Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
File: lXbbt2mVtJUKhsXwfKjbPrSWePY.mft (raw, json)
Hash identifier: vGB2Y1Llw5XEPRQ76zKxvwTKWYCxUV1QL2TjBGevnYY=
Subject key identifier: FA:F8:4A:14:3E:FA:B9:B7:94:6A:90:CD:35:23:26:5B:96:67:6B:D5
Authority key identifier: 95:76:DB:B7:69:95:B4:95:0A:86:C5:F0:7C:A8:DB:3E:B4:96:78:F6
Certificate issuer: /CN=9576dbb76995b4950a86c5f07ca8db3eb49678f6
Certificate serial: 0197B7454B2C31FC103320C15C43936E60A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
Manifest number: 02F5
Signing time: Sat 28 Jun 2025 16:01:01 +0000
Manifest this update: Sat 28 Jun 2025 16:01:01 +0000
Manifest next update: Sun 29 Jun 2025 16:01:01 +0000
Files and hashes: 1: lXbbt2mVtJUKhsXwfKjbPrSWePY.crl (hash: iisB2W1XcaUX5Iy8wZvYYcBsx8DV57G2lGI65FpoC5c=)
2: wOkYAGqpSPBGigfUEv7El852HGA.roa (hash: jGAVgltAX4k1B+fH3k6Z7JMTyuIFNv8n6kIlzZB4Zww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:4b:2c:31:fc:10:33:20:c1:5c:43:93:6e:60:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9576dbb76995b4950a86c5f07ca8db3eb49678f6
Validity
Not Before: Jun 28 16:01:01 2025 GMT
Not After : Jun 29 16:01:01 2025 GMT
Subject: CN=faf84a143efab9b7946a90cd3523265b96676bd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:12:3c:5d:e3:89:87:ca:09:5e:0d:de:49:d9:
02:b1:08:8a:d5:94:09:e3:9a:d7:12:2b:ac:fa:b8:
9d:10:65:fe:ea:60:93:d4:4c:1c:7a:b6:09:3f:71:
d0:01:e5:d0:c6:13:27:15:40:c6:eb:1e:54:89:20:
db:8b:84:54:41:cd:ee:34:8f:57:1b:20:eb:c9:8e:
c5:1a:c4:0d:0f:e4:6f:cd:93:79:fd:e1:aa:90:c8:
59:57:c2:71:18:f2:f7:92:5d:95:95:0d:bc:c5:aa:
83:cd:83:a9:a0:cc:e3:ab:4c:3c:45:2a:95:d7:39:
71:14:51:e7:0c:f7:5d:fd:7c:d8:64:3a:78:b1:76:
8e:e1:76:80:16:b5:11:e0:13:cf:69:88:a9:3a:a2:
fd:c2:cc:b8:44:f3:bc:bc:4c:74:b8:56:74:69:e6:
a6:aa:6f:9e:f0:a1:fc:4e:3a:52:5c:a1:62:62:4a:
41:55:b7:52:82:fe:13:07:0e:b7:bd:79:1d:b0:68:
d7:a8:32:88:41:89:03:8b:bc:a6:5c:be:55:23:03:
1a:0f:3e:54:b2:e2:81:11:6e:f9:96:59:dc:33:56:
a5:c1:37:3b:13:34:c4:12:2f:1d:48:e3:af:5a:24:
7b:ce:6f:1b:7d:53:98:a3:08:e8:3d:c2:5b:e8:65:
ed:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F8:4A:14:3E:FA:B9:B7:94:6A:90:CD:35:23:26:5B:96:67:6B:D5
X509v3 Authority Key Identifier:
keyid:95:76:DB:B7:69:95:B4:95:0A:86:C5:F0:7C:A8:DB:3E:B4:96:78:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:87:af:5b:5e:59:3e:21:21:2d:7c:a4:a0:b7:85:ca:0e:eb:
9a:80:67:8a:c9:d1:33:d1:2d:7c:56:fe:b0:27:81:46:26:a8:
9d:68:7a:65:12:63:ca:1c:1a:59:e7:12:14:65:df:79:43:be:
5d:57:5f:8a:cf:c0:bc:85:19:8c:41:11:e7:11:61:f0:b4:a3:
80:c4:b1:12:b1:af:b0:b2:b1:2a:06:8f:c1:56:43:6d:0c:3c:
00:9f:70:8f:30:14:87:46:5f:92:39:d9:e0:fd:22:db:3d:56:
85:ac:d4:dd:ed:32:97:7d:f1:02:aa:74:eb:70:a8:40:19:c9:
31:32:01:a5:16:3f:da:dc:9e:fe:17:99:7d:51:f2:e1:24:55:
ce:b4:76:29:db:69:17:83:d2:41:77:b7:36:5d:be:d0:01:ec:
e0:36:d3:30:6b:27:8a:f0:87:6a:a7:aa:86:2d:7d:2c:78:1a:
38:2e:ce:84:0c:2c:9b:e0:33:51:df:2d:88:5e:b2:e7:df:0d:
d6:57:d5:08:41:be:49:2a:37:91:db:ba:3e:b4:3a:cf:56:7d:
a3:51:64:a6:3c:5e:55:fd:76:89:88:24:03:70:ba:62:16:7e:
c7:11:cb:60:4f:c6:e3:05:44:f8:56:c5:6a:66:73:de:91:f2:
be:15:e4:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:53:17 2025 by rpki-client