Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json)
Hash identifier: kDhcug0KJNISYvhHcezy085zY71rzMQnIoDsZnkfZp0=
Subject key identifier: 85:02:A0:5A:DA:1A:D0:92:A5:D1:B9:32:5A:B2:C5:EC:D5:E2:EE:8C
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 01964EC76B0E167CFB0155097CF520A9A5C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
Manifest number: 097C
Signing time: Sat 19 Apr 2025 16:00:13 +0000
Manifest this update: Sat 19 Apr 2025 16:00:13 +0000
Manifest next update: Sun 20 Apr 2025 16:00:13 +0000
Files and hashes: 1: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: 6EtEbFUD3BLb4iu6KWxncsTioJ1BkxF54eJO0zvjdqk=)
2: r2nr9uHWjEIdTibij9wAoHFt-FM.roa (hash: 9uPtC9m4AAQGXek/5tdGjDekJKVu5XPicOZ4ymE6WZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:c7:6b:0e:16:7c:fb:01:55:09:7c:f5:20:a9:a5:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: Apr 19 16:00:13 2025 GMT
Not After : Apr 20 16:00:13 2025 GMT
Subject: CN=8502a05ada1ad092a5d1b9325ab2c5ecd5e2ee8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e9:2d:5b:cc:83:01:42:e6:a6:ea:76:54:d1:
dd:a0:9e:8a:21:9f:df:8a:6f:89:eb:f2:e4:47:8e:
ca:f3:74:5d:87:4a:70:ad:49:76:6f:1b:31:20:12:
b5:7b:60:c9:e5:66:e0:af:d9:33:d6:5f:6b:b5:3b:
1c:91:c5:10:bc:e4:33:45:46:c3:c7:33:e0:27:4e:
b6:05:6d:87:de:11:1a:e3:bf:38:ad:e4:c7:8a:b9:
56:8b:0c:a3:32:e9:64:42:a4:62:32:1e:1c:ff:fe:
dc:66:b3:6c:8d:ea:20:3e:03:38:d4:0a:9c:fc:c9:
e2:80:bc:88:2e:1b:cf:bf:f9:6b:ce:64:74:bf:77:
bc:aa:30:6a:c2:9e:5b:24:3b:9e:71:89:3b:fe:63:
28:b0:e3:23:8d:96:b9:97:07:77:dd:e8:62:31:43:
e8:1f:88:91:d6:db:dc:8f:7a:89:55:c5:82:f6:a9:
9f:ce:fd:1a:3a:b7:05:21:8a:6e:f7:b0:ae:de:05:
9f:9d:1c:6f:67:a3:e3:1e:92:e3:82:51:b7:19:f8:
1a:ab:17:8c:19:ec:54:a7:fc:f2:7b:c3:9f:db:a5:
1f:a6:23:d3:b4:0c:63:a6:bb:f6:17:cf:f2:4c:06:
c3:f5:1f:f0:7f:ba:c4:a6:f6:3e:98:bb:84:16:97:
8a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:02:A0:5A:DA:1A:D0:92:A5:D1:B9:32:5A:B2:C5:EC:D5:E2:EE:8C
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:bd:1f:bc:44:7f:83:14:32:9e:db:0f:17:6e:e1:b6:a9:eb:
8b:cb:c1:b4:58:5c:47:1c:48:08:c2:90:3b:fb:04:62:8d:a9:
e5:52:58:e8:37:2c:2d:a8:7e:60:67:1d:01:3a:31:6d:1a:7e:
ec:88:1b:a5:28:e6:75:1b:88:19:b5:15:42:a2:56:8c:4c:64:
45:68:14:f3:f8:45:77:ab:10:32:b5:4f:46:76:77:ba:dd:5d:
1d:81:7d:fc:25:58:e1:60:e7:ec:63:13:88:eb:4a:81:ca:88:
fd:dd:ca:6d:12:be:16:fa:4c:da:33:a4:f2:4f:70:12:b2:28:
11:4c:f2:de:97:2c:40:64:6d:46:2f:28:46:5c:f6:a9:8a:b4:
2f:e4:64:bd:19:d7:2f:df:8f:7c:bf:02:7b:b6:09:70:05:5d:
bb:7a:c4:7c:51:c5:84:10:d3:de:b2:6f:04:a2:dc:df:2f:41:
63:eb:7d:d9:58:56:bb:72:98:f0:2e:cf:a2:17:ca:47:36:31:
bb:59:f4:ab:ca:8d:a6:43:df:5a:7c:ca:01:ee:17:32:87:24:
d4:64:11:a7:d5:5f:74:cb:04:4d:75:cb:b4:0a:3b:2a:9b:5f:
97:e1:0f:65:93:23:e0:87:ff:01:86:9e:19:69:85:99:71:c5:
31:46:53:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:05:33 2025 by rpki-client