Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: FA0ZZFenjK1gF/DVNNhnvJqIwLqeT+hmtex0Xxi0x6U=
Subject key identifier: 17:0F:B3:55:74:8A:2E:98:75:BD:F3:06:C5:0E:B8:9C:A1:94:F6:DF
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 0197B8FD3B97DC3BB4805D5417C62E5A7257
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 15C6
Signing time: Sun 29 Jun 2025 00:01:32 +0000
Manifest this update: Sun 29 Jun 2025 00:01:32 +0000
Manifest next update: Mon 30 Jun 2025 00:01:32 +0000
Files and hashes: 1: 96CoHDqUFKRWLMKpuPNky2AThV0.roa (hash: 2dbkXGtx2Y2iGJ3uWXJRyOKWK4j+bBsW6iNp6F1vwRk=)
2: 9Q1xAgRNiLot3-j54o5iFnxnl4s.roa (hash: AzmmRL1ZS8f2sEp5vFxgu0dw+ympnZshyg3/a0ND1H8=)
3: Zv6rhEtfx_jSCXc_S8UyXA0vo2U.roa (hash: upx9rJYDv3PHx1B1uURg+ybXETCTfjV8bsr8SvgJ3XM=)
4: biGYeNx8PlSGKHRmVucthKOSlnY.roa (hash: YxlSQax5Hky2oIIKAGXfmWIsjyjpaMRbBxvVdrI+BSI=)
5: g1Zk3nIRea2SYaHqoN92Ss1LCL8.roa (hash: aHQejC3hHy18rRg2jbGxWbnzx0KaJtZTncqKQ8jXn3M=)
6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: 69bI0rZZf9B+dYvPhLdbZsPLrNsaXnEj1Zyk6nP2/Ws=)
7: mmvuqSKrxCIOK5dTOpgllxAuYB8.roa (hash: cXrhSBrwqA5XppxSkBQnZWJRKIyKnPJRdZjf9M/iItg=)
8: rZuO-15UbHThyJRmeryxRpgLk2M.roa (hash: /ED0vNPFUaV7PRvXzqX2jHZ983s8HtxjtsJuRuMtCvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:3b:97:dc:3b:b4:80:5d:54:17:c6:2e:5a:72:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Jun 29 00:01:32 2025 GMT
Not After : Jun 30 00:01:32 2025 GMT
Subject: CN=170fb355748a2e9875bdf306c50eb89ca194f6df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:49:2c:4e:61:82:b0:d1:55:34:86:c4:dc:43:
91:1c:7e:c6:58:cf:b5:50:71:8c:1e:6a:4f:39:3e:
fc:a3:58:a8:28:4a:aa:5a:dc:8d:d4:df:50:8a:da:
91:1e:ac:f6:d4:c2:5b:ce:64:60:fa:c1:70:3d:20:
2a:9f:18:7d:69:19:c6:25:d6:ce:05:a5:95:6b:98:
bc:c4:73:b3:b1:3d:1a:32:21:cc:c3:36:42:43:c8:
eb:f3:2d:59:20:51:b2:30:ae:a4:dd:54:06:98:f2:
b4:c6:4f:48:6e:28:b9:68:11:16:0c:15:90:be:c6:
0a:a3:40:42:47:43:be:a6:f1:ef:be:cf:1a:fd:49:
6a:fb:ee:74:26:38:cc:c7:3e:89:9d:84:7f:e2:e1:
f8:c6:74:8b:a3:8f:8e:af:17:1b:7b:13:4c:9f:1f:
53:73:1c:cc:af:29:23:85:9c:d3:6e:b4:56:34:19:
e4:5d:cc:1a:8c:95:27:4d:2c:91:31:0b:4a:e2:34:
b7:10:4f:b8:3f:1e:60:24:b6:af:c1:5e:ff:c3:2d:
b1:55:f7:84:e6:f5:c0:7f:cd:3e:bf:e6:e6:d0:12:
74:8f:87:ef:ca:67:a2:9d:ff:eb:38:1f:36:3e:de:
d3:8a:4b:77:f3:8a:93:87:ac:db:2b:e3:b5:29:36:
84:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:0F:B3:55:74:8A:2E:98:75:BD:F3:06:C5:0E:B8:9C:A1:94:F6:DF
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:ee:9f:0e:93:cb:d8:6f:88:af:2e:75:5b:0d:19:74:ef:0a:
91:e2:31:6e:15:0a:23:35:4f:9f:97:2e:8e:e7:ce:e1:92:95:
4d:62:e5:35:d2:b4:cc:5b:f2:62:69:99:2b:20:52:08:02:5f:
b4:20:dc:ee:47:ee:e5:0b:f7:64:ca:86:4e:69:1c:50:94:62:
4e:b8:8c:c8:f7:0d:19:14:8d:f5:ef:f4:72:c4:2c:a4:f4:f9:
b0:25:f9:9d:0f:db:26:a6:8c:de:fe:0a:e8:d0:07:09:d4:71:
58:4e:5c:ef:03:52:3c:2e:52:38:0b:8c:4f:d2:6f:39:5a:9e:
ce:ff:1a:cb:12:b2:c9:23:0d:00:1d:0e:19:98:e2:46:8e:26:
6a:87:ea:47:29:59:2e:c5:c4:34:b1:c3:5d:db:7f:43:9e:65:
77:8f:9f:e6:35:9e:68:ee:2b:ed:80:c7:6f:8c:56:bb:f3:ba:
3e:d3:f0:90:10:3a:b2:2c:53:9d:8f:38:f7:01:a9:39:6c:20:
0c:8a:ec:35:59:49:48:45:fb:d0:0b:1b:78:82:96:bb:56:d4:
be:35:24:27:a4:f4:a4:46:0b:20:0b:4b:a2:e4:02:da:9e:43:
df:65:84:32:0d:66:85:0c:4e:ac:04:0f:ae:a4:85:fc:01:80:
17:37:9d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:29:44 2025 by rpki-client