Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.mft
File: LRGXVPwU_-eWimUWvUm9slYzuIc.mft (raw, json)
Hash identifier: xgSWaePE3pu+C+xu2s0Gt92bjbZF0u/0EYOhC8FUjBo=
Subject key identifier: 31:42:A7:44:28:88:DC:96:63:64:60:8C:63:55:77:36:31:FE:12:C5
Authority key identifier: 2D:11:97:54:FC:14:FF:E7:96:8A:65:16:BD:49:BD:B2:56:33:B8:87
Certificate issuer: /CN=2d119754fc14ffe7968a6516bd49bdb25633b887
Certificate serial: 0197B6A05FF1F978ADA461CDE84DE20689F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRGXVPwU_-eWimUWvUm9slYzuIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.mft
Manifest number: 0F70
Signing time: Sat 28 Jun 2025 13:00:52 +0000
Manifest this update: Sat 28 Jun 2025 13:00:52 +0000
Manifest next update: Sun 29 Jun 2025 13:00:52 +0000
Files and hashes: 1: LRGXVPwU_-eWimUWvUm9slYzuIc.crl (hash: j7cfUpbiMPShSUjUg8u2LX/xyr3LSuei3dsupl13Kfo=)
2: Yq8p-Zl2UZI4Tb-nuCgzMSOT2M4.roa (hash: nZW2inX60+r3Vn2H9HqAa0liDQDWLVr6X/Z09+vg9g4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/LRGXVPwU_-eWimUWvUm9slYzuIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:5f:f1:f9:78:ad:a4:61:cd:e8:4d:e2:06:89:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d119754fc14ffe7968a6516bd49bdb25633b887
Validity
Not Before: Jun 28 13:00:52 2025 GMT
Not After : Jun 29 13:00:52 2025 GMT
Subject: CN=3142a7442888dc966364608c6355773631fe12c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cb:f4:7c:71:c1:af:36:3f:5f:fc:87:cf:07:
70:f9:e4:1e:be:6e:33:0d:45:e2:e6:84:79:f3:15:
8c:d0:a3:04:c0:b6:2c:a6:a1:bc:f7:9e:32:8f:1d:
8d:70:f7:37:84:f7:d1:07:92:a1:39:fa:e7:1e:7e:
62:b3:f5:15:64:81:4d:b5:02:b6:72:d7:54:49:a5:
88:9d:f4:73:d5:13:b4:28:cb:73:a5:f6:95:24:be:
95:52:3d:9c:5f:75:b7:26:ca:62:25:4f:13:27:f6:
a7:98:a4:b1:9c:92:6a:6b:d2:2c:93:62:9c:bb:96:
d5:1e:13:9d:29:c9:ce:0c:3e:06:4c:dd:29:34:d8:
65:08:b3:90:bf:dc:c6:10:f3:72:f5:e4:38:53:51:
1c:69:e0:e8:47:67:c7:f4:31:72:98:af:ad:c4:fa:
e1:e9:6e:6a:31:23:53:c7:ae:7d:49:fa:dc:8e:6c:
6a:45:4b:b4:11:a0:9f:a3:f7:1e:d8:19:6e:0b:b1:
df:87:af:08:29:13:8f:dc:16:06:93:b5:e0:46:c4:
59:01:95:77:1b:1e:9f:aa:cc:c6:5f:68:ed:d8:b8:
bc:62:8a:d3:ff:18:b8:91:a9:ee:6c:fa:5f:5d:d5:
d1:45:07:6e:91:38:20:74:5a:2e:32:4e:f7:a9:04:
1c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:42:A7:44:28:88:DC:96:63:64:60:8C:63:55:77:36:31:FE:12:C5
X509v3 Authority Key Identifier:
keyid:2D:11:97:54:FC:14:FF:E7:96:8A:65:16:BD:49:BD:B2:56:33:B8:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRGXVPwU_-eWimUWvUm9slYzuIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:7c:14:55:55:c4:7b:28:44:e9:18:3e:bc:7e:68:ac:f3:5d:
96:73:57:77:09:ad:da:b6:72:d5:2c:7a:bf:0e:a1:c8:71:2b:
f9:98:c3:b8:b5:33:b0:d7:ae:df:28:97:99:ae:a4:06:56:d0:
17:5a:eb:42:6d:b4:53:18:d0:8d:34:da:5c:85:65:9d:e4:74:
35:5e:a4:84:e6:43:b1:ad:c9:7e:cf:fe:f3:f9:8e:39:3b:33:
5e:f9:34:02:21:8e:58:ad:6e:75:da:f2:c4:0c:09:ee:1b:1d:
e2:1a:d3:09:69:76:b5:78:23:62:46:1d:3e:39:6a:e9:fe:67:
5f:c3:c5:64:66:36:f7:9f:ff:6f:93:1f:4d:0c:87:30:70:76:
76:02:2a:f1:49:05:0b:8a:23:71:5c:82:e6:c4:5b:6e:02:30:
32:7b:76:2e:39:71:0b:8c:a5:f3:1c:0b:f6:b9:9d:41:b8:98:
11:26:94:ed:c4:fb:a9:b9:cb:0c:4d:86:55:ed:2c:cc:42:0e:
7e:c9:f0:47:35:60:5d:e0:3f:ad:88:b8:75:b1:89:f0:a3:6a:
cc:6f:0c:d0:ee:ce:46:ce:45:6e:c6:ba:dc:76:20:46:b9:34:
1f:9e:2d:f6:d4:33:36:c8:ae:ec:79:b8:cb:e4:63:d5:fb:db:
44:4e:fd:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:55:48 2025 by rpki-client