Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json)
Hash identifier: kE4HeMjUyrt6OuSBivV7xeDxtFlxMflZrA+WHlBDsls=
Subject key identifier: 4A:C7:D7:FD:14:3B:A3:8D:C4:6A:ED:A6:F0:0F:CB:58:EA:BD:59:19
Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Certificate serial: 0197B77CC6E32A55553A8DA493376F727421
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
Manifest number: 0A5A
Signing time: Sat 28 Jun 2025 17:01:37 +0000
Manifest this update: Sat 28 Jun 2025 17:01:37 +0000
Manifest next update: Sun 29 Jun 2025 17:01:37 +0000
Files and hashes: 1: BlSKEWV8a0Pu0DQWSBEZ8E6j6Ig.roa (hash: E+fl2IDftOEsy56bvfa1HOBzyBMqnDbK6GEdF9F9KeI=)
2: amBacDdU6Mjk1rJegCvOmhPZCuI.roa (hash: QFuN87Ca0aIv1BOf1cf5zbuSpQPxJlnZXFNDEW5Ik9U=)
3: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: TlpxV3uWjVVIEq391e6ro9tM7gDxckYuC+7zqotrUMY=)
4: oQUx3CaetTGOoOfH7R_GIuQC9ZM.roa (hash: QXtVeIAnBIaJbBWzjL0HKxzProdKFi/c2re+3CNcveM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:c6:e3:2a:55:55:3a:8d:a4:93:37:6f:72:74:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Validity
Not Before: Jun 28 17:01:37 2025 GMT
Not After : Jun 29 17:01:37 2025 GMT
Subject: CN=4ac7d7fd143ba38dc46aeda6f00fcb58eabd5919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7b:b9:77:41:9f:8c:fe:66:04:f5:0b:69:b4:
e6:33:2d:dc:ea:8b:82:a2:fe:42:f6:97:d7:d3:3a:
9f:2e:68:64:23:84:4f:8f:85:03:ff:08:1d:82:34:
d9:ac:7f:94:12:a2:03:4f:5d:46:c8:f4:60:bc:21:
5d:43:2f:29:de:60:0a:4b:39:0d:5c:ae:12:f0:5a:
6a:52:52:71:cd:98:5c:5d:a6:ff:cd:ad:a0:50:73:
d8:71:a7:f9:a1:d6:76:c2:27:9f:2d:f0:23:d7:1e:
7a:09:d7:65:35:03:76:f0:f3:dc:9b:bb:1f:e8:75:
00:13:e4:aa:e4:bc:8b:59:05:04:d6:c8:b1:59:e0:
5d:df:03:f7:ab:88:07:7f:d0:4f:8c:13:a5:d6:9f:
8b:b6:0a:18:b5:3e:ff:c0:8f:db:b8:78:93:a2:fe:
1e:de:69:d5:36:2e:34:4c:d7:9c:a5:11:99:48:cd:
ed:aa:83:e6:1d:18:7e:0c:ca:bb:43:57:98:64:40:
16:f5:a1:db:dd:e8:68:0f:60:dd:db:7b:2f:de:ce:
3e:c7:75:b8:8e:ea:61:a2:65:a2:80:41:5e:31:e5:
6c:44:47:42:c7:d9:45:e9:e5:b3:a8:24:74:69:7e:
25:3e:57:dc:9a:f7:85:0c:78:71:b8:26:e4:a8:d5:
9f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C7:D7:FD:14:3B:A3:8D:C4:6A:ED:A6:F0:0F:CB:58:EA:BD:59:19
X509v3 Authority Key Identifier:
keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:ae:1f:91:eb:de:a6:67:15:8a:19:88:02:c0:d9:ab:09:79:
ca:69:04:aa:9d:a8:73:6b:74:04:5a:fd:69:92:82:ee:2b:6b:
4c:71:72:66:67:e8:1c:e6:55:fe:30:ca:88:63:75:99:40:6d:
9f:b6:a1:0d:28:69:2f:35:31:ee:2a:6e:d3:80:53:bf:31:01:
0e:b8:39:ec:6e:51:53:33:79:18:82:5c:ee:44:81:63:bd:cb:
45:4e:5e:ea:20:2e:7b:5d:e6:eb:95:1c:bf:66:a6:af:97:8e:
1d:47:9b:a4:c0:a5:44:20:13:de:19:db:8d:9f:c3:70:01:84:
25:08:db:9d:92:57:a3:5e:27:fc:ee:90:e2:3f:13:e7:02:1c:
72:21:40:91:d1:2e:33:99:aa:79:73:86:19:22:6b:3f:56:70:
f8:3a:f0:ed:7b:39:7d:30:19:89:94:8e:f9:23:fe:e0:ef:c4:
15:db:56:42:9a:6f:cc:17:b2:58:4a:6c:ba:89:2c:64:83:64:
cb:d5:db:da:cf:82:41:55:ab:41:4b:58:0c:18:74:36:14:e3:
54:e2:69:6e:c5:61:85:65:e0:18:09:3b:bd:6e:ff:6f:1a:aa:
9e:6a:7b:b8:b0:dd:29:55:06:f3:87:98:0a:e2:44:be:d5:d7:
96:df:d8:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:51:20 2025 by rpki-client