Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
File: L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft (raw, json)
Hash identifier: MmFAeo/dd4d5CGhLgFcitAs5+EPKjJiqlXUXMe2kaxk=
Subject key identifier: 03:B4:22:25:0D:D0:A4:36:31:3E:B1:37:D3:EB:66:30:39:E6:E7:E4
Authority key identifier: 2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
Certificate issuer: /CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Certificate serial: 0197B6A1CAF939858C69AD49B07E2D11E894
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 13:02:25 +0000
Manifest this update: Sat 28 Jun 2025 13:02:25 +0000
Manifest next update: Sun 29 Jun 2025 13:02:25 +0000
Files and hashes: 1: L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl (hash: QtS9VmuYB27/INj2ERzqT7cxz/3Gxqmi7UIJZPB7WII=)
2: yz6_439OmIgbPGI_9SMl-hcB7SM.roa (hash: b+VVST8s13jCLV/LOSpCV8hcczaiQ8urh6lhnrg3Cso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:ca:f9:39:85:8c:69:ad:49:b0:7e:2d:11:e8:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Validity
Not Before: Jun 28 13:02:25 2025 GMT
Not After : Jun 29 13:02:25 2025 GMT
Subject: CN=03b422250dd0a436313eb137d3eb663039e6e7e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7d:69:6a:bb:f8:e5:60:7e:5d:0b:96:2d:f4:
8c:5f:6e:38:c8:64:9f:cb:a3:91:43:5a:fd:e2:2d:
ef:28:ce:4a:81:2f:ed:39:2c:c3:52:21:79:24:d6:
db:3c:37:ce:98:42:68:0f:d5:ce:a9:94:0f:6d:ae:
e1:29:53:ea:06:ed:b5:24:65:ba:e5:47:97:7a:b6:
1f:6b:d6:95:a5:3a:d1:75:0a:86:7e:15:7a:2b:a0:
62:fd:90:90:46:ac:c0:d5:dc:19:ec:29:3c:fd:c2:
37:97:e6:80:51:21:2e:6b:83:9e:cf:72:27:07:c3:
ad:7f:c5:c1:a9:2e:d1:56:bb:ac:ab:20:f8:bc:4d:
77:3a:c5:79:f6:d5:80:e7:3a:7c:18:50:cd:bd:ec:
99:41:17:93:24:a8:c7:5d:13:1e:17:42:90:d9:22:
92:3d:14:47:31:dc:1d:ca:62:12:ba:9a:5f:37:f1:
84:b4:00:96:61:f1:19:bc:44:aa:10:31:62:0f:bd:
4f:29:86:bc:a8:1f:b2:14:08:3a:8c:be:92:fe:9d:
89:8b:5f:76:55:df:bc:43:e8:75:0d:a0:fa:ba:f3:
df:94:eb:28:70:b9:d4:14:54:11:89:22:27:6f:1e:
85:c9:ca:bb:ec:bf:38:70:58:d2:74:b6:6b:f7:34:
51:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B4:22:25:0D:D0:A4:36:31:3E:B1:37:D3:EB:66:30:39:E6:E7:E4
X509v3 Authority Key Identifier:
keyid:2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:d0:fe:e7:3a:d0:6c:03:c8:78:f5:9c:a0:46:b4:b0:dc:a8:
96:15:d4:90:11:8b:07:b1:a5:14:f1:14:30:fe:70:9b:94:81:
25:82:80:64:59:38:a7:fe:5b:71:70:45:3b:16:d8:04:fc:0b:
ba:d6:74:db:35:8d:63:94:cb:d9:d7:26:d4:62:82:a0:e5:03:
fe:54:29:05:7c:00:af:d2:0d:26:cd:c6:6d:7b:2b:73:76:c2:
cf:01:f8:d3:86:1a:d9:51:fa:80:a5:c2:4d:a1:fc:49:15:e2:
10:6c:03:17:e1:ee:d0:cc:c7:ab:65:3e:d5:b4:20:bf:b4:6e:
f0:33:1a:19:a2:5e:e3:6e:f8:fe:9c:42:86:15:c0:1b:11:39:
df:fb:e0:82:92:65:20:77:48:56:3f:63:ed:52:af:79:54:8c:
8f:6b:71:2d:43:ff:2a:08:f0:08:64:cc:c5:91:3d:8c:04:23:
21:e4:b9:dc:81:54:75:d3:c8:7f:8c:24:e0:6c:fd:95:89:a1:
6f:67:20:cf:95:8b:95:ad:8f:ed:5c:f8:8f:0c:67:9d:e9:17:
70:b9:36:f8:69:6f:53:c0:72:36:94:fd:86:4a:fe:03:fc:01:
c6:9f:82:09:e2:04:4a:36:fe:c6:97:95:e6:9f:70:29:a8:ff:
27:fb:69:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:54:32 2025 by rpki-client