Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
File: lQ8oTPXDnybd0jUufyrfeo3GD44.mft (raw, json)
Hash identifier: TIq48UR3j4ikEDVp/Kk7jNtS+VdrI37+T658aXIII8c=
Subject key identifier: 98:56:EA:2E:BE:1E:3A:C0:CD:6E:5A:15:53:B6:0D:A9:4F:80:4F:1D
Authority key identifier: 95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
Certificate issuer: /CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Certificate serial: 0197BFA42719AD7ACF044BB9C2C640B55FFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
Manifest number: 0BB5
Signing time: Mon 30 Jun 2025 07:01:35 +0000
Manifest this update: Mon 30 Jun 2025 07:01:35 +0000
Manifest next update: Tue 01 Jul 2025 07:01:35 +0000
Files and hashes: 1: CIXcSM8wlZUJc9_olM2z-Sxe_fI.roa (hash: mDiY7MPNQSCh1DaHA5s1SG/E+/9GUkWw11IjIEdP7WU=)
2: lQ8oTPXDnybd0jUufyrfeo3GD44.crl (hash: KYKgu1onFm50leyzIZNvTvbpJrUM+OA/f9gGp42y/DY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 07:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bf:a4:27:19:ad:7a:cf:04:4b:b9:c2:c6:40:b5:5f:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Validity
Not Before: Jun 30 07:01:35 2025 GMT
Not After : Jul 1 07:01:35 2025 GMT
Subject: CN=9856ea2ebe1e3ac0cd6e5a1553b60da94f804f1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f7:5e:61:ef:a4:36:74:ab:d8:04:af:1c:2f:
39:90:ae:e9:a0:f0:c3:67:da:07:58:d0:36:b7:35:
51:8b:4c:45:f6:b0:f3:89:e1:d2:4c:e8:80:f7:93:
73:8c:bb:78:91:0f:29:8b:cc:76:3c:a9:22:e6:f4:
05:08:03:4b:3d:c4:0d:74:f8:b3:57:7f:f9:07:b9:
72:13:8f:70:d6:de:2d:59:93:9f:61:55:c1:25:79:
1b:59:d5:5e:82:82:40:bd:4d:37:05:aa:b7:09:be:
e2:2d:32:4e:6e:ef:44:16:43:93:44:d2:e8:5a:92:
ed:f2:55:f0:fc:04:d0:e9:0b:8b:48:8e:53:f3:2b:
b9:3f:ff:02:12:f8:28:dd:7f:0e:19:dd:65:c6:4b:
be:28:e6:0e:d0:07:ec:99:55:85:4c:b6:4b:4e:93:
aa:34:54:69:b0:b5:3a:1d:e3:87:1e:33:8b:36:0f:
e9:8f:99:0f:f4:c5:c8:e6:00:34:9c:97:bb:62:a8:
ce:4d:dc:f2:51:cc:17:0e:ed:8d:f2:f8:a4:54:39:
db:0d:85:d5:ba:3c:9e:1d:07:d1:e1:83:ab:0a:07:
ce:6f:96:d0:7c:a1:61:01:53:60:60:8d:1c:91:cd:
2a:7f:19:76:b9:83:e7:f1:a4:91:37:3f:e8:36:97:
3a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:56:EA:2E:BE:1E:3A:C0:CD:6E:5A:15:53:B6:0D:A9:4F:80:4F:1D
X509v3 Authority Key Identifier:
keyid:95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:62:fe:7a:8a:19:8e:50:7b:05:8e:75:3e:d9:fd:65:cf:2d:
95:84:09:bf:34:dd:05:68:7b:0e:0a:d8:89:34:96:e3:66:b7:
c4:70:8a:04:63:63:46:7a:12:8d:b2:f1:72:12:34:07:90:3d:
70:07:7d:ea:02:8e:56:66:9c:df:bf:4c:c9:c9:2e:89:44:ea:
c2:f1:61:d7:2f:52:4a:9f:5f:d8:60:dd:ff:2f:88:8a:3c:85:
fb:44:b4:68:09:74:be:6d:03:27:49:a7:6c:08:80:75:24:4b:
67:54:43:d0:25:2a:ef:b5:59:43:5c:76:71:7c:19:ee:ac:25:
57:df:99:8c:ac:19:e1:a1:22:2f:c4:48:28:35:99:00:38:1b:
ba:7a:b9:1b:cd:9b:55:0a:0c:0e:67:92:48:21:b5:ba:c1:57:
fa:8d:49:95:cb:0a:9d:f6:23:4a:d9:69:62:44:b4:71:2b:ff:
45:4e:83:58:92:16:43:69:c3:03:10:48:9c:d5:26:db:88:9a:
d3:13:a4:a8:fe:e3:de:b3:1f:2f:bd:9c:51:7d:3e:52:1b:7f:
06:ed:72:ff:9f:73:0d:b4:a0:61:40:96:75:d6:cd:85:7a:d8:
07:0e:aa:5c:46:96:17:10:53:eb:33:27:9c:93:f3:cc:ed:7e:
7c:37:e8:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 14:53:30 2025 by rpki-client