Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
File: lER-sxl6ox5-aEnxavVaslMB-oI.mft (raw, json)
Hash identifier: PRiIRk8zmqs59r1T4we85asfoHoqUtX+qqg0pgsck9I=
Subject key identifier: 1E:1F:EC:02:26:99:24:32:BC:34:36:F4:33:E6:B2:F7:AD:6E:D0:55
Authority key identifier: 94:44:7E:B3:19:7A:A3:1E:7E:68:49:F1:6A:F5:5A:B2:53:01:FA:82
Certificate issuer: /CN=94447eb3197aa31e7e6849f16af55ab25301fa82
Certificate serial: 0197B7EA6CDBD9852B121971D4B0CB8B11D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
Manifest number: 052E
Signing time: Sat 28 Jun 2025 19:01:23 +0000
Manifest this update: Sat 28 Jun 2025 19:01:23 +0000
Manifest next update: Sun 29 Jun 2025 19:01:23 +0000
Files and hashes: 1: lER-sxl6ox5-aEnxavVaslMB-oI.crl (hash: eIBSGMJRH3Lujq8PC/sLR5niORhGVuk0FeyYZ4KPSUk=)
2: o3HDa5Hn0JXB7VWawD3Vzcdyd5k.roa (hash: di4+72seaNK8FCueSsPtQY60+2j8OsXpOCEk2d98xmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:6c:db:d9:85:2b:12:19:71:d4:b0:cb:8b:11:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94447eb3197aa31e7e6849f16af55ab25301fa82
Validity
Not Before: Jun 28 19:01:23 2025 GMT
Not After : Jun 29 19:01:23 2025 GMT
Subject: CN=1e1fec0226992432bc3436f433e6b2f7ad6ed055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:19:33:f9:18:b4:1f:47:a3:06:37:97:05:7f:
1a:3d:ba:8d:9a:fb:39:28:1a:a4:08:41:13:f6:84:
3d:3b:b0:aa:1a:cb:54:e9:a8:d0:fb:f9:51:8d:57:
36:46:83:09:e1:92:3e:f1:7c:a5:21:dd:2c:33:57:
a2:5b:71:15:15:1b:06:2a:32:fd:74:e6:a3:2c:0a:
ae:67:d1:a8:fd:76:ff:9b:15:c9:14:78:49:db:70:
80:0d:45:dd:bf:6f:c5:62:ee:2a:d3:48:c6:43:b4:
8d:2c:7e:c6:02:a2:42:06:3a:e1:f5:21:85:e5:27:
70:07:1b:41:ee:dc:ae:e0:3b:2f:74:02:92:f7:05:
98:dc:c5:1f:e2:ec:66:dc:92:1d:98:d9:c7:50:00:
70:bc:22:53:e5:94:c8:b4:62:a7:2c:80:c8:9d:d1:
3a:ca:66:ff:77:50:58:64:a6:25:74:c0:c9:a4:51:
ac:ad:2c:f0:8e:a2:0c:2b:f5:8a:e1:46:a0:09:a0:
22:4b:1a:ec:fe:30:33:41:e5:97:c6:9a:51:5a:8e:
91:24:1b:7c:38:3c:83:f5:e9:19:53:37:92:13:b1:
a7:50:05:1c:5d:dc:0e:34:d4:53:82:0a:76:2c:7a:
6c:54:93:91:c9:11:fe:7b:af:92:1b:b6:f4:3d:d6:
23:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:1F:EC:02:26:99:24:32:BC:34:36:F4:33:E6:B2:F7:AD:6E:D0:55
X509v3 Authority Key Identifier:
keyid:94:44:7E:B3:19:7A:A3:1E:7E:68:49:F1:6A:F5:5A:B2:53:01:FA:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:e1:37:3c:f7:eb:34:11:49:5c:fd:a5:81:22:85:3a:7e:3a:
b2:b7:1c:de:f5:ad:78:5a:87:8b:24:7c:dc:dc:ca:7f:df:9a:
72:7b:39:3c:71:3a:42:a3:93:8b:7b:fc:38:8d:2e:17:b7:47:
f8:69:a3:b6:8e:8d:f4:f3:af:c9:00:5f:3a:14:33:91:8c:d7:
a2:d2:1e:4a:99:a0:e7:61:e4:73:66:e9:1b:5a:34:98:f2:8e:
8d:db:16:4b:ce:a5:fa:31:69:78:26:8c:65:e1:c6:29:71:f5:
35:1d:a9:78:4a:61:da:03:16:b8:38:7e:bb:03:fb:ea:9a:db:
2c:cb:ea:80:97:3e:7f:0c:00:59:0f:8d:38:47:bf:5a:8b:78:
a1:4a:7b:a5:85:19:b3:25:c4:b1:74:24:73:98:de:bf:aa:2e:
d5:01:30:18:81:ce:b0:19:23:64:49:b9:9a:c7:55:e6:56:62:
d9:cd:c9:0e:a3:23:5f:db:e0:ac:36:dc:c3:45:bd:54:42:82:
02:12:33:9f:8b:1c:28:87:7d:64:88:f8:da:d7:1d:82:01:35:
d0:98:96:41:f2:76:39:67:21:d0:49:13:e2:6c:a4:25:14:b2:
3d:19:a1:98:1a:6d:75:c2:69:6f:d3:d1:6c:5c:d0:34:3d:83:
27:07:c5:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:43:05 2025 by rpki-client