Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
File: lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft (raw, json)
Hash identifier: c6Acr7gX4k6R+QrPOLPVQQFfF341anj1ats5o6RQkAU=
Subject key identifier: 38:A7:5F:C0:AF:AB:4A:76:27:64:89:FE:60:E7:50:3C:34:45:04:E5
Authority key identifier: 94:28:2A:60:78:BA:98:FB:4A:6E:34:3E:76:03:A9:60:E7:A6:34:42
Certificate issuer: /CN=94282a6078ba98fb4a6e343e7603a960e7a63442
Certificate serial: 019654254BA936E432D3B789457E8EE26946
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
Manifest number: 14B8
Signing time: Sun 20 Apr 2025 17:00:52 +0000
Manifest this update: Sun 20 Apr 2025 17:00:52 +0000
Manifest next update: Mon 21 Apr 2025 17:00:52 +0000
Files and hashes: 1: G39ME0xFxZesqQwqos2EdI8n7qo.roa (hash: 8k5VE0uXEGXbMB9ED4RCnZSTVNYbIG3+AEXwxhVpiyI=)
2: lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl (hash: mSRjw0U2PlqosqX4UnqBLeiwZlpL1PkFaNMV+qhZPJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 17:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:25:4b:a9:36:e4:32:d3:b7:89:45:7e:8e:e2:69:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94282a6078ba98fb4a6e343e7603a960e7a63442
Validity
Not Before: Apr 20 17:00:52 2025 GMT
Not After : Apr 21 17:00:52 2025 GMT
Subject: CN=38a75fc0afab4a76276489fe60e7503c344504e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:60:ae:d4:3d:f6:8a:de:7e:5f:03:44:3f:00:
ef:c4:0b:4f:5f:83:6d:db:a3:45:4f:12:71:8d:0e:
c2:c7:ef:c5:f3:4c:64:90:ec:21:32:05:e0:04:9a:
35:1f:60:2c:0e:cb:36:9f:ed:fe:a8:1c:cd:e2:6c:
f4:a7:72:0b:81:c0:e6:c0:44:7a:fc:26:a4:b3:61:
8b:46:34:c0:b7:f2:c2:e6:81:e4:c7:ee:6c:2d:5d:
f1:68:b4:c1:8b:b9:f0:7f:26:b5:91:87:de:c4:ae:
14:ed:47:d0:5b:8f:5e:62:cd:41:10:fa:ce:1f:84:
3f:9e:1e:2c:05:f6:60:45:c5:55:be:9a:e1:d0:d3:
e6:5f:64:ec:bf:74:12:62:9f:b4:19:af:c7:9f:1d:
b7:fd:50:01:20:0c:e1:0b:93:76:b5:ce:36:16:50:
35:74:88:d3:9b:0a:a3:86:b3:6f:d5:f6:03:84:f5:
0f:30:dc:78:65:b0:25:09:24:41:3d:e4:52:04:81:
07:a9:d7:9b:be:4f:0d:06:df:cc:78:89:5e:b4:07:
a9:7d:6c:18:43:41:99:ce:b9:13:07:72:99:09:3c:
8b:eb:64:34:e5:4a:03:c5:b8:8e:dc:86:5f:1b:c9:
64:f9:96:b9:5c:d3:1f:25:9b:20:0e:de:6a:8e:f4:
c0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A7:5F:C0:AF:AB:4A:76:27:64:89:FE:60:E7:50:3C:34:45:04:E5
X509v3 Authority Key Identifier:
keyid:94:28:2A:60:78:BA:98:FB:4A:6E:34:3E:76:03:A9:60:E7:A6:34:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:a4:80:52:47:0c:42:a9:05:d0:91:21:15:8f:24:3a:a0:e9:
e7:e5:8d:8e:5d:f1:45:a7:a8:d9:33:6c:74:ac:f7:46:af:0c:
85:3d:0b:1a:6f:44:e7:d3:5a:f7:50:31:8c:fd:d7:c8:e6:6f:
59:66:45:b0:ec:a2:b6:57:45:13:c8:96:43:ad:63:dc:2e:66:
5a:87:5d:8b:a0:fe:31:eb:8b:4e:82:48:e5:f5:cd:96:a0:4d:
83:a9:3f:75:35:1b:a6:fa:1c:16:31:02:f5:fe:97:6d:c3:48:
88:57:9e:fc:dc:f0:55:c0:61:b5:66:9a:7b:de:18:58:c8:de:
c5:96:25:8e:3a:b6:d1:63:db:27:a2:d4:42:3c:83:7a:e7:d1:
4f:71:a3:f1:ed:b1:47:15:d3:39:66:7c:bc:43:6e:fb:7c:27:
e5:87:57:5c:e4:fb:7f:e9:6f:a5:7c:53:64:61:6b:45:05:90:
94:c3:39:d7:b9:61:2b:83:dd:1e:3b:d1:0b:c4:cb:a7:78:a6:
fc:16:d2:fc:2f:47:1f:b1:fb:e2:0b:0e:23:c4:13:cd:f1:42:
47:df:44:27:5a:b2:a6:cc:95:40:91:94:79:e8:ec:89:2b:dc:
a9:47:9c:6f:79:b6:6c:13:0d:9c:13:c9:3e:ec:32:1d:d3:c3:
e1:1f:67:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:56:55 2025 by rpki-client