Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft
File: LKVMSc_kyVm2nIriZoMm8QX2K50.mft (raw, json)
Hash identifier: 6SdxhAlt3cOVLK8AN1vvk8RPas8/R4HRlRXT7SSztOg=
Subject key identifier: 97:17:D7:F2:BF:A9:D9:78:56:08:C8:D8:08:03:C7:29:EB:7A:C4:C0
Authority key identifier: 2C:A5:4C:49:CF:E4:C9:59:B6:9C:8A:E2:66:83:26:F1:05:F6:2B:9D
Certificate issuer: /CN=2ca54c49cfe4c959b69c8ae2668326f105f62b9d
Certificate serial: 01964CA27CF5FF6411376BBB54827B3BB2DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKVMSc_kyVm2nIriZoMm8QX2K50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft
Manifest number: 04DB
Signing time: Sat 19 Apr 2025 06:00:39 +0000
Manifest this update: Sat 19 Apr 2025 06:00:39 +0000
Manifest next update: Sun 20 Apr 2025 06:00:39 +0000
Files and hashes: 1: LKVMSc_kyVm2nIriZoMm8QX2K50.crl (hash: Y3eaHYc+cmFUnhovnrbZZThZbNw7YEOIa8FzXij9iO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKVMSc_kyVm2nIriZoMm8QX2K50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:a2:7c:f5:ff:64:11:37:6b:bb:54:82:7b:3b:b2:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ca54c49cfe4c959b69c8ae2668326f105f62b9d
Validity
Not Before: Apr 19 06:00:39 2025 GMT
Not After : Apr 20 06:00:39 2025 GMT
Subject: CN=9717d7f2bfa9d9785608c8d80803c729eb7ac4c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ad:4d:10:c4:94:ac:ff:0b:cb:db:64:26:64:
35:6c:31:7b:8a:5c:28:f1:eb:6e:4d:2e:4c:be:16:
03:6b:14:53:bb:dc:c9:6e:2d:26:41:11:4d:be:fc:
ac:f9:7a:36:a8:d9:af:33:1e:a5:c7:d2:b6:5e:77:
e0:c4:31:63:22:8c:8b:f9:40:8a:08:e4:e5:e3:16:
47:f0:1e:83:3a:d7:48:a5:f3:9a:00:34:e5:be:9d:
88:20:27:a0:40:ed:fa:5c:99:16:a1:bd:08:a5:04:
28:69:7a:3f:e8:43:5b:d9:d9:c7:e6:c1:4b:bc:ac:
c6:18:30:d6:79:75:e3:be:4a:d4:7f:e7:50:ed:16:
86:e3:e5:09:43:d7:0f:06:89:34:4d:55:9b:28:2a:
84:f3:0e:f0:62:16:ba:fd:7a:06:03:8f:7d:b4:04:
49:71:9f:b5:24:5e:ef:62:7b:a1:fd:b8:58:cd:29:
75:5e:ad:c2:f4:6f:ec:df:c2:33:5c:2f:e3:2b:aa:
29:63:ef:2c:a0:d6:1e:07:8a:2f:ea:f8:3f:01:ba:
d6:79:e4:83:ed:9e:97:31:3a:47:0d:c1:88:16:79:
28:c2:94:48:a9:19:cd:58:d8:4c:81:48:98:76:90:
95:06:f9:d5:19:06:d3:08:13:b9:e3:65:1c:3b:2d:
ad:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:17:D7:F2:BF:A9:D9:78:56:08:C8:D8:08:03:C7:29:EB:7A:C4:C0
X509v3 Authority Key Identifier:
keyid:2C:A5:4C:49:CF:E4:C9:59:B6:9C:8A:E2:66:83:26:F1:05:F6:2B:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKVMSc_kyVm2nIriZoMm8QX2K50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/4b1f9e-88fe-4939-ad58-f23f29cefee6/1/LKVMSc_kyVm2nIriZoMm8QX2K50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:bd:e1:9c:4c:b5:f1:6b:52:51:37:50:36:2e:99:7d:a2:1b:
8d:e6:a0:6b:e4:9c:5f:4a:02:3e:51:4a:cd:4e:a1:90:9d:d6:
a7:64:93:96:42:2a:fd:fb:14:07:51:5e:0b:d5:09:af:ab:96:
4c:18:20:e1:98:71:e4:fd:3f:ee:f5:8c:ea:c6:52:ab:5e:4b:
26:8c:4b:89:3c:f2:74:48:a9:d5:11:84:62:8e:3b:0d:c1:ad:
36:6a:f8:60:7b:8d:07:c9:08:62:8e:84:bf:fa:70:ba:0f:56:
df:3d:6c:18:e3:79:8c:69:77:fc:0c:84:9b:2a:00:2d:55:92:
81:2b:2d:56:6c:aa:35:75:f3:18:57:52:c8:b4:32:9f:fb:d9:
50:10:3b:13:2f:26:40:08:5c:39:25:e4:31:5c:4e:a2:b6:17:
89:3b:af:e9:fa:f0:13:f3:1d:16:fa:98:14:f6:fe:b4:34:e0:
72:88:a4:98:fd:17:b7:12:52:df:3f:89:2b:87:9e:bc:d8:c8:
67:78:92:21:58:5c:f0:81:4e:16:53:77:9b:da:f4:0c:d8:b9:
22:f9:30:ef:66:e0:0e:3c:d3:c9:08:09:24:3b:02:de:65:94:
dd:ec:35:45:e1:5b:43:d9:a7:ea:39:d8:34:36:05:8e:0b:dd:
91:9f:44:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:11:54 2025 by rpki-client