Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
File: lFtz335v4RAPHROgfBjVmvIoQow.mft (raw, json)
Hash identifier: F2RF/LpaQKLxA+gI83XhTWWzKkqzQioBr4Jj7vnhEmM=
Subject key identifier: 42:3A:ED:D6:7E:B5:0D:B8:30:40:5D:A9:B0:A1:2D:6E:38:F2:6B:5F
Authority key identifier: 94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
Certificate issuer: /CN=945b73df7e6fe1100f1d13a07c18d59af228428c
Certificate serial: 01964D1053F39655CACD32A07EDA501F1E2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
Manifest number: 13A0
Signing time: Sat 19 Apr 2025 08:00:37 +0000
Manifest this update: Sat 19 Apr 2025 08:00:37 +0000
Manifest next update: Sun 20 Apr 2025 08:00:37 +0000
Files and hashes: 1: 9LVEIaMlmJxNlD9z3n5kSDNE07w.roa (hash: Ts++AgaSboNBt9jLBwSwB9DRgMmL7vyooMiQkdJdfP8=)
2: lFtz335v4RAPHROgfBjVmvIoQow.crl (hash: sF6rTQD4H8KHN4noL88JAFyRRmYjk4+VmseCBpHaBiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:10:53:f3:96:55:ca:cd:32:a0:7e:da:50:1f:1e:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=945b73df7e6fe1100f1d13a07c18d59af228428c
Validity
Not Before: Apr 19 08:00:37 2025 GMT
Not After : Apr 20 08:00:37 2025 GMT
Subject: CN=423aedd67eb50db830405da9b0a12d6e38f26b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:49:94:0f:50:8a:93:01:95:70:02:bc:2a:9b:
67:6f:70:3e:ab:c2:fd:ac:61:95:0b:db:70:c8:46:
ef:ab:f1:76:74:88:31:71:0e:ed:16:bd:6a:af:a1:
bf:4b:09:c2:29:c2:d1:ce:53:c1:5b:94:05:12:5d:
b1:91:bd:3b:19:86:73:70:16:ad:c0:0e:5e:e4:52:
1f:5f:f9:9c:54:f6:c3:d0:75:0b:f1:03:7b:e4:9e:
85:09:bc:e8:33:1b:99:17:db:61:86:32:7d:60:8e:
c9:be:88:2c:79:3c:6a:57:82:3d:f3:89:18:90:96:
32:7f:de:25:22:39:b5:7b:57:08:1a:72:07:59:8e:
49:8d:60:d4:52:df:27:a6:ac:b1:88:88:4c:39:05:
0c:e5:08:dc:91:14:25:34:3f:85:fd:f0:7a:38:9c:
bc:6d:8e:01:32:fc:b2:97:56:d3:52:63:9d:24:81:
12:45:e8:0b:17:b0:17:08:92:11:2f:f0:d5:f3:2f:
03:f9:2b:81:57:21:f0:a7:29:75:52:2b:da:6c:10:
a0:4b:11:8f:9f:de:fa:b5:71:03:9e:15:75:ad:d6:
06:41:bb:99:0d:1f:a6:72:78:d5:0a:f9:8b:24:64:
f1:8c:f7:22:40:8b:df:02:24:d4:95:81:c1:f3:0a:
8b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:3A:ED:D6:7E:B5:0D:B8:30:40:5D:A9:B0:A1:2D:6E:38:F2:6B:5F
X509v3 Authority Key Identifier:
keyid:94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:94:f3:3d:53:1a:0a:a2:4f:ef:bf:a0:f1:20:e1:84:61:e3:
e2:cc:88:5f:06:3a:66:60:f1:b9:01:d0:05:4e:69:90:42:6d:
4e:ba:df:d2:4c:70:7f:d9:b8:5d:8e:50:f4:19:dd:d9:76:2e:
2b:5b:f3:ba:a8:b1:71:b9:16:45:83:5c:d9:58:c0:c9:53:f1:
3c:3a:9d:19:c1:9d:71:8a:e0:bd:29:de:53:63:5d:fb:e3:1f:
c4:af:75:a2:20:16:38:34:cc:e2:68:b5:2d:8b:a9:91:c3:eb:
b6:43:ed:95:23:cc:bd:7b:31:ee:3b:20:c3:65:4c:04:5f:62:
b1:2a:87:23:ee:79:d5:0b:79:f1:f9:c8:8b:14:d2:ae:b0:ca:
65:bf:f5:2a:d8:b9:c1:5c:d9:29:11:8d:d8:1f:74:e3:47:7d:
6f:dd:e3:c0:16:c7:7b:26:28:09:5f:8b:58:50:a7:b9:23:de:
93:81:68:94:87:75:d8:e4:fb:68:05:79:1e:51:a2:46:f8:04:
b3:42:23:08:72:96:7e:c0:73:0a:08:72:81:93:13:e3:f4:5d:
7f:3c:ee:76:48:39:fb:b0:fe:7e:81:e3:77:b3:17:69:ab:29:
cc:aa:c9:fb:e6:e0:f6:90:e3:6b:b6:45:c7:ef:5f:bf:75:46:
95:7a:16:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:11:40 2025 by rpki-client