Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
File: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft (raw, json)
Hash identifier: Jz8EApHEOvDe+UHesWUiCVz+u8vxMp/viW7IgfJEVLg=
Subject key identifier: 89:AC:F6:8C:AB:FD:1A:52:16:1F:F0:58:B9:71:89:F5:54:85:6C:A4
Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Certificate serial: 0197B820D2D7BAC9FF897FFB725A078EEAFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
Manifest number: 069F
Signing time: Sat 28 Jun 2025 20:00:48 +0000
Manifest this update: Sat 28 Jun 2025 20:00:48 +0000
Manifest next update: Sun 29 Jun 2025 20:00:48 +0000
Files and hashes: 1: cCGgeXQG7w7JJ0VVtoCaqK0Nuk0.roa (hash: OWS86sPN3Xs5u+J3GeHiIwJ0UACEogG9zbUxH/qhnWU=)
2: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl (hash: rvuxr31ur2+TQXRRATuTY7mc5h/vKxIy/xRIR3l9QIo=)
3: x4XI86xuT3wsfzGO7m_2JB-s4p4.roa (hash: Dt7gE1TI/UXgmAj9V+d2Jv58edUR433oJyH6DVwQHcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:d2:d7:ba:c9:ff:89:7f:fb:72:5a:07:8e:ea:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Validity
Not Before: Jun 28 20:00:48 2025 GMT
Not After : Jun 29 20:00:48 2025 GMT
Subject: CN=89acf68cabfd1a52161ff058b97189f554856ca4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5e:eb:3e:ad:61:d8:3c:df:d0:b3:fb:e0:0a:
11:7e:7e:f4:f9:d4:21:08:55:1d:de:46:e1:d1:66:
f9:2e:4c:8a:37:29:92:b6:3d:88:ee:81:8b:63:a9:
2c:af:d1:be:51:db:f9:81:64:69:cb:2c:6b:ec:bb:
4f:36:0a:80:1c:5e:c5:f9:6c:d1:fa:fe:8d:91:44:
6c:8e:55:e3:84:c5:7d:91:15:f1:f8:3b:44:8f:e3:
32:61:f0:57:ac:fe:27:be:00:9c:1c:db:6a:16:89:
28:7d:64:43:1a:54:7e:7c:f0:c1:1a:9d:4b:03:65:
f3:f5:19:ee:1f:14:e3:00:53:46:60:2c:2c:2e:d1:
c7:da:cc:3e:fd:77:66:3a:c1:4f:67:65:33:04:b4:
3c:52:00:7a:2a:f1:a7:56:dd:ce:ec:33:7c:e9:10:
de:15:64:50:07:49:90:44:b9:dd:7b:1a:d5:73:16:
f2:ba:1d:67:1d:cf:b0:02:ef:07:76:9c:27:c3:de:
bd:97:51:07:7b:fd:d1:c8:3b:bf:e4:e6:33:d7:d0:
e1:fe:e4:fa:a4:20:b4:e5:39:55:40:6b:ff:df:0c:
7a:a3:3a:83:fe:ab:ea:c9:df:14:a6:f9:7a:6f:a8:
15:72:3f:62:c9:7c:5f:08:d6:cd:6d:c9:03:f6:1c:
08:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:AC:F6:8C:AB:FD:1A:52:16:1F:F0:58:B9:71:89:F5:54:85:6C:A4
X509v3 Authority Key Identifier:
keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:a6:9b:e3:7a:af:69:19:ad:54:a2:1e:8a:db:11:75:8b:b4:
c6:b9:27:ab:6b:de:30:0d:98:0b:c4:e0:2d:d1:fc:f5:42:20:
63:77:14:ad:83:80:95:66:e8:0c:41:bb:dc:6f:27:4a:d7:7d:
7d:70:01:ac:fb:bb:7c:32:52:43:17:b4:84:0d:bb:1c:19:33:
14:4d:f5:be:41:46:a9:18:52:74:1a:6c:49:5d:1f:06:16:48:
02:40:23:bb:af:9a:ee:26:5f:25:08:b6:02:44:e5:4d:05:db:
d5:65:1f:8a:0b:00:ce:f0:e9:b8:2a:6a:cc:3f:49:ff:20:03:
02:72:cb:d2:d4:95:35:46:3f:c2:72:dc:f3:26:4f:98:1f:b6:
21:79:57:35:41:f5:41:31:64:b4:b5:e7:4b:3c:af:e7:d8:78:
51:0c:79:ec:a3:a5:a6:d5:2f:66:d6:df:cd:db:ed:07:54:6d:
28:fd:bf:be:31:d5:bc:db:c6:8f:7c:f1:fa:f1:f4:ed:3f:15:
5d:59:32:61:ed:de:07:7c:83:bd:91:4e:c8:84:2d:28:e5:e6:
61:f6:80:d3:14:65:28:5c:e6:63:35:0d:67:04:4e:12:bd:1c:
26:2a:6b:c6:14:98:41:dc:24:68:74:12:3f:f1:7c:46:8d:ba:
7a:18:c8:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:39:12 2025 by rpki-client