Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
File: leooNjXLO9FSOoXdycr1MFaNL4E.mft (raw, json)
Hash identifier: 9nk95u2UdcDWTmlUykrHgOEI9UMcKrCjI2hEcVdVBP0=
Subject key identifier: 38:61:DF:CF:18:E5:53:BC:D5:3E:B6:96:99:3F:A8:0B:36:1D:AD:3E
Authority key identifier: 95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
Certificate issuer: /CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Certificate serial: 0194C4D15754B09A418071D781C852E4A0B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
Manifest number: 083D
Signing time: Sun 02 Feb 2025 04:00:41 +0000
Manifest this update: Sun 02 Feb 2025 04:00:41 +0000
Manifest next update: Mon 03 Feb 2025 04:00:41 +0000
Files and hashes: 1: MCsIROpcTR7JKSRfmFoIKjJ_nz4.roa (hash: R67ARze8qlkUfDP9bKevHmAROQGEYMGNSr3mOqKWMMQ=)
2: leooNjXLO9FSOoXdycr1MFaNL4E.crl (hash: jSlcC+QbHdtjMjVDKf+eJ0srU1+0SY6tp2aXXCrtDeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:d1:57:54:b0:9a:41:80:71:d7:81:c8:52:e4:a0:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Validity
Not Before: Feb 2 04:00:41 2025 GMT
Not After : Feb 3 04:00:41 2025 GMT
Subject: CN=3861dfcf18e553bcd53eb696993fa80b361dad3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5a:d5:6a:2c:78:a2:df:bd:74:0f:28:8b:58:
d9:32:93:ae:c7:3f:75:e6:1d:d4:c0:09:5e:57:e1:
bd:0e:1c:32:f4:eb:6d:0c:a6:b5:ce:64:d8:a9:a9:
96:c0:27:71:96:51:f5:fb:a8:03:b3:db:70:29:3f:
45:5b:e4:38:f5:ae:1e:2c:6f:3c:13:1f:0e:7d:3d:
f8:1f:a7:4a:d0:79:c0:f5:3b:a2:87:57:df:0b:12:
7c:64:68:07:3f:e9:e3:55:46:93:0a:4b:5e:4d:9d:
2d:c3:8f:d1:e1:d2:ee:65:ca:16:fd:07:a4:30:52:
6f:ed:2f:7d:18:2d:c0:f5:83:84:54:0f:f5:c1:b3:
e9:ef:59:09:2b:d1:bb:4d:34:e5:51:5e:9d:a8:fd:
82:8d:dd:52:4b:15:d7:d9:b8:bb:39:74:29:02:ee:
98:dd:e2:4f:dc:27:0b:aa:9c:8d:86:54:b4:26:b5:
f7:4d:ae:ff:c9:43:bf:0f:8f:f8:e0:36:f7:fc:d2:
1d:2a:55:c9:45:53:7c:eb:57:9f:83:3e:bc:a3:fb:
f3:ca:5f:33:7c:7d:03:ac:dd:6c:e9:77:bd:c0:5b:
ad:8f:16:1e:0c:43:3b:31:ff:75:be:0f:54:1f:32:
de:c8:99:38:d4:bf:11:6d:46:91:9e:90:1f:3e:94:
fe:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:61:DF:CF:18:E5:53:BC:D5:3E:B6:96:99:3F:A8:0B:36:1D:AD:3E
X509v3 Authority Key Identifier:
keyid:95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:b4:4d:c2:98:ac:49:a4:d6:e1:de:58:74:7e:de:04:f2:ae:
5e:87:5e:c0:42:6a:9a:38:5d:ac:dc:00:d7:23:6d:4a:df:5f:
40:23:13:f3:57:64:54:d5:f6:21:fe:e3:6f:d4:6a:3d:ff:d7:
99:47:c6:f7:fe:11:07:29:f1:cb:ba:0d:69:ee:89:e8:0e:ee:
33:05:c6:c1:13:70:5e:82:fc:93:03:5e:39:f1:e8:78:cc:fd:
0d:e2:3a:27:8f:92:40:9a:24:61:1c:cf:6d:42:c1:ac:e9:75:
20:1c:d7:92:18:07:6d:92:ae:0a:84:a3:57:38:b5:2f:59:c1:
8a:5f:6c:06:a9:d9:97:5d:a5:17:e2:de:71:9e:0e:d5:07:cb:
41:6a:ec:86:6a:12:8b:11:0b:6e:a0:b7:09:ee:58:bd:90:e7:
4d:c5:8f:ee:e4:6b:d5:90:46:40:0b:33:ae:ca:2f:fe:06:7d:
29:2c:b7:b4:4d:63:d1:1c:af:62:1f:9c:e1:28:47:44:0f:89:
f8:8d:ae:28:8b:d7:17:1f:cf:d5:02:24:11:77:b1:29:b0:35:
3a:2a:d8:33:20:84:c2:67:d2:19:ad:15:af:b5:5f:e0:ca:0c:
9f:99:c9:ff:78:1a:f8:f1:60:01:2c:44:4e:c0:f2:18:46:d9:
2d:05:de:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:42:49 2025 by rpki-client