Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
File: Lw47dY4ki4AfwfMNNF1giwevG_Y.mft (raw, json)
Hash identifier: R3yAAs8RCkqXsHCPegIloPrFq0FsxYMvhffN+wWvSYs=
Subject key identifier: 60:5B:0F:24:38:A9:E8:07:7F:72:63:B9:1B:71:76:E7:1A:E8:4A:0B
Authority key identifier: 2F:0E:3B:75:8E:24:8B:80:1F:C1:F3:0D:34:5D:60:8B:07:AF:1B:F6
Certificate issuer: /CN=2f0e3b758e248b801fc1f30d345d608b07af1bf6
Certificate serial: 01965B70822FC50E520059F2780C28D9C2A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
Manifest number: 0527
Signing time: Tue 22 Apr 2025 03:00:22 +0000
Manifest this update: Tue 22 Apr 2025 03:00:22 +0000
Manifest next update: Wed 23 Apr 2025 03:00:22 +0000
Files and hashes: 1: Lw47dY4ki4AfwfMNNF1giwevG_Y.crl (hash: oVk21QVA7Hq/bAY/0775IPky3qP5bcbLHjaGdWlGou0=)
2: MBtZdpS4ymxgginyDhvfCoGQ29s.roa (hash: Taga/JoIPOZ2TxBr6cVw0HmmUo2VGq5/DtsPjFffmvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 03:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:70:82:2f:c5:0e:52:00:59:f2:78:0c:28:d9:c2:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f0e3b758e248b801fc1f30d345d608b07af1bf6
Validity
Not Before: Apr 22 03:00:22 2025 GMT
Not After : Apr 23 03:00:22 2025 GMT
Subject: CN=605b0f2438a9e8077f7263b91b7176e71ae84a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:85:f9:6b:44:b4:1f:9b:37:6b:02:b2:0c:f5:
f6:90:10:6c:e8:c3:37:6c:4b:90:c2:f6:c3:58:45:
f0:78:f7:1f:c3:47:9d:8b:28:77:da:96:12:fa:94:
01:08:62:92:54:69:08:d3:e0:f1:7f:69:7e:1e:07:
ac:41:69:e8:fe:e7:4d:61:8e:8f:e2:6d:8e:62:da:
59:5a:bb:17:7e:95:27:97:57:b5:ca:a3:76:b1:44:
b8:4f:26:fe:0e:96:61:0f:a6:9f:07:84:ec:42:7f:
d4:8a:63:d8:5e:ea:31:16:b9:81:44:24:f5:6c:4f:
aa:52:c7:4c:ab:4f:b2:f6:97:10:b5:ca:8c:bf:d1:
d1:f8:f3:61:67:49:ee:dd:6c:8c:b8:5d:b4:39:bb:
a2:4e:d2:68:ff:7f:79:42:41:53:56:a8:08:70:24:
c1:b4:22:09:77:2f:0c:05:36:55:68:36:f1:2d:40:
bb:0c:25:21:2b:2f:b3:25:94:bd:ce:2e:8f:6b:54:
14:dd:6f:49:a3:77:18:22:40:11:7c:ac:60:0c:f7:
7a:da:46:7e:ef:7b:1a:19:53:05:31:f3:9c:a6:3a:
80:2f:41:70:29:dc:0d:cd:3c:df:35:45:6c:5b:a4:
52:46:e2:e9:f3:e3:75:22:89:56:b7:c8:6e:9c:71:
68:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:5B:0F:24:38:A9:E8:07:7F:72:63:B9:1B:71:76:E7:1A:E8:4A:0B
X509v3 Authority Key Identifier:
keyid:2F:0E:3B:75:8E:24:8B:80:1F:C1:F3:0D:34:5D:60:8B:07:AF:1B:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:59:f6:c1:0f:98:19:b2:fe:e5:b1:e1:12:39:5c:83:58:90:
e9:b1:71:1b:ce:af:0f:75:00:20:9f:e9:d8:ba:f6:1c:cb:aa:
e6:11:10:b6:e3:db:3f:b0:e5:5e:bd:7c:81:f4:53:aa:08:83:
c6:f9:55:84:b9:4f:81:3f:e5:85:a1:6f:74:c5:df:93:9a:98:
c0:e3:7f:bd:ff:50:a8:8c:fb:96:97:2a:d0:16:1e:19:0e:ff:
ab:df:77:3a:c6:fc:9c:e0:67:7d:92:ee:fc:2b:30:8d:f8:97:
6b:47:d4:4e:30:80:8e:9d:1d:d5:08:6b:b6:08:98:ce:a4:c1:
0f:0e:dd:be:08:68:93:d6:73:50:d7:6f:0d:22:27:16:ab:db:
82:05:b2:db:b7:06:ae:81:4e:dd:b0:de:ea:86:30:98:c2:17:
e6:1f:f5:28:6b:78:a1:3a:30:21:d3:0e:ef:6b:e4:12:f6:7e:
7c:12:ec:56:35:a3:2d:04:ee:ad:32:85:a6:c6:25:6c:27:ea:
b0:97:e2:a9:72:27:a1:38:61:50:93:fe:1d:84:27:66:93:3b:
d2:73:c7:1a:8a:a5:3d:3b:2d:21:e7:1e:e2:3a:13:a4:29:f2:
75:1b:a2:6f:48:e9:20:cf:70:a2:74:b5:e4:1a:ee:5c:95:ca:
99:76:09:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:26:53 2025 by rpki-client