Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
File: 2LlxoaILZPFCUYAfj0NKQHX36pE.mft (raw, json)
Hash identifier: eAlPS+iGUTaszmsauuNP9bYyUfNMcAZFZoReIr19Deo=
Subject key identifier: 36:71:B3:41:D6:81:D2:4C:28:B2:53:6C:65:6D:1E:48:BA:21:12:83
Authority key identifier: D8:B9:71:A1:A2:0B:64:F1:42:51:80:1F:8F:43:4A:40:75:F7:EA:91
Certificate issuer: /CN=d8b971a1a20b64f14251801f8f434a4075f7ea91
Certificate serial: 0196538058C02EF9F9FAF99D3D2781196AF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
Manifest number: 01AC
Signing time: Sun 20 Apr 2025 14:00:42 +0000
Manifest this update: Sun 20 Apr 2025 14:00:42 +0000
Manifest next update: Mon 21 Apr 2025 14:00:42 +0000
Files and hashes: 1: 2LlxoaILZPFCUYAfj0NKQHX36pE.crl (hash: s+/tsuX8s9wwKSsf52h0IaxGEWMhPlGx90TqsMI5d6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:80:58:c0:2e:f9:f9:fa:f9:9d:3d:27:81:19:6a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8b971a1a20b64f14251801f8f434a4075f7ea91
Validity
Not Before: Apr 20 14:00:42 2025 GMT
Not After : Apr 21 14:00:42 2025 GMT
Subject: CN=3671b341d681d24c28b2536c656d1e48ba211283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d8:fb:5a:4f:dc:28:f1:49:c0:f5:54:f5:fb:
70:d7:11:64:d0:ac:30:28:b6:6a:1b:3a:f7:b6:6e:
88:cd:c4:30:25:e1:88:f2:49:94:9e:d4:14:7f:45:
f8:ed:a4:fc:1a:d5:73:8f:1a:5b:4d:24:40:35:c9:
e6:75:da:22:04:4a:fb:63:1f:5e:73:50:8b:32:de:
1e:8d:3f:3c:18:d1:f3:92:c4:da:ed:32:f1:1a:af:
e9:f6:41:c2:75:60:58:4b:c6:4e:3e:a2:3e:80:13:
3d:8b:4f:f6:30:a0:1f:b9:d4:fa:49:6e:eb:1f:04:
5d:93:dc:eb:96:31:73:6f:cf:05:f9:70:92:bd:dd:
d3:ea:a6:2f:03:36:8c:e1:8e:fd:08:c1:d5:d9:43:
ef:15:fd:90:9f:38:27:89:2a:1a:7c:32:41:5d:5a:
52:19:c5:15:d0:4b:1b:2c:bf:4e:ce:3f:db:43:32:
4c:23:24:60:0e:da:02:52:54:61:5e:35:4b:3e:2a:
a2:53:83:2d:28:d1:93:2c:85:b8:f5:21:58:90:c9:
48:8b:44:dc:41:ea:bb:29:78:1f:06:5b:77:47:12:
5a:37:12:d6:13:25:82:f7:d0:3e:21:26:f9:d6:9a:
be:d3:11:b2:71:e4:e9:63:25:b5:09:82:e0:c5:e0:
9f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:71:B3:41:D6:81:D2:4C:28:B2:53:6C:65:6D:1E:48:BA:21:12:83
X509v3 Authority Key Identifier:
keyid:D8:B9:71:A1:A2:0B:64:F1:42:51:80:1F:8F:43:4A:40:75:F7:EA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:26:b5:04:65:59:ce:0d:13:5b:18:fe:e2:2d:07:9d:8c:d6:
e7:0b:ba:2d:b2:64:66:bd:23:b3:d3:7e:60:bc:22:98:a8:dd:
2f:68:47:49:d2:bc:d1:2a:77:01:12:cb:e7:30:e4:f4:39:d6:
9d:40:6b:ee:af:e0:fb:f0:7f:70:69:cf:ed:49:10:eb:ba:46:
c2:1a:15:5e:2c:82:a9:15:72:46:7e:00:55:e1:b0:f7:00:f1:
5f:f3:7f:72:9d:a7:5a:61:3d:29:d0:52:80:65:bb:49:42:95:
7b:92:34:fb:9d:74:c4:0a:3f:29:4a:7a:98:7a:63:a2:ab:8e:
58:e1:41:a3:8b:d6:11:2a:c1:b0:76:44:33:7d:4b:95:0d:f4:
07:2f:cd:97:f6:c9:81:63:3e:31:cc:b4:24:ac:ba:46:50:6c:
69:9e:58:f0:1b:64:aa:d4:11:d3:cb:c6:06:da:0e:39:71:4d:
3f:ca:e4:dc:99:60:e3:23:db:5d:62:b0:bc:35:69:9b:50:0f:
b6:4d:bc:ab:2f:6e:fc:9f:5f:88:41:9f:63:14:55:7f:75:b5:
d3:e6:6c:d8:be:85:1a:ad:43:aa:af:9d:82:a0:b2:97:e6:01:
75:a1:18:d3:22:6d:6c:8d:b5:be:1c:b4:fc:8f:fb:da:1a:d2:
f0:44:19:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:12:36 2025 by rpki-client