Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft
File: _ltNUIvcIUFbR1LuvESNSqrGNdk.mft (raw, json)
Hash identifier: 7U+mtlHjJWUZ2qIFU+pdijOoR6CVf9peWkabT3b8bU8=
Subject key identifier: 6B:00:8D:AC:CF:82:5E:58:72:F8:B7:6E:D7:D4:F9:AA:06:28:3D:72
Authority key identifier: FE:5B:4D:50:8B:DC:21:41:5B:47:52:EE:BC:44:8D:4A:AA:C6:35:D9
Certificate issuer: /CN=fe5b4d508bdc21415b4752eebc448d4aaac635d9
Certificate serial: 0197B632AC806E6F427F08876169D32135D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft
Manifest number: 31
Signing time: Sat 28 Jun 2025 11:01:03 +0000
Manifest this update: Sat 28 Jun 2025 11:01:03 +0000
Manifest next update: Sun 29 Jun 2025 11:01:03 +0000
Files and hashes: 1: _ltNUIvcIUFbR1LuvESNSqrGNdk.crl (hash: 5ALCKAKT7XSMqSe9YCCMLXLVBTFYaAL6qJ264EaEKeI=)
2: l_Z1ah4Z6CUki_cHx_5BaEWiOxE.roa (hash: fwZNajA2NrVuCxC49gzHtXDb0A0DV7JtszLe3wSG/eE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:ac:80:6e:6f:42:7f:08:87:61:69:d3:21:35:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe5b4d508bdc21415b4752eebc448d4aaac635d9
Validity
Not Before: Jun 28 11:01:03 2025 GMT
Not After : Jun 29 11:01:03 2025 GMT
Subject: CN=6b008daccf825e5872f8b76ed7d4f9aa06283d72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e7:37:e3:9a:bc:bb:38:53:57:4e:5f:ab:87:
d1:c5:c9:5c:0a:d0:fd:d2:8b:ff:71:5d:a8:a2:fe:
ac:51:56:34:0c:e8:9e:68:12:93:c8:f1:13:41:08:
23:3d:cd:90:ce:d6:26:13:14:d6:5b:16:9c:87:94:
31:ec:77:bc:d6:56:11:11:dd:da:67:46:3e:c7:47:
c8:a2:b5:2f:85:42:65:ff:b3:a8:0a:56:6f:8a:ea:
eb:2d:63:fb:23:22:88:4b:4b:1f:c4:1a:e4:24:a9:
5d:3f:e3:55:a5:8f:6d:58:3b:ef:60:e4:7a:43:5e:
b5:a3:be:f3:e1:c4:14:b7:18:1e:01:dd:18:63:df:
69:bf:ae:8f:43:3f:bf:2b:3d:62:84:58:45:9d:44:
41:ea:55:92:90:42:69:5d:18:7c:c0:f7:05:95:4d:
e5:a3:3c:f1:96:de:dd:7b:53:60:84:8f:57:a0:10:
91:64:c3:6a:fc:ca:3a:3c:68:4b:31:3b:77:1b:6c:
f2:ce:72:83:6a:df:be:be:e9:2d:60:90:c8:de:57:
1b:3d:06:f6:06:9e:94:1c:49:e1:24:f8:6f:bc:f2:
9b:b9:55:9e:ae:fd:76:d4:f6:45:fa:a9:ad:ee:e9:
04:f4:1e:4f:93:d4:55:d1:f3:d4:0b:74:66:53:55:
df:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:00:8D:AC:CF:82:5E:58:72:F8:B7:6E:D7:D4:F9:AA:06:28:3D:72
X509v3 Authority Key Identifier:
keyid:FE:5B:4D:50:8B:DC:21:41:5B:47:52:EE:BC:44:8D:4A:AA:C6:35:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:a4:f2:f5:3b:89:ed:e9:e3:be:0d:d8:39:58:29:ad:f6:29:
44:c3:af:8e:9e:35:5d:be:0f:47:02:76:5b:ea:50:42:6e:5b:
d6:c5:e4:dc:0e:b7:08:02:3d:3d:b5:3d:1b:5a:72:c2:a3:ca:
a0:5f:b6:18:d3:bf:87:e4:1c:b4:92:da:fd:89:73:0f:1a:c9:
90:27:be:d6:0e:e3:4a:0c:cd:fa:70:ce:a0:b0:6d:db:91:57:
97:25:c5:c0:a4:bc:26:61:65:63:37:b5:3a:93:7b:22:41:ac:
97:74:af:f9:0a:7f:a2:4d:7f:1a:a7:af:fc:66:97:de:e9:4c:
28:4b:d7:7b:e9:4d:97:25:95:62:05:ba:2f:91:ea:62:06:a4:
a1:2d:39:71:e9:57:5b:fc:c5:5e:9e:c6:8e:03:21:75:01:16:
27:bf:04:91:82:a3:40:ea:18:d3:2a:4a:4e:5f:de:58:b7:8a:
c6:8e:00:34:18:34:62:41:62:10:da:2d:f4:8b:a3:26:d5:b2:
97:e3:34:92:5b:b0:1f:ab:0e:75:76:ce:6b:6f:01:e7:02:ae:
db:de:f5:eb:b7:e0:db:b8:8a:51:b0:52:10:23:a1:ea:dd:0d:
9b:2a:65:d0:60:e9:62:cd:8d:27:dc:39:05:30:6f:e5:2c:9d:
06:18:ce:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:01:42 2025 by rpki-client