Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
File: l9nve9MDJN7fcLrOS72ldgwyaxo.mft (raw, json)
Hash identifier: xwJ5tiAakBUjBqRq03cgUubpF7n0O4EQg30wn3J8RJc=
Subject key identifier: 9F:9D:58:A7:27:E7:54:3D:58:07:24:BF:3C:62:30:8A:56:95:18:5C
Authority key identifier: 97:D9:EF:7B:D3:03:24:DE:DF:70:BA:CE:4B:BD:A5:76:0C:32:6B:1A
Certificate issuer: /CN=97d9ef7bd30324dedf70bace4bbda5760c326b1a
Certificate serial: 0197C7941B5E450CB6CF775C98CA672EA336
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
Manifest number: 0E85
Signing time: Tue 01 Jul 2025 20:01:01 +0000
Manifest this update: Tue 01 Jul 2025 20:01:01 +0000
Manifest next update: Wed 02 Jul 2025 20:01:01 +0000
Files and hashes: 1: N0s8xKfa_bF09tlRJvpRIiwnl5w.roa (hash: 90x2GkpRoKN6DUPIyJuUzKhNvSMsOvRGP9u2xtqB9lE=)
2: l9nve9MDJN7fcLrOS72ldgwyaxo.crl (hash: RAr66es46kKIa0ZwaxPYXiKi1+uM4zkRHVCXLvXEDHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c7:94:1b:5e:45:0c:b6:cf:77:5c:98:ca:67:2e:a3:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97d9ef7bd30324dedf70bace4bbda5760c326b1a
Validity
Not Before: Jul 1 20:01:01 2025 GMT
Not After : Jul 2 20:01:01 2025 GMT
Subject: CN=9f9d58a727e7543d580724bf3c62308a5695185c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:eb:d8:7c:ad:81:69:54:08:96:c7:3e:37:7d:
70:b8:78:d6:5f:1c:7f:80:33:78:3a:15:17:56:c6:
4b:26:70:60:b4:c2:1a:21:33:54:75:70:cd:22:59:
17:68:6d:e5:2b:69:9b:65:dd:73:c0:1e:8d:8e:4b:
40:bf:24:40:29:bc:c1:4b:d1:09:9f:5f:6a:71:98:
32:2f:85:5e:68:ad:5f:f0:9c:b4:1c:78:9e:0a:3d:
b0:e8:78:3d:7c:da:78:3e:62:b1:4e:ad:17:81:49:
f7:c5:25:0d:b3:ed:25:ab:7f:59:30:d4:c6:f4:68:
a0:a0:f7:f5:01:b7:f9:5f:c7:12:d7:33:3c:6c:5c:
18:a0:67:24:1f:a5:3f:16:68:3d:f6:ca:81:06:7b:
c1:06:b1:77:99:5b:d6:2c:16:0f:06:51:a4:d1:ba:
69:0c:bf:a4:0d:a8:96:bb:3a:25:d2:f9:d5:4b:b0:
1d:31:4f:29:e1:d1:1b:92:5a:96:8f:51:af:8c:21:
a8:15:57:a9:3a:80:1f:0d:b6:f9:f6:04:4f:e1:7d:
56:cb:3b:73:9e:2b:92:40:85:cc:2f:ee:f8:da:2c:
de:aa:90:2d:43:2c:b3:ac:6e:cd:43:a3:07:47:96:
3e:e9:8d:66:02:ee:2b:0a:7b:f0:c8:db:93:4c:2e:
14:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:9D:58:A7:27:E7:54:3D:58:07:24:BF:3C:62:30:8A:56:95:18:5C
X509v3 Authority Key Identifier:
keyid:97:D9:EF:7B:D3:03:24:DE:DF:70:BA:CE:4B:BD:A5:76:0C:32:6B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:2b:57:08:16:0e:5a:97:82:9f:45:28:ad:40:e4:ed:42:91:
37:16:8a:71:6d:72:63:09:f4:8a:f7:64:58:8a:cd:33:ef:55:
dd:34:61:00:d5:72:de:35:46:f2:09:60:5b:b1:08:6f:fb:3b:
3d:87:b6:4d:d4:85:9e:ae:de:78:54:1f:ef:89:61:e5:62:c6:
f9:f2:8e:ac:84:84:92:8e:3f:ee:20:28:c3:7b:80:bb:ee:51:
ea:62:7a:62:77:81:09:97:0b:11:bc:3a:0f:d9:a6:3c:0c:fa:
42:58:6e:80:f1:bf:fe:d0:68:30:67:34:3f:fd:d1:7a:8d:2c:
22:7c:96:84:7c:18:6f:c9:b2:3c:da:46:d4:2d:8e:ac:ba:24:
a7:de:a2:67:c7:b6:78:1c:f7:64:ca:6b:b9:e8:5a:65:b4:e4:
16:4f:6e:c3:9b:2b:ff:c2:6d:0d:d5:b1:82:7c:e0:63:72:7b:
24:c0:53:06:a2:a8:83:8d:23:67:11:40:74:b7:47:2a:77:82:
51:ad:3b:e5:6b:c8:d3:67:b2:6b:34:b9:aa:07:6e:4d:7e:05:
63:70:13:a0:71:55:13:5f:71:e8:01:ec:09:61:46:0e:4f:b3:
72:aa:a5:66:ac:ab:90:33:e3:aa:aa:e2:90:66:d4:82:a4:7f:
24:8c:a9:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 21:36:09 2025 by rpki-client