Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
File: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft (raw, json)
Hash identifier: 8LZB39h4ZimJFVCQziJCYisU5Xty//wPxUTg7/tegpA=
Subject key identifier: A9:E1:8D:A7:12:2E:5C:5A:1B:5E:4A:B8:2E:D9:BB:2A:48:00:48:18
Authority key identifier: 94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
Certificate issuer: /CN=94d161593da815cac58d3479652d048480d26713
Certificate serial: 01965424F686264D382B24655BFB8A191B1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 17:00:30 +0000
Manifest this update: Sun 20 Apr 2025 17:00:30 +0000
Manifest next update: Mon 21 Apr 2025 17:00:30 +0000
Files and hashes: 1: bdAF9viIHB5V5FhTALS-owQhcks.roa (hash: lPv9YsuyVHwxqfP/RRJpZeMDZjwRG/d34AhteS5V7Ew=)
2: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl (hash: Llnpri1hWDlC789lFjCPdjhKL21pj2XUX80ytehTHeg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:24:f6:86:26:4d:38:2b:24:65:5b:fb:8a:19:1b:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d161593da815cac58d3479652d048480d26713
Validity
Not Before: Apr 20 17:00:30 2025 GMT
Not After : Apr 21 17:00:30 2025 GMT
Subject: CN=a9e18da7122e5c5a1b5e4ab82ed9bb2a48004818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fa:8f:06:2b:1b:11:1f:ab:8f:44:ac:de:f6:
00:d9:8a:c6:22:7d:3e:49:cb:c2:70:bd:7f:5e:ab:
3c:f7:cc:82:32:3e:69:6a:bc:97:6a:fb:6f:a0:af:
72:0f:cc:96:30:7c:b5:86:55:0a:f6:f5:d3:8f:7a:
87:8b:60:b7:ae:aa:ce:55:af:60:0d:a9:8a:94:9c:
40:ed:72:bd:fb:23:16:21:8a:0c:ea:e5:7b:56:ab:
d1:b4:9d:2e:e1:ad:4c:01:10:15:ab:bd:38:90:65:
8d:7c:b9:b3:b4:ad:75:9f:74:3a:3b:ea:cf:6a:4f:
9e:e8:00:ac:2a:9b:af:d5:5b:8b:f9:e9:2f:85:43:
91:9c:0a:3e:7c:6e:41:9a:3a:11:3c:e5:47:85:c2:
07:dc:23:ca:17:30:86:ff:bc:71:67:a9:2c:87:b2:
57:94:3d:06:c2:de:31:16:4f:fb:ea:e2:36:84:b7:
1b:91:6e:5c:33:ee:f3:3e:59:83:69:b7:8e:5a:bd:
d0:59:79:44:e9:cd:4d:b5:6f:e6:13:3c:22:a2:21:
5b:47:14:ad:ae:4d:02:93:c3:b5:02:df:d1:f4:89:
b1:82:0f:5a:27:38:26:82:ff:ac:07:5a:a4:0f:6c:
49:69:39:0d:a7:93:95:bb:6d:03:90:e0:2e:87:97:
66:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E1:8D:A7:12:2E:5C:5A:1B:5E:4A:B8:2E:D9:BB:2A:48:00:48:18
X509v3 Authority Key Identifier:
keyid:94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:19:38:c4:d5:3e:25:5a:64:af:3d:5e:57:84:cc:c3:f4:86:
10:4e:a2:c1:19:f8:1e:d6:72:09:7a:ba:be:0e:58:26:35:20:
8f:b3:e4:e4:97:97:75:cb:7e:b5:c6:05:82:fa:b2:0a:3f:01:
f3:3f:ba:52:16:ab:f0:3c:54:0e:33:60:43:95:68:ca:c1:7d:
e5:75:ee:45:70:69:52:a4:9a:1e:2e:3f:b5:1b:a6:cc:e2:1a:
bb:64:72:63:01:d8:3d:b5:a5:56:ce:d1:67:c0:ff:c6:56:4f:
8f:30:d2:c8:d1:01:6b:52:a2:b3:65:2b:63:77:a9:44:1a:9b:
ba:40:0b:b8:03:f5:4a:8f:2d:95:19:4c:b7:f8:de:c7:95:54:
92:e9:f7:1d:14:27:04:9a:cd:9a:25:ae:00:85:e4:87:ff:86:
33:7b:46:e7:83:11:f8:88:c8:40:6c:3f:b4:05:f0:05:68:c0:
bf:15:f1:1d:4d:01:59:3f:69:80:dd:a8:47:8f:1a:f1:05:87:
ff:38:90:34:0d:17:10:5e:fc:91:e2:f4:cd:83:fc:63:f6:85:
e2:d2:48:ff:98:de:e0:7f:4e:e2:8e:dc:15:e4:94:45:57:d2:
bb:72:e1:5f:53:aa:e5:43:4c:79:05:1d:f1:aa:32:d1:a0:bb:
fa:9e:4a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:19:05 2025 by rpki-client