Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
File: lKpBiudwvajvBRax0cYzpn6R84s.mft (raw, json)
Hash identifier: H/ml7sReEqBvt/YV91LAwaTo82Ylt+nGGPjjYqNAdzc=
Subject key identifier: 8D:C5:25:FE:B3:67:3C:4D:BB:90:C5:C3:F2:C0:14:A9:A8:09:14:EF
Authority key identifier: 94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
Certificate issuer: /CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Certificate serial: 0197B6A17CF341DB5CEF4960640ECB525F72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
Manifest number: 0F7D
Signing time: Sat 28 Jun 2025 13:02:05 +0000
Manifest this update: Sat 28 Jun 2025 13:02:05 +0000
Manifest next update: Sun 29 Jun 2025 13:02:05 +0000
Files and hashes: 1: JDbsNRiv_WMTlViBQXQ3g59gK5M.roa (hash: 5BHapuXzcbpJhpfOa/evo44J0f0F6BTnvXfMcpPhdEU=)
2: lKpBiudwvajvBRax0cYzpn6R84s.crl (hash: FQZUfxrAU5tO4tZGqF3Ik62YYO6Qw8jHQ3WPHWSr8ws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:7c:f3:41:db:5c:ef:49:60:64:0e:cb:52:5f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Validity
Not Before: Jun 28 13:02:05 2025 GMT
Not After : Jun 29 13:02:05 2025 GMT
Subject: CN=8dc525feb3673c4dbb90c5c3f2c014a9a80914ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4a:87:d2:db:d0:7d:a2:b6:c6:0d:63:30:5a:
38:fc:4e:e6:a1:3b:5c:6d:71:75:5f:00:2e:c3:fe:
ee:bc:93:d8:b9:7b:d0:d8:7a:99:98:c6:8c:0a:20:
ee:ff:4b:90:66:8f:01:84:bf:5f:bb:28:e2:f4:f6:
34:c9:ea:a1:9e:af:6f:d3:11:a3:17:f6:e8:eb:fc:
a6:c1:d5:4f:f6:dd:9a:38:67:a5:d7:ee:4f:59:4c:
2a:2e:e8:82:8f:46:60:ac:71:36:a3:3b:2a:98:2c:
b8:1f:e2:e1:93:46:ec:24:33:e4:d3:57:12:46:bf:
13:d3:91:c0:06:10:4f:f0:56:12:9a:08:c0:47:e0:
79:25:49:eb:10:7d:ad:ba:46:2f:aa:4e:d0:0e:99:
c1:05:ea:a3:5f:77:63:16:8e:3b:e7:b4:56:3f:fc:
53:85:33:db:a3:fc:53:1f:86:a3:bb:dd:56:29:d8:
90:db:f6:93:22:a7:47:bb:91:cc:66:59:9e:5c:64:
e8:fa:af:d9:ec:cc:69:be:dc:0d:29:b0:75:4b:7a:
ef:87:20:ff:91:5a:a4:f0:34:d6:7b:56:02:fc:74:
1e:e7:4a:53:84:0f:7c:a2:c7:9e:db:e3:9b:6e:ce:
62:1f:08:9e:ff:d1:8a:6c:d4:0f:af:51:9c:c1:72:
d4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:C5:25:FE:B3:67:3C:4D:BB:90:C5:C3:F2:C0:14:A9:A8:09:14:EF
X509v3 Authority Key Identifier:
keyid:94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:d0:59:27:51:be:d6:b7:58:4d:d7:4a:5c:da:f9:dc:b7:77:
80:14:da:c2:98:ea:89:8b:5a:0f:ec:19:cf:12:c8:86:3f:5c:
ff:d6:6c:d9:b3:e8:9c:6a:a5:95:8a:77:d8:0e:ff:4e:8d:33:
42:33:fc:37:1e:cd:71:75:5d:14:d5:a3:46:b4:59:d5:99:73:
23:11:96:89:b3:bd:8f:45:a5:34:a2:8b:04:af:29:23:5a:21:
ee:0b:2d:33:0f:52:25:3f:a8:dd:9d:3f:ad:b1:2e:e3:62:95:
8d:05:e3:f9:ec:fb:f0:59:da:ec:48:e9:14:0c:29:22:cf:36:
7b:e2:8a:df:17:0f:fd:5f:33:31:d5:4e:26:3b:57:96:d9:89:
5b:61:aa:93:fa:af:4c:7e:9c:73:56:4f:45:06:81:85:dc:4b:
4b:8f:c8:ff:22:64:77:be:b7:0f:a9:62:e0:df:cc:cb:e0:55:
60:da:ad:e7:5d:54:05:13:b4:17:45:d3:6f:ab:82:1a:34:f1:
41:5e:03:fd:fe:3a:10:7e:9b:53:c7:88:26:2d:07:70:7b:d7:
2a:a4:74:f3:0a:cc:68:da:c4:ac:03:6d:f7:ad:50:5f:d9:cb:
9c:dc:c7:21:03:9a:d0:0d:1d:da:8a:d6:ac:e7:7b:fe:53:f7:
e0:83:f0:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:46:45 2025 by rpki-client