Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
File: legTEe8dNuzG0SXjbILCb5FbDfc.mft (raw, json)
Hash identifier: sgsFCDbbbezdHNGC/wzfp5cdjpSu4oAAac+YPKB1Ipo=
Subject key identifier: 87:01:8A:98:3C:2D:E5:E1:98:3D:19:8E:73:AB:12:C4:0C:77:69:8F
Authority key identifier: 95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
Certificate issuer: /CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Certificate serial: 0197CDCE76FF92001983EE8EA1098784C853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
Manifest number: 1123
Signing time: Thu 03 Jul 2025 01:02:29 +0000
Manifest this update: Thu 03 Jul 2025 01:02:29 +0000
Manifest next update: Fri 04 Jul 2025 01:02:29 +0000
Files and hashes: 1: WYTqj2Ru4b6Ds31lFp0qL0GBiG0.roa (hash: TiMpifh1/6heVxOwrxdYBK/lz/TeczLDX2jTHHgJqNw=)
2: legTEe8dNuzG0SXjbILCb5FbDfc.crl (hash: WHdH6btflr4fMpJxqmEmhjw3Dkn0hcVoi3cSz+Ke95s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cd:ce:76:ff:92:00:19:83:ee:8e:a1:09:87:84:c8:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Validity
Not Before: Jul 3 01:02:29 2025 GMT
Not After : Jul 4 01:02:29 2025 GMT
Subject: CN=87018a983c2de5e1983d198e73ab12c40c77698f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ab:7d:53:93:16:ff:00:19:3c:c7:0c:f9:47:
1b:bc:e0:ca:7c:e5:51:0e:fa:c9:ba:1f:b3:ae:e2:
53:69:ac:61:56:fd:ac:1e:87:90:76:e5:27:e9:b9:
a3:82:d9:a2:5f:a3:97:35:8d:32:f7:bb:a1:63:e0:
98:d4:32:16:d4:db:7b:9c:33:24:8f:e6:9e:f8:c3:
ee:3c:ca:5d:98:29:b4:f8:37:be:77:10:47:7b:4f:
62:3c:c1:5c:5d:18:9b:ba:54:c3:30:ea:97:24:60:
40:36:3e:80:4b:8f:c5:e3:d4:42:71:f2:7c:97:34:
4f:63:89:1b:a2:ed:00:82:c4:63:ce:34:0d:27:a7:
a7:63:1e:d4:b1:c8:50:c6:98:e4:79:bc:6e:c6:99:
c7:3f:d1:87:3d:46:60:65:be:9f:02:3d:78:c6:df:
a2:62:1c:9b:a0:94:2d:ba:3a:66:48:47:13:35:c0:
4f:b7:08:8b:24:3e:d7:79:8d:a8:92:1c:05:47:61:
c1:10:ba:9a:0f:1b:14:16:90:61:4a:0a:e2:2b:db:
cf:1c:c2:49:1d:32:49:cc:a8:f0:82:d7:f9:4e:da:
5e:22:81:98:cd:27:e4:b1:b6:2f:d5:22:82:d6:b4:
e2:85:7b:9e:e6:7f:2d:8b:80:fb:ae:33:65:3e:9a:
c5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:01:8A:98:3C:2D:E5:E1:98:3D:19:8E:73:AB:12:C4:0C:77:69:8F
X509v3 Authority Key Identifier:
keyid:95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:07:9e:e3:ae:7f:59:4a:c6:71:e8:d0:2b:ea:d3:fe:ab:e2:
b1:0f:f0:97:20:5a:48:5b:b7:06:c4:a2:96:3e:69:9b:52:c9:
ea:23:06:88:d3:41:57:e9:05:42:55:89:40:7d:01:38:3a:33:
ca:a7:e8:73:1f:64:e1:14:19:65:e9:b5:28:6d:0a:1e:28:be:
2a:1d:61:92:ff:9f:23:ed:79:aa:58:cb:05:91:84:ef:2d:d6:
6b:f5:da:3a:58:56:9f:be:85:ec:e4:9a:9c:be:8b:41:4c:be:
17:22:2b:f5:49:1e:49:b5:91:c3:b0:94:36:cf:75:4d:de:32:
a8:84:ab:b1:a6:51:5d:f9:46:d0:59:01:4b:fa:f7:ee:3b:70:
10:ed:62:8a:8c:f4:e7:e7:ae:24:c4:d1:26:35:37:13:1f:b1:
5c:92:f9:d8:c2:c4:a8:19:23:4b:fb:eb:af:e6:fc:de:bf:61:
a8:26:8b:4b:88:72:59:40:be:e7:c2:6d:c8:40:6f:f4:cd:44:
cd:41:78:7c:ef:fe:de:cc:33:8f:a8:4b:e4:21:81:59:3a:3f:
06:40:98:75:26:66:00:8b:9c:d8:10:e2:63:9e:29:15:7b:58:
3d:f6:ec:8e:80:07:f7:d4:5e:a6:e4:49:3f:aa:54:ea:23:bf:
b0:85:4f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 04:26:12 2025 by rpki-client