Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
File: lUoq7ghhdLAScvrnea1DHrCSrrc.mft (raw, json)
Hash identifier: 9tv3H76jd3tQYdKqivlFs0VNjwKb2nS4Isvhv5G86m0=
Subject key identifier: 1A:95:7F:0B:9D:D4:53:2D:20:35:CE:1C:B5:18:EA:2E:CF:09:AA:70
Authority key identifier: 95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7
Certificate issuer: /CN=954a2aee086174b01272fae779ad431eb092aeb7
Certificate serial: 0197B7EAA013C42442B80FEBDD779A7277E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
Manifest number: 15C0
Signing time: Sat 28 Jun 2025 19:01:36 +0000
Manifest this update: Sat 28 Jun 2025 19:01:36 +0000
Manifest next update: Sun 29 Jun 2025 19:01:36 +0000
Files and hashes: 1: 6z0Q8mDUMTUFPn8NEmiVcMraCdw.roa (hash: fkp8K1gu61varmdzOzYMZH6d4Wsqa3Y47Q5J8kmYv1w=)
2: H3J9vQn6K2WpcdcY5HgOFWtNqro.roa (hash: xKCbCFvdaEaZUoBRTwlz8wWkQD7E1NB3Xk+GOW8NOkg=)
3: LOAmRNgz3AR78bC-CKjKBqCJY3M.roa (hash: xld+cbw2oRdP1v3iddUMoK+GuqeXMoAOXkKfJjjcrk8=)
4: SHnk_yFs5TSkbtqQ5cCS3qWVobY.roa (hash: Ajdz5jpsdOUtu+sq17fM1dWOMUvOtdvwwcm7jylQXUs=)
5: lUoq7ghhdLAScvrnea1DHrCSrrc.crl (hash: 3L0eTU2W53WnTWQh5+Z65qkgL9t/xucsBC4yLp2yFHA=)
6: moYZTBKvPSG4btrjulSkg5IFyz0.roa (hash: 6aUdQOfwMXy22wY7pvBt6ynhj6U7FZPNFhYHyrILLNI=)
7: zQSqcApOIlR6_yHJBYuZ2ciPt3Q.roa (hash: 5DPAi2kks5u9Bus3Asxn5EjHBrdWHv0pv/j5caKoCFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:a0:13:c4:24:42:b8:0f:eb:dd:77:9a:72:77:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=954a2aee086174b01272fae779ad431eb092aeb7
Validity
Not Before: Jun 28 19:01:36 2025 GMT
Not After : Jun 29 19:01:36 2025 GMT
Subject: CN=1a957f0b9dd4532d2035ce1cb518ea2ecf09aa70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:92:37:4d:e2:d6:16:c8:85:05:6f:c7:f1:8e:
b3:cd:d5:28:55:dc:8f:b8:5f:f9:b7:19:01:7c:c7:
c3:23:5a:cb:a5:9e:04:d4:b2:6e:9e:5e:2c:8e:a7:
3c:8a:6e:75:a1:f0:f9:3a:66:3d:7f:38:a1:2b:aa:
a5:00:7c:90:58:7a:d0:fa:67:c4:02:e6:9a:ad:c4:
f4:05:2f:6a:99:c0:1e:7a:94:e3:90:0e:12:3a:23:
15:ca:79:5e:94:a2:b2:65:7f:87:7f:9c:4a:08:bd:
fd:77:99:a4:14:90:44:81:47:24:ba:61:df:00:17:
a0:be:b8:83:2d:cd:b1:6c:06:79:96:cb:47:3a:d3:
34:39:1f:c6:c4:b0:79:72:45:09:13:b6:d7:c6:b8:
b6:4a:22:53:01:04:0f:0c:4e:e4:98:df:7d:8a:cd:
b1:d4:ae:ff:5e:ae:7e:2a:ec:b2:0a:da:fb:36:38:
12:ae:e5:56:e9:5c:90:f5:ed:3e:2b:99:1a:70:3c:
94:9e:78:cd:18:3d:90:0a:e3:43:b1:8e:bb:82:32:
3a:92:6e:37:a9:2e:91:22:aa:d0:33:d7:a0:56:34:
df:c9:13:43:54:06:e0:23:8b:be:b5:3b:87:16:d5:
38:13:9d:e5:43:f1:07:8d:d1:65:04:81:42:19:08:
9d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:95:7F:0B:9D:D4:53:2D:20:35:CE:1C:B5:18:EA:2E:CF:09:AA:70
X509v3 Authority Key Identifier:
keyid:95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:85:6a:26:94:ff:67:46:49:30:15:2b:1e:0f:44:87:2d:7c:
e4:e8:70:b4:58:82:cf:52:c1:54:c6:27:04:99:ed:cd:76:e3:
7a:25:61:07:65:75:63:01:de:5c:20:62:20:e4:85:69:61:83:
94:58:b4:e3:a8:fe:c9:35:6f:9d:d5:86:a6:b1:ab:85:cd:c3:
fd:fa:40:71:a2:be:a4:99:e1:52:c3:6c:2b:c9:a8:4c:05:f9:
e0:9d:11:15:fb:13:6b:72:9f:84:16:f4:2b:10:56:b6:8b:61:
63:84:ee:fa:b6:06:58:40:63:c8:16:1b:d2:c0:78:62:d5:c5:
f7:50:ad:68:9d:58:67:58:f4:3a:ac:38:32:47:9f:ef:d5:7d:
34:e9:e0:08:11:1b:85:2e:82:e0:54:1c:d5:2b:3a:be:0b:fc:
fb:52:b4:f2:d5:d5:44:ae:db:46:eb:e3:5d:2b:04:df:d2:e8:
54:80:c0:a1:1d:bf:15:4a:60:c1:f8:fb:a9:7d:68:4a:52:6a:
99:1b:5e:b8:97:4c:d7:31:ed:3c:c7:88:81:55:7a:41:f7:5a:
21:c4:67:ac:fb:3b:84:78:f7:a5:5b:f0:99:66:b3:1a:c4:94:
43:9b:92:c1:83:dc:bf:8b:04:74:eb:c0:e4:bb:fb:4f:f5:7a:
69:18:e2:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:35:03 2025 by rpki-client