Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
File: lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft (raw, json)
Hash identifier: TVxbh4j+oY7SkGhrQYsgNduiqqvx5/Krq8VNQZGhlOA=
Subject key identifier: B1:CD:E1:51:09:2D:BE:59:D5:7A:6F:7E:2E:BB:CE:05:57:1C:8D:FE
Authority key identifier: 96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
Certificate issuer: /CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Certificate serial: 0197C8392968A21037A371D55E2F06335723
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
Manifest number: 0D76
Signing time: Tue 01 Jul 2025 23:01:18 +0000
Manifest this update: Tue 01 Jul 2025 23:01:18 +0000
Manifest next update: Wed 02 Jul 2025 23:01:18 +0000
Files and hashes: 1: ew1zgYS28PrRo2_vyICjeeeZzZk.roa (hash: Fhi/oH9QUYxK/iP3UryNP+xQPg6T4wc9jRF/RdGEuMY=)
2: lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl (hash: duih0lU0B3q05I0x6/Yn6p3JUUxgDNooFXLCmuwuydY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 23:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c8:39:29:68:a2:10:37:a3:71:d5:5e:2f:06:33:57:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Validity
Not Before: Jul 1 23:01:18 2025 GMT
Not After : Jul 2 23:01:18 2025 GMT
Subject: CN=b1cde151092dbe59d57a6f7e2ebbce05571c8dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a0:20:60:60:fb:43:96:86:03:33:82:3e:8b:
45:dc:21:3f:3a:56:b8:0a:ee:bd:99:c9:eb:86:33:
53:fd:d1:f6:c4:0c:fe:8c:ef:d9:0e:d2:3f:8b:48:
32:e9:26:9d:eb:fe:2f:ae:49:e9:41:13:ce:38:d6:
4e:6f:0e:46:cc:3d:1a:18:0f:02:be:69:e0:20:fc:
c9:cd:c6:6f:fb:f0:2b:e6:d2:4f:c4:0d:f9:3c:d8:
ad:ca:1e:51:64:e2:ac:e0:4d:a4:56:a8:2f:46:1c:
e0:c5:a5:c4:6b:48:1e:52:b2:e0:29:33:fc:96:48:
d0:de:36:68:b4:42:26:28:38:e2:31:1c:e1:d5:7e:
43:fa:81:ef:92:d0:6f:74:3d:54:ba:46:e0:e8:ff:
a6:74:4b:19:61:7c:0c:81:5d:0c:86:3a:57:3f:37:
09:2c:d7:c7:d7:1e:94:ea:97:ab:21:b0:d9:db:ba:
92:ff:84:45:7e:d8:a0:db:26:e9:a5:f9:60:7f:bf:
e5:37:32:11:55:0d:5c:5d:bc:22:76:af:84:75:5d:
e8:27:05:33:b6:ed:93:06:48:d1:9c:86:6e:20:47:
d5:03:9e:3a:78:51:da:e3:6f:e9:cb:82:b9:90:ea:
38:2f:cd:4e:01:82:d2:bd:a4:7e:1e:c0:7d:0b:bd:
1c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:CD:E1:51:09:2D:BE:59:D5:7A:6F:7E:2E:BB:CE:05:57:1C:8D:FE
X509v3 Authority Key Identifier:
keyid:96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:b1:6c:ea:92:0e:53:ab:1d:9e:83:39:74:9f:d5:5b:bf:4f:
e1:79:e7:13:cd:7f:c2:f8:29:9f:f7:0e:95:26:22:a0:f3:e9:
05:96:18:25:f6:87:21:c7:ea:0d:27:52:e3:c8:67:68:21:d1:
46:f1:a6:3b:6c:2c:19:b0:d4:35:9d:4f:e6:83:30:f7:9c:7d:
a6:fb:4f:87:6d:f9:fe:c9:03:58:02:ce:32:50:f6:d3:5c:44:
e5:e5:a8:b0:f8:52:b2:0b:0b:9a:2e:37:69:0c:01:0a:e0:7d:
28:0d:7c:6c:cc:1c:53:ab:d6:d0:82:9f:78:32:ba:2f:76:f1:
da:f5:93:91:3b:fb:59:cf:73:bf:9c:7c:3d:5b:5d:06:4e:90:
6c:a1:b2:04:5c:2d:2c:f6:3d:11:a5:55:d6:94:e2:6d:f1:d9:
28:cd:c6:7f:53:f6:50:ad:58:e3:a1:4b:59:10:27:23:6a:53:
73:c6:86:d3:83:e1:16:0d:61:db:73:65:fc:e1:cd:7e:e0:b7:
fd:c2:24:fa:4e:4e:8d:9f:f4:22:f8:5b:e0:09:42:a6:83:c3:
56:8e:2f:05:6d:43:8e:9f:f5:cb:bc:48:76:8f:79:09:4a:e1:
c5:20:63:f8:2e:57:1f:58:59:a4:ea:85:73:42:13:11:f6:cf:
ec:88:e2:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 03:56:26 2025 by rpki-client