Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
File: lER-sxl6ox5-aEnxavVaslMB-oI.mft (raw, json)
Hash identifier: GoenVehIURW/6KH7z0Lqoymr14KXap/eMMhVA8KjqIU=
Subject key identifier: 83:E2:8E:7A:4C:2A:4A:A8:5C:11:45:15:6D:FB:15:9D:58:B4:1A:4D
Authority key identifier: 94:44:7E:B3:19:7A:A3:1E:7E:68:49:F1:6A:F5:5A:B2:53:01:FA:82
Certificate issuer: /CN=94447eb3197aa31e7e6849f16af55ab25301fa82
Certificate serial: 0198D5BB8025DAEDF19A6D6637C1215801B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
Manifest number: 05C2
Signing time: Sat 23 Aug 2025 07:01:31 +0000
Manifest this update: Sat 23 Aug 2025 07:01:31 +0000
Manifest next update: Sun 24 Aug 2025 07:01:31 +0000
Files and hashes: 1: lER-sxl6ox5-aEnxavVaslMB-oI.crl (hash: S1YGZrwFCRG1pcFZCnoEmwUh2cl8Yl61YLGiB1Pi0ZI=)
2: o3HDa5Hn0JXB7VWawD3Vzcdyd5k.roa (hash: di4+72seaNK8FCueSsPtQY60+2j8OsXpOCEk2d98xmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:80:25:da:ed:f1:9a:6d:66:37:c1:21:58:01:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94447eb3197aa31e7e6849f16af55ab25301fa82
Validity
Not Before: Aug 23 07:01:31 2025 GMT
Not After : Aug 24 07:01:31 2025 GMT
Subject: CN=83e28e7a4c2a4aa85c1145156dfb159d58b41a4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b3:7a:d4:2b:db:c1:95:3c:0e:49:99:8e:7e:
a1:a3:ad:b2:aa:8e:87:6b:be:92:a0:22:f3:e3:1f:
47:61:7f:bc:60:ba:41:8e:ec:e0:f7:34:d6:cb:56:
20:a5:11:e4:e2:3b:e0:16:83:c8:5e:2f:a5:0a:6a:
f6:89:cc:85:0b:0f:79:ee:89:ea:60:b7:0b:a8:4e:
a6:9a:74:6a:9e:39:45:41:ed:2c:93:b9:d4:d6:40:
37:29:6a:88:de:20:4d:4a:fe:d2:41:04:00:7a:7c:
ff:ef:ee:cd:30:63:83:45:ab:18:15:1a:5e:44:79:
2e:5a:33:3c:23:21:45:14:13:82:ba:bf:d0:3c:20:
fb:66:be:53:61:d5:d6:9f:e3:47:9b:2b:ca:19:ad:
45:26:b5:14:c7:24:8d:88:8f:7d:7a:8f:c8:ae:c7:
ae:92:f5:57:24:59:77:fb:2c:9f:63:dd:66:57:0b:
88:1d:86:30:26:f4:d0:b0:84:cb:27:31:9b:64:f4:
a9:c9:5a:35:5f:f7:70:3e:8b:a9:44:3d:d7:57:40:
85:c6:7e:c1:4a:05:fe:c2:cd:39:a0:f0:6a:32:ce:
bc:74:10:da:0e:a0:25:ca:cc:e8:d1:23:f4:40:97:
ca:4f:9f:6b:d3:0c:f6:34:bf:91:94:2d:a8:99:d0:
54:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E2:8E:7A:4C:2A:4A:A8:5C:11:45:15:6D:FB:15:9D:58:B4:1A:4D
X509v3 Authority Key Identifier:
keyid:94:44:7E:B3:19:7A:A3:1E:7E:68:49:F1:6A:F5:5A:B2:53:01:FA:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:48:b5:8d:f4:fd:9f:5d:53:0c:4c:b8:7d:31:37:6a:48:e8:
8d:5d:cb:a8:81:ba:86:bf:b8:dc:8d:25:ab:eb:cf:11:0b:2d:
d1:19:ca:87:35:b2:d1:11:69:81:25:88:eb:c6:39:c8:c3:31:
fa:47:5d:00:2e:46:a5:cf:47:c3:b3:3f:22:73:22:d8:1e:f9:
b6:f7:5f:3f:8e:e7:d7:c1:61:9c:c2:a7:a6:89:51:f0:6d:95:
4e:ca:ae:e0:e2:c9:64:6b:8e:9a:b4:64:8c:66:88:f3:d3:5f:
94:d1:7d:39:68:e8:87:02:17:7c:47:81:77:71:2c:6c:4f:fa:
3a:fd:04:17:91:20:09:00:35:05:1b:5d:32:4f:a2:6c:87:e5:
7e:04:aa:84:0e:0e:40:82:ef:e4:c8:a2:fa:01:21:a7:4f:15:
70:8c:a2:30:58:6c:56:48:12:d5:0a:13:89:dc:97:99:11:4f:
08:f0:03:3f:53:b5:17:70:69:d6:ec:d6:b9:98:bb:8c:35:81:
a3:b0:78:87:e6:99:08:e0:55:ce:06:18:fd:a5:7a:61:bd:49:
69:cc:01:d5:b0:27:b0:76:26:64:90:98:cf:cf:7a:08:1f:9f:
9a:60:8b:b7:11:9f:f5:60:9f:be:e6:ff:f8:59:68:4a:8b:7c:
d8:a1:4c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:44:41 2025 by rpki-client