7a:d8:ef:17:7b:fb:ea:8c:73:
58:82:fb:33:5b:94:06:d4:78:bb:dc:8d:7d:d3:20:bb:6e:9b:
57:40:7f:85:ec:f2:3e:1a:67:0d:d1:af:2b:f8:8f:5f:36:d0:
4f:af:30:92:f6:42:25:69:d4:7f:98:8e:08:4b:eb:e1:5b:3c:
6f:3a:3a:6a:90:03:0f:94:60:49:f3:fb:4f:e7:a0:86:1b:24:
70:22:f6:30:e1:f9:7e:fc:36:15:ad:5b:7c:7e:60:5a:a5:a2:
e3:73:dd:86:01:2d:c0:25:4d:3b:2d:5b:ce:62:1e:10:05:cd:
e5:95:90:fa:96:6b:37:09:65:b2:a3:f5:82:fe:df:0b:e9:72:
73:02:14:68:1f:36:09:a8:af:43:cc:72:ee:15:9f:b1:64:8e:
af:ee:eb:c9:df:12:7b:f3:91:69:31:e9:85:43:b1:67:67:fe:
16:8c:99:1e:0d:a5:11:b3:ac:30:c9:96:93:b1:92:bd:db:5b:
1d:00:4f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:34:00 2025 by rpki-client