Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json)
Hash identifier: wAu/kskxWllTL22ffalqKxkveSX4cefZRLJ4uYwWoOA=
Subject key identifier: 93:E5:72:EB:05:5B:49:E7:99:8B:A7:BF:CA:2E:6E:97:1F:09:98:0F
Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066
Certificate serial: 0197B8FCD37EE8BDE3DAB2795874F6A82F1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
Manifest number: 15B6
Signing time: Sun 29 Jun 2025 00:01:06 +0000
Manifest this update: Sun 29 Jun 2025 00:01:06 +0000
Manifest next update: Mon 30 Jun 2025 00:01:06 +0000
Files and hashes: 1: alfL1bRTQjOY-E2KjHP8N4Ulue0.roa (hash: ybSj2AdhAA+9tbRInXwXzkVBfMf3WHllqssGw6/wFUI=)
2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: 9IVqoSX5PwXDJtn+yS34Sngm/gwDFEvUmkzMCO3Uf/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fc:d3:7e:e8:bd:e3:da:b2:79:58:74:f6:a8:2f:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066
Validity
Not Before: Jun 29 00:01:06 2025 GMT
Not After : Jun 30 00:01:06 2025 GMT
Subject: CN=93e572eb055b49e7998ba7bfca2e6e971f09980f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cc:d7:21:a5:e0:4f:3c:47:7a:8c:8c:d0:4b:
32:3f:2a:f9:b1:63:95:65:25:c7:9b:58:d9:2f:1a:
ca:af:34:48:dc:b5:16:8f:c5:31:19:01:f7:a5:d5:
00:4c:f0:11:f8:d7:19:9e:83:d4:dc:ff:d7:84:f5:
d1:7b:71:b8:f1:5c:69:8d:b1:44:7c:86:7a:e5:e9:
eb:8d:a8:d4:11:89:54:b4:9d:02:7c:57:dd:9d:ac:
56:76:d4:fe:23:c3:81:a2:63:55:a2:45:b2:e0:5f:
5d:44:16:ca:76:ae:b6:b1:5b:43:03:f9:99:ac:39:
b0:8b:e6:72:87:a6:c4:5c:46:66:4f:ab:f5:42:6e:
8d:16:59:cf:06:9c:60:76:6f:c5:04:89:12:da:18:
22:2a:d8:f3:24:60:a9:c7:ff:96:09:a3:29:9f:01:
6a:72:90:5f:5c:29:1a:3c:85:d7:79:9f:91:68:98:
1d:95:ca:ca:00:56:b9:ca:0e:b2:99:85:6e:e8:a1:
95:9f:bd:70:11:f9:39:e7:eb:be:98:a3:a6:70:33:
a5:39:ad:ea:71:20:38:d1:2b:51:90:88:bf:23:b5:
16:fe:09:68:19:44:56:0b:67:58:8f:ab:fc:b7:bb:
0b:12:d8:39:8f:9a:e0:9b:a4:d4:29:23:96:de:e2:
bb:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E5:72:EB:05:5B:49:E7:99:8B:A7:BF:CA:2E:6E:97:1F:09:98:0F
X509v3 Authority Key Identifier:
keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:e1:71:69:f8:85:78:33:52:bf:81:b5:4c:5a:93:55:3f:6a:
af:17:99:5d:2d:4c:c3:fe:eb:0e:be:d3:bb:6d:1d:2c:49:83:
12:f3:7c:5d:b5:e0:8c:62:da:6f:af:1f:f2:e5:7e:22:3b:10:
d9:d6:a7:1a:1f:b4:35:95:a4:0d:e4:be:30:2f:cb:72:1b:9c:
8c:32:65:cc:92:3c:b2:75:3f:75:24:6b:35:42:01:1c:1c:2c:
c1:df:e8:fb:3b:8a:28:54:74:4a:7f:cd:7a:70:26:f1:98:07:
58:ec:a7:75:11:61:e0:19:cf:13:4f:15:9c:9d:e6:c1:3c:0d:
be:7a:18:5d:23:46:f0:d4:93:0c:49:98:e6:52:b8:df:d7:a5:
2a:04:1f:76:80:75:9e:ab:e8:8a:af:75:6f:30:dc:da:ac:af:
2d:c6:66:a1:62:de:09:2c:6a:f1:3c:fb:79:5d:29:80:5b:37:
9c:0a:88:fb:fc:1f:f3:f7:53:95:7f:50:4c:bb:7c:77:a8:28:
74:e9:91:fe:fb:d2:6d:92:b7:2d:f6:56:94:14:29:15:cc:25:
16:1c:2a:ca:bb:a0:fa:f1:6c:5b:ea:b5:d5:8c:fa:1a:1d:47:
cc:ab:18:4f:f4:cd:de:a6:bb:e3:68:03:f1:1c:4a:0d:f9:1b:
b7:0c:6b:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:42:14 2025 by rpki-client