Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
File: Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft (raw, json)
Hash identifier: qwvPglOA1zWckXrHLpgfSNgZ3FiC5W78g5Eo7rEi17Y=
Subject key identifier: CC:1F:D7:9C:B1:6E:14:A7:0D:3B:6B:FB:16:CB:0A:81:76:47:9A:72
Authority key identifier: 2D:EA:78:B1:2D:43:5B:97:DE:FB:F9:2C:74:26:5C:34:33:BB:D0:29
Certificate issuer: /CN=2dea78b12d435b97defbf92c74265c3433bbd029
Certificate serial: 0197BB21F004A38205BB93479ED0442CA5AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
Manifest number: 0A0B
Signing time: Sun 29 Jun 2025 10:00:52 +0000
Manifest this update: Sun 29 Jun 2025 10:00:52 +0000
Manifest next update: Mon 30 Jun 2025 10:00:52 +0000
Files and hashes: 1: Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl (hash: 2Mt763/TpS6eS7Ep8ui3F73mWTMNk7AVJbG5wmQ83u4=)
2: qHOxf7Ag_8u24Noxu2kog83ptRg.roa (hash: oxynD/JaNR7ZZdHYCXCJyIHb4WE74vGw/oNyjiWqUm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:21:f0:04:a3:82:05:bb:93:47:9e:d0:44:2c:a5:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dea78b12d435b97defbf92c74265c3433bbd029
Validity
Not Before: Jun 29 10:00:52 2025 GMT
Not After : Jun 30 10:00:52 2025 GMT
Subject: CN=cc1fd79cb16e14a70d3b6bfb16cb0a8176479a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0d:ab:c2:eb:b8:25:c1:48:3d:20:d8:1c:40:
84:4d:1c:98:bf:bd:78:4c:f4:67:58:d7:a3:cf:15:
d9:e4:2d:28:ac:88:7c:e1:48:91:20:f8:bc:9f:96:
27:24:2f:75:af:d9:18:7b:c7:9a:66:37:ed:97:ca:
ee:80:0b:07:7a:2b:8a:87:a0:9d:c5:73:d2:3a:96:
98:29:38:2f:85:bc:bd:9a:8f:37:3a:6a:5c:ae:ef:
91:be:71:0e:e1:47:33:c4:10:85:94:37:c1:19:dc:
42:de:7b:96:d5:6b:c9:b1:90:d4:d8:a4:00:2e:56:
1b:d5:e0:93:6c:97:bd:97:be:5c:a1:37:19:25:4c:
ab:dc:30:7d:a0:4b:75:ac:17:5a:19:f8:e5:88:fc:
b0:09:4a:17:82:2e:5b:54:b3:ec:4d:68:36:b9:a0:
b5:f4:ae:f3:3e:d1:8c:91:d9:8a:dd:bf:17:ee:c8:
b6:16:ca:36:72:40:63:cd:49:3c:01:75:8a:62:81:
72:67:be:72:cc:3c:93:a2:1d:55:af:aa:72:8a:ee:
b4:29:2d:36:17:68:9a:0e:bb:a2:62:ce:ad:8f:e8:
5c:16:28:36:77:ed:ea:40:36:24:6c:af:24:3a:ce:
c0:61:67:de:5c:e4:5c:e7:0e:1d:ba:87:d9:86:3c:
52:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:1F:D7:9C:B1:6E:14:A7:0D:3B:6B:FB:16:CB:0A:81:76:47:9A:72
X509v3 Authority Key Identifier:
keyid:2D:EA:78:B1:2D:43:5B:97:DE:FB:F9:2C:74:26:5C:34:33:BB:D0:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:c5:26:c6:86:63:c9:b9:fb:97:ca:60:b2:a1:c1:0f:95:ae:
e6:aa:e8:4b:b1:f3:f0:3e:72:74:61:af:de:f8:79:f6:cd:2d:
64:92:36:e6:1d:47:23:9d:40:27:a2:28:4f:1a:99:c0:c3:ad:
f9:6a:18:90:fb:17:c1:67:93:2b:5b:73:7e:fd:87:e2:2b:32:
54:5b:14:7d:9f:67:ea:dc:99:cb:13:cc:98:15:51:ce:ec:08:
61:cc:41:13:46:7e:08:91:92:db:4b:21:0d:56:5b:77:58:6c:
20:95:22:4d:00:a3:6c:f0:89:ac:15:ac:2c:da:d1:a0:7d:7f:
59:fc:ed:6f:91:66:29:97:41:aa:a7:79:42:af:7a:0e:17:31:
f7:05:a2:42:5e:52:4d:c4:87:63:38:ab:f6:10:c4:32:fa:b1:
16:1b:6e:5f:96:28:6e:ac:fc:c6:26:ff:0e:4b:3b:f8:bc:cd:
d9:33:44:a9:b9:bc:ad:d7:8d:b1:ae:8d:c9:0b:ac:0b:bc:bd:
21:e6:fb:94:82:c6:f6:6a:9d:95:4f:a7:f0:bc:7d:9f:f9:84:
ee:7a:85:6f:e6:65:33:75:71:ba:10:97:50:a5:f8:57:67:81:
f1:5b:8a:f2:e5:b7:fe:be:e8:df:52:ad:3e:ce:c7:40:2a:7f:
65:d0:22:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:34:31 2025 by rpki-client