Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
File: Lg1AUXqHO33CrrKNDtai-ZOj100.mft (raw, json)
Hash identifier: Q6KbTqPUzWxsKlp5tlLD9nr50VRtN2RF/ZjIsX5dTek=
Subject key identifier: 5D:55:9A:9B:67:98:77:41:B9:74:B5:F3:30:37:22:02:56:5B:C4:1E
Authority key identifier: 2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D
Certificate issuer: /CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d
Certificate serial: 01960A1E4B36A1985C272F57BBACA28948B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
Manifest number: 11BD
Signing time: Sun 06 Apr 2025 08:01:19 +0000
Manifest this update: Sun 06 Apr 2025 08:01:19 +0000
Manifest next update: Mon 07 Apr 2025 08:01:19 +0000
Files and hashes: 1: Lg1AUXqHO33CrrKNDtai-ZOj100.crl (hash: AoDRZqrBE+rjSPy6BLb9MBiUk08FfMfSbOhOtxbfTkI=)
2: g5xnqTmVEZ7ZlTEWt6r937lOqAI.roa (hash: W28IbFUf6cfPKtxTT1Bs+8ajjdC7s7Nv39N6DzwHNwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0a:1e:4b:36:a1:98:5c:27:2f:57:bb:ac:a2:89:48:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d
Validity
Not Before: Apr 6 08:01:19 2025 GMT
Not After : Apr 7 08:01:19 2025 GMT
Subject: CN=5d559a9b67987741b974b5f330372202565bc41e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:15:02:97:6a:ef:9e:2a:a6:b8:c2:9b:77:7c:
89:fb:2d:62:91:fd:6f:9c:e0:e8:dd:1f:a6:67:59:
ea:5a:16:5b:a2:9e:52:84:26:e8:64:34:a1:a7:8a:
19:55:e9:4d:69:7a:d4:b9:9a:56:38:dc:f2:ca:86:
c5:6c:28:0e:9b:4c:0f:e4:c9:a7:55:7b:52:41:20:
79:8f:a6:6a:28:a7:87:ad:03:c2:0a:7d:fc:79:2d:
b0:8d:7b:6d:36:4c:bb:1c:fa:51:4c:e9:b3:ba:36:
01:98:61:7b:fa:99:4d:ec:cb:a2:42:51:18:03:2d:
aa:c9:7a:7c:00:d7:7e:46:64:2e:a5:82:41:03:32:
c4:5f:04:85:b0:a3:12:2e:ec:fc:30:85:89:3b:f2:
60:87:86:af:90:bb:98:09:38:75:97:15:d9:a1:90:
55:f1:be:b0:d8:ee:cf:2b:bf:28:1c:1d:b6:fd:4d:
d4:c4:1c:85:1a:71:21:53:52:c3:8f:ff:0e:bd:2d:
32:0f:86:ff:97:bd:f9:d5:1b:df:9b:c6:bc:2a:7f:
45:15:4e:cf:38:8f:2d:0b:84:38:c5:98:f9:fa:c9:
fd:72:d7:3a:ac:5c:e7:38:a9:59:b4:bb:46:ab:58:
cc:d8:ee:f6:e8:82:70:40:fe:6b:e9:d7:43:8e:39:
13:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:55:9A:9B:67:98:77:41:B9:74:B5:F3:30:37:22:02:56:5B:C4:1E
X509v3 Authority Key Identifier:
keyid:2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:a6:6e:9a:de:27:1d:a2:c0:e9:4d:27:33:77:74:28:3b:b2:
6c:45:fe:4f:88:d6:de:08:d7:38:14:d2:f3:ae:d3:61:51:2e:
62:f8:d1:f3:5c:be:19:5b:8e:81:6a:03:a9:b3:d5:fe:d9:9f:
d3:cf:f1:79:4b:06:d0:03:80:98:24:01:01:4b:76:01:29:7a:
3f:6f:33:b4:b9:66:ca:a7:8f:64:dc:1b:53:c2:27:43:e8:55:
5d:d5:19:90:b0:2e:87:54:ac:ff:b4:b5:40:a9:0d:48:e8:49:
99:8f:d1:e4:6f:db:9b:69:da:2a:0c:5f:24:c6:bf:c3:bb:0e:
65:4c:96:86:8e:51:52:a9:79:76:54:b4:46:d4:27:f5:4d:e0:
78:94:09:c2:4d:c7:74:39:6b:d6:b5:2c:ac:8c:24:dc:6c:12:
a0:3f:13:d7:2a:e7:19:6a:a3:65:0c:45:a5:34:6e:28:e4:86:
fd:bb:8e:22:f2:af:d0:43:f6:b2:d3:fc:05:a4:24:34:53:3f:
d6:7d:a5:0d:93:9e:2b:8d:b1:e1:ed:03:12:9e:14:10:dd:56:
8e:8d:a6:de:5a:09:72:4f:9e:d8:0d:66:66:62:34:59:4b:ad:
58:9a:b5:dc:2a:22:b5:80:d0:84:c7:bd:3e:62:a6:e0:7a:a5:
22:d0:79:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:15:44 2025 by rpki-client