Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
File: lsgslDmkFHsuorWXz_xRALqNMnw.mft (raw, json)
Hash identifier: sRWuk/cB2rBI7aW8WHGoNzwOZEgRTSkt49b3x9hMKU8=
Subject key identifier: 23:C2:98:AA:17:BA:49:88:C0:97:C7:9F:5A:CC:62:02:3E:EA:1C:B5
Authority key identifier: 96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C
Certificate issuer: /CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
Certificate serial: 019655388CC7109A930B9768CD592C873FDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
Manifest number: 10BE
Signing time: Sun 20 Apr 2025 22:01:31 +0000
Manifest this update: Sun 20 Apr 2025 22:01:31 +0000
Manifest next update: Mon 21 Apr 2025 22:01:31 +0000
Files and hashes: 1: lsgslDmkFHsuorWXz_xRALqNMnw.crl (hash: Cpm33NvFkxwgb3vUpBzxuJqUQgKB5Yk0Lf0vVrSvjDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:8c:c7:10:9a:93:0b:97:68:cd:59:2c:87:3f:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
Validity
Not Before: Apr 20 22:01:31 2025 GMT
Not After : Apr 21 22:01:31 2025 GMT
Subject: CN=23c298aa17ba4988c097c79f5acc62023eea1cb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:33:8c:f3:6f:5c:9b:92:54:0c:53:cb:60:f2:
4b:9d:a2:95:1f:07:8a:5c:fe:e4:11:f5:93:db:54:
b0:2f:70:67:f8:dc:29:09:4b:9e:32:25:36:96:fd:
a9:f3:b8:b1:a3:d0:17:22:ba:33:b8:e8:25:24:d6:
43:3b:92:24:ec:e3:02:54:d7:18:b8:87:cc:9e:d3:
ae:33:f7:1a:1a:42:6c:54:db:23:70:74:b6:ba:c3:
21:87:89:8d:6b:94:9b:6a:82:0e:aa:68:e4:bf:bb:
e3:cf:7d:05:65:4f:00:85:c0:4b:83:94:18:5f:a2:
89:d2:6c:8c:66:27:59:81:8d:f7:4b:eb:0d:a4:1a:
a1:93:05:b6:eb:fe:c3:08:6a:b9:dd:08:14:cd:ca:
3b:0c:27:20:53:43:7f:2f:78:93:84:fd:ae:3a:55:
45:f1:73:ec:fd:98:a7:0c:0a:bc:c1:f8:53:1e:7c:
9c:8c:09:9a:39:74:00:39:98:82:d1:94:8c:a9:97:
71:0d:1c:a4:b5:13:72:6b:8a:ca:da:e6:30:67:c3:
ab:4f:e9:e3:d7:e1:fb:95:f2:6f:33:c1:22:fa:8c:
33:dc:ac:a5:b9:72:09:44:a3:00:dc:a1:ef:97:0c:
e4:f1:1f:f3:4b:40:dc:a3:1d:d6:ca:3f:69:75:f6:
a4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C2:98:AA:17:BA:49:88:C0:97:C7:9F:5A:CC:62:02:3E:EA:1C:B5
X509v3 Authority Key Identifier:
keyid:96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:ca:4a:fa:89:34:e4:45:7f:f0:7d:61:0c:f6:68:dc:44:d7:
5e:b8:4f:9b:3b:48:85:c5:df:c2:3c:1f:2b:e2:00:37:3b:e9:
9e:fb:dd:36:43:89:3f:09:4e:e4:bf:78:2e:16:0b:76:38:f2:
ef:f4:89:19:dd:8d:14:bd:88:07:4d:e5:51:78:ff:f8:62:c8:
97:de:2f:6a:cd:1d:10:7e:89:09:3c:a0:89:f2:84:9f:94:6a:
9b:d4:33:f2:eb:7c:1a:19:a9:58:87:df:9d:09:05:0a:cd:64:
15:9b:3c:60:e4:f5:77:6a:9e:5c:b5:89:64:31:5c:05:b1:79:
d5:58:73:fa:74:fb:09:83:8e:9b:c4:5d:de:e8:3b:ee:40:d3:
65:24:40:4e:1b:46:51:93:e2:51:3b:26:b8:7c:7d:ab:41:31:
39:e2:b9:19:24:22:9a:a3:7b:d9:15:34:cc:76:03:7b:07:04:
03:ef:ac:8f:29:ff:36:4a:b9:56:9d:65:da:ef:c3:1e:38:0c:
9b:58:16:96:a4:46:57:22:fa:cd:21:3c:f3:8d:ad:b5:3a:6c:
65:80:88:c9:52:ba:bf:c5:24:1b:07:d1:d9:96:e8:52:e1:21:
d2:69:d3:50:8f:b6:6c:c0:68:59:d1:be:88:c4:3c:5f:02:dc:
38:a9:06:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:34:34 2025 by rpki-client