Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft
File: lPO2Epw0Od376Q21BkyAZt6GSnI.mft (raw, json)
Hash identifier: yEWGGMBO4RJtMDZdejXYSAOPCnZACfmvA7xQ0n/SjQ0=
Subject key identifier: A2:FF:4F:9E:F2:97:65:F8:24:C9:68:CA:53:80:67:25:FD:73:75:3C
Authority key identifier: 94:F3:B6:12:9C:34:39:DD:FB:E9:0D:B5:06:4C:80:66:DE:86:4A:72
Certificate issuer: /CN=94f3b6129c3439ddfbe90db5064c8066de864a72
Certificate serial: 0197B933BC8E4BA948785E56B94BAF6BAA52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPO2Epw0Od376Q21BkyAZt6GSnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft
Manifest number: 04CA
Signing time: Sun 29 Jun 2025 01:01:04 +0000
Manifest this update: Sun 29 Jun 2025 01:01:04 +0000
Manifest next update: Mon 30 Jun 2025 01:01:04 +0000
Files and hashes: 1: lPO2Epw0Od376Q21BkyAZt6GSnI.crl (hash: 6u+m07JCkCT8ulMDazKVD4nOwZde/HJPcW25+YLvdR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPO2Epw0Od376Q21BkyAZt6GSnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:bc:8e:4b:a9:48:78:5e:56:b9:4b:af:6b:aa:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94f3b6129c3439ddfbe90db5064c8066de864a72
Validity
Not Before: Jun 29 01:01:04 2025 GMT
Not After : Jun 30 01:01:04 2025 GMT
Subject: CN=a2ff4f9ef29765f824c968ca53806725fd73753c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:21:f4:8f:55:af:30:14:ab:98:d6:ce:79:40:
4a:2b:68:58:ad:f7:ba:c1:ed:44:bd:b0:47:33:19:
68:47:83:e0:e9:45:c6:a2:77:5a:e4:3c:a9:b8:86:
ac:17:48:f8:c6:a5:26:34:4b:de:4e:a1:e0:eb:00:
5f:36:e4:46:ef:8c:27:dc:40:42:d6:ed:8f:20:4c:
46:38:cd:ce:44:de:15:7b:11:71:a3:50:37:c7:3e:
b8:f6:1e:03:8f:f2:cf:6f:79:a9:12:fb:dd:23:e5:
cd:41:79:15:90:6a:c2:d2:68:22:a2:5d:aa:12:d8:
b6:15:e0:38:f2:6a:c7:6e:e0:72:7c:c1:b0:48:96:
62:de:da:fe:db:bc:d8:a1:06:44:27:7e:d8:de:db:
c3:8e:2a:63:09:67:39:b3:cf:67:ab:f9:d8:dc:db:
60:05:c8:0e:1d:1a:dc:4b:93:0c:24:49:f1:98:bc:
c1:4c:41:3c:8d:bc:9c:12:99:23:19:b1:2c:3e:d3:
4a:18:f6:ef:06:93:d9:12:28:52:17:90:28:cc:f0:
b9:76:ef:da:c6:e3:f4:9a:23:3f:9e:b7:ce:a6:07:
a8:91:93:38:7d:cf:f3:44:c6:aa:08:c1:1f:1c:f0:
cb:0d:75:8b:d1:3d:71:8c:b1:61:02:d2:8a:d5:ac:
dc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:FF:4F:9E:F2:97:65:F8:24:C9:68:CA:53:80:67:25:FD:73:75:3C
X509v3 Authority Key Identifier:
keyid:94:F3:B6:12:9C:34:39:DD:FB:E9:0D:B5:06:4C:80:66:DE:86:4A:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPO2Epw0Od376Q21BkyAZt6GSnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:13:37:df:bc:2e:23:a1:6d:58:45:62:03:55:12:9f:cf:24:
09:25:29:b8:dd:fe:dc:b6:51:50:3a:d6:5c:61:8b:e2:b2:11:
74:4c:bb:a8:03:3b:12:af:a7:1e:26:ad:66:98:95:a5:88:8b:
ab:8e:aa:f7:fa:4a:04:d9:cb:d5:7b:99:c4:6a:b9:f2:b9:3c:
ea:58:6f:d7:71:74:2d:a0:98:04:d4:58:0a:70:c6:88:02:05:
65:c7:b3:13:03:7b:40:54:39:4d:dc:ee:6f:3e:b2:09:82:86:
21:1e:6b:8a:81:ec:9f:76:2c:e9:5e:ad:de:58:da:8b:48:b1:
73:d3:23:1e:bd:2e:24:1f:1d:c9:8a:4e:e0:ca:aa:ef:b0:9f:
ad:02:1d:13:25:c5:31:a7:05:d2:1e:34:84:44:c3:33:f6:90:
cc:c3:08:66:29:65:7a:57:7a:b6:eb:6a:06:6f:ab:ae:8b:60:
49:27:06:f1:ec:d8:e9:a0:11:08:e4:8e:58:59:08:91:65:16:
d0:13:5d:32:76:d3:c7:d5:9a:38:c9:68:f5:a9:1e:41:12:ba:
44:2e:f3:d2:9d:cc:86:b8:57:17:3a:d3:78:66:d5:ba:a0:32:
88:93:f6:9a:88:3d:0b:e9:58:f1:cd:79:10:c7:70:7b:7a:1f:
81:75:b5:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:17:17 2025 by rpki-client