Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
File: lJgy8CXL76HqG8oMOQtjwXaUjNI.mft (raw, json)
Hash identifier: EU1bWDiRDd1nCfHlQVlLyPA8RvZR89s5QaB2A8md76Q=
Subject key identifier: D4:CE:FE:65:F4:B1:44:48:34:4C:63:26:B3:81:AD:8E:89:8B:7A:67
Authority key identifier: 94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
Certificate issuer: /CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Certificate serial: 01963D66A6B37ECBBF80EAAEEACCDD897E12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
Manifest number: 036C
Signing time: Wed 16 Apr 2025 07:00:59 +0000
Manifest this update: Wed 16 Apr 2025 07:00:59 +0000
Manifest next update: Thu 17 Apr 2025 07:00:59 +0000
Files and hashes: 1: euJQQHPXaEEafjtTEpsACoT0UO8.roa (hash: LMr9+ppvHgb0CfRsIuadMwP8K1TTGxo74gFD8Bmp2bs=)
2: lJgy8CXL76HqG8oMOQtjwXaUjNI.crl (hash: 2OAJ4S7AU2wBhmmNr+7lrn/I/8PLFHZzVndmR39Nuuw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 07:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3d:66:a6:b3:7e:cb:bf:80:ea:ae:ea:cc:dd:89:7e:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Validity
Not Before: Apr 16 07:00:59 2025 GMT
Not After : Apr 17 07:00:59 2025 GMT
Subject: CN=d4cefe65f4b14448344c6326b381ad8e898b7a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f9:6a:8e:c1:76:7f:23:9e:7a:4a:66:5d:eb:
f7:5a:8b:e5:c0:8b:c6:a2:4f:d4:3d:73:d2:1c:79:
40:15:7d:43:1b:5a:28:71:1d:93:51:90:bf:53:b0:
dd:c1:22:48:4a:1f:95:35:9d:9b:99:75:b1:c2:9a:
82:10:2a:d4:9f:77:5e:9c:38:34:a4:65:4f:ef:ce:
14:9e:2e:53:4a:f7:7d:1b:20:4f:56:df:93:e5:c5:
a4:de:2a:17:84:72:62:8c:ef:85:bd:e6:55:d1:9b:
64:76:fb:a4:e7:41:7d:07:72:a2:28:c9:6f:9e:61:
79:d1:48:22:b6:fd:5d:c3:33:43:bc:b6:56:21:da:
42:7a:c1:af:47:04:d3:13:eb:4f:17:ed:f5:3e:d9:
06:6e:8f:fb:6c:ae:31:ff:0a:c4:b0:57:f8:74:cc:
d6:a1:1b:e2:cc:48:ee:17:e5:d1:e8:34:09:00:ad:
81:4e:9c:03:cb:b0:85:0e:7d:e8:d8:6c:32:eb:f6:
5f:86:92:60:bb:83:52:0c:ec:b2:f3:a5:05:47:4c:
70:cf:97:87:60:ae:03:29:85:8b:b9:41:82:4a:65:
1e:d2:ea:0f:fe:28:8d:f5:7a:dd:f3:20:50:04:cf:
cc:08:d5:69:ed:ba:1a:52:e0:31:13:32:b6:de:52:
8f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:CE:FE:65:F4:B1:44:48:34:4C:63:26:B3:81:AD:8E:89:8B:7A:67
X509v3 Authority Key Identifier:
keyid:94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:ee:3b:8b:91:2a:1a:36:2a:b5:ff:07:91:5d:1a:70:bb:dc:
3d:12:38:e7:3e:15:83:8d:c8:7f:55:44:b6:e0:65:4b:15:39:
bb:f2:a5:21:e8:ae:18:d0:72:24:36:40:16:55:32:fd:9a:0d:
64:31:9e:81:a4:10:4b:91:21:69:78:f2:cf:db:88:5f:c0:dd:
85:c8:1c:9e:0d:18:2a:cc:b7:80:6b:73:cd:e5:42:ae:94:58:
ab:d9:b3:34:0a:ff:c2:88:e0:82:ac:74:ad:2a:b7:d5:b2:2a:
2b:81:f5:8c:ec:1b:53:c2:e4:b7:06:31:ba:97:35:25:0d:e6:
9e:c1:c7:60:9c:10:f7:b4:dc:82:9a:a2:05:66:d3:67:e9:44:
91:3c:e4:b0:fe:0d:33:2b:c4:e4:8e:33:cb:49:d9:38:2f:28:
54:03:56:58:af:e0:58:9b:f8:02:53:74:48:0d:fa:62:7d:bf:
3e:df:ed:d6:d3:32:ef:35:70:85:df:76:03:71:6c:1d:f8:0f:
1a:c9:a8:3c:af:0e:97:d0:ba:c0:a6:d5:25:ec:4f:0c:8e:3c:
3b:ab:5a:dd:bb:8e:8f:91:6c:b0:13:8c:d6:16:90:59:f4:a8:
9a:2f:b6:b6:8e:e3:9d:bc:0f:87:59:3c:58:19:29:c9:73:1b:
af:cf:e3:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 15:33:09 2025 by rpki-client