Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
File: lf0DtfNbMXtNMv8aSywXuzdsIeE.mft (raw, json)
Hash identifier: VLRGMu1xz2RDM4LrEEy9sevksXeQCcQp353kxq1VmfE=
Subject key identifier: A7:F8:BF:53:1C:FD:D5:C5:52:17:18:78:79:75:B9:9D:3F:8F:71:91
Authority key identifier: 95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
Certificate issuer: /CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Certificate serial: 01964F35ECC3219DD84F7547DCB17F5F108D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
Manifest number: 1108
Signing time: Sat 19 Apr 2025 18:00:56 +0000
Manifest this update: Sat 19 Apr 2025 18:00:56 +0000
Manifest next update: Sun 20 Apr 2025 18:00:56 +0000
Files and hashes: 1: LZt4gb-xWjsUFFEJJlr5snAnfj4.roa (hash: iVanuwhOVMx/ABZHooPm82UQY207412XKo2wvn51IRE=)
2: lf0DtfNbMXtNMv8aSywXuzdsIeE.crl (hash: ss8IZXEEouodkWTyAc0sc71zrAZr/LvUj47U2tZ7mWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:35:ec:c3:21:9d:d8:4f:75:47:dc:b1:7f:5f:10:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Validity
Not Before: Apr 19 18:00:56 2025 GMT
Not After : Apr 20 18:00:56 2025 GMT
Subject: CN=a7f8bf531cfdd5c5521718787975b99d3f8f7191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d4:6e:b9:8d:21:9b:75:96:8f:3e:e3:e0:a9:
36:7b:5c:eb:3d:2d:3a:12:c1:0f:ad:fa:dc:65:34:
8c:5d:a3:da:90:44:02:23:a6:c8:48:64:e3:ac:32:
65:bb:d2:91:47:e8:0c:2c:8a:ac:aa:1b:c6:2b:8e:
19:79:9c:51:f3:75:47:8d:ae:67:f5:17:ae:df:ba:
06:05:4d:59:50:93:2b:8c:a2:8a:66:ed:b2:c7:4a:
35:74:f7:ab:15:cc:4b:7e:b9:93:0f:64:95:d2:f4:
e4:57:42:97:62:08:51:05:62:fe:b9:37:e5:13:ef:
61:cd:64:44:12:a0:b5:63:47:39:7d:a8:fe:41:b7:
6e:9e:34:7b:55:89:74:f8:e2:62:eb:2e:ef:5c:6e:
46:e2:10:7b:13:26:d0:e0:c1:f3:c9:49:e2:ac:5c:
65:92:55:8c:ee:69:2d:a4:aa:14:34:0e:74:b3:74:
9f:2f:4b:fc:fd:d5:ca:30:7a:2a:6d:f5:d9:12:b6:
44:fb:fc:e6:15:f6:3f:7d:19:aa:21:f0:a7:7a:21:
4f:cd:40:a2:0e:a5:d6:09:af:44:5f:39:c5:85:b8:
11:e0:d7:ce:5f:97:eb:af:d0:0b:6c:9d:4c:7f:ef:
2c:ea:5d:3e:53:24:bc:24:16:24:3d:08:cc:87:21:
81:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F8:BF:53:1C:FD:D5:C5:52:17:18:78:79:75:B9:9D:3F:8F:71:91
X509v3 Authority Key Identifier:
keyid:95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:78:28:63:67:f5:b1:28:73:7b:f7:6c:d5:0c:a4:6c:e8:a7:
87:96:12:51:b7:63:10:98:d6:5c:b5:96:43:49:3d:e9:9a:68:
5f:82:db:f1:b2:b2:ac:f5:79:d6:9b:ae:c4:63:10:14:cc:bd:
8c:d1:b5:11:c3:29:67:a2:aa:de:74:c2:9b:01:39:c5:4f:b5:
e5:a1:e9:4b:95:07:7f:19:d9:a8:5a:6a:fb:23:53:47:73:93:
c5:13:1d:1b:e7:74:7b:7d:fa:b0:24:32:f0:0a:c1:af:02:2e:
07:f5:b1:f3:34:57:d0:4e:ba:3b:3a:8f:f2:95:ea:1e:b7:52:
9a:aa:32:c4:dc:ac:c3:49:7f:5c:92:5b:89:e7:97:43:ff:f3:
59:f0:67:d2:dd:b8:21:90:45:3a:ef:88:e2:c0:46:a5:68:eb:
4a:2f:86:58:b2:70:06:28:5d:85:43:b5:fc:53:8d:98:2c:f3:
24:1d:fd:77:94:a9:19:e2:0f:2d:45:70:79:27:b8:02:63:1c:
a9:84:33:a2:e3:ef:d7:36:3c:1a:e6:3b:30:cd:f9:1d:34:80:
ce:60:df:30:c9:4a:12:f0:6d:0e:d3:1a:9f:34:b0:b4:c8:cf:
4a:0b:dc:5d:a3:ed:94:2a:7d:de:92:fb:a7:6b:2a:43:4a:07:
dc:92:93:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:11:05 2025 by rpki-client