Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: SutkrMwkRAxHGxUtskkaRHdUsMp3KHMKRznt1TKtY0w=
Subject key identifier: D4:87:B8:11:EB:55:0C:D3:14:F8:14:72:2A:71:68:D1:5D:64:8A:BE
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 0197CCF18B7A717B984330525306A0D564AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0D20
Signing time: Wed 02 Jul 2025 21:01:11 +0000
Manifest this update: Wed 02 Jul 2025 21:01:11 +0000
Manifest next update: Thu 03 Jul 2025 21:01:11 +0000
Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: jsxEgbGBMe77/Gs7u6iHNdKqHfQFUeixwjU+AaTmWQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 21:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:f1:8b:7a:71:7b:98:43:30:52:53:06:a0:d5:64:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Jul 2 21:01:11 2025 GMT
Not After : Jul 3 21:01:11 2025 GMT
Subject: CN=d487b811eb550cd314f814722a7168d15d648abe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5f:6c:32:50:f3:42:cd:a3:d8:00:6f:40:b8:
e5:9d:f7:5e:5b:53:80:9e:bc:ab:4c:50:22:1f:2c:
11:97:bf:29:de:36:75:f2:7d:55:0b:5c:ea:f1:32:
5d:03:e1:03:cb:f8:b1:8a:13:cc:d2:99:8c:a7:37:
e8:09:e7:37:62:29:a5:d6:f5:6c:84:46:fc:8c:24:
5e:57:78:6d:84:ac:00:91:4c:3a:b3:72:5e:fe:6a:
a0:5a:f9:4f:6c:0a:73:c1:f2:a6:e5:b5:5d:22:33:
db:7a:6b:f8:75:d0:af:a7:eb:7a:d1:cb:67:28:c6:
d2:0e:90:d3:56:13:ee:58:d6:d9:85:91:16:38:2f:
bf:20:0b:fc:52:cd:99:69:c4:d5:46:27:f8:2d:16:
11:63:28:bc:09:08:82:fd:91:15:1f:2f:f4:c7:ee:
a8:62:23:fc:1d:e3:af:c1:8c:a5:89:e1:14:7e:c3:
13:bb:d5:43:45:4f:61:5b:dd:d1:43:7b:08:fc:92:
26:60:76:c7:80:d4:9a:9b:2d:84:78:0a:f6:f7:e0:
04:0b:83:d2:ce:7e:12:5e:7b:91:ec:75:c9:f6:07:
08:48:c3:25:ee:f5:b8:0b:6c:03:d1:0c:bb:52:d5:
a3:c4:09:f5:86:a8:48:6b:ad:42:94:75:54:d0:62:
d5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:87:B8:11:EB:55:0C:D3:14:F8:14:72:2A:71:68:D1:5D:64:8A:BE
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:3d:d9:94:86:7e:8c:f4:5a:71:cd:7d:7f:c8:32:8a:b6:08:
35:c3:2b:3a:f4:08:d8:4f:1f:ba:29:24:08:13:9c:3b:e1:1c:
9e:ee:d0:52:c2:a2:36:93:92:05:83:78:fc:12:8f:b2:83:4b:
8a:97:e1:b0:ea:30:a7:b5:c8:84:a1:69:54:50:f4:f2:d6:da:
ce:2d:4a:21:05:bc:6f:7e:43:d6:b5:ed:78:c7:b9:fe:83:74:
d4:ea:21:2b:10:58:c0:d6:af:3e:ab:3d:31:d0:2e:8b:f7:dd:
02:79:50:08:61:53:8c:bb:0d:4d:6f:73:5f:77:a1:1a:5f:d6:
1c:ef:5c:bb:1b:0e:87:f6:71:f9:12:54:5f:71:78:9f:f7:a6:
3d:8b:ee:b3:a8:32:e3:a3:ed:63:91:15:8e:15:1a:d9:3e:50:
58:fb:5d:a8:d8:83:cc:60:42:bc:8a:c3:41:c1:04:bc:d2:aa:
ce:5c:48:5e:e7:f7:d7:da:78:85:65:36:82:e6:64:77:1f:b8:
6e:9c:ef:7f:f2:f9:a6:8d:a5:21:5c:78:fc:b0:58:81:58:b4:
15:42:5a:72:ed:34:54:d2:5d:bf:90:29:58:99:32:bc:42:03:
f5:8b:37:0c:49:47:3b:14:1d:97:8d:21:8d:3d:2e:43:7b:1a:
1d:4e:26:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 07:08:06 2025 by rpki-client