Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/55314e-9156-4776-9e01-570dca7ad13e/1/LDfpq5czmfAvAyfJgRoYdQDEtsk.mft
File: LDfpq5czmfAvAyfJgRoYdQDEtsk.mft (raw, json)
Hash identifier: hqtHbJ72GEeqE3p04e+naDo0cpwi/y7nN1dTSrM7tc8=
Subject key identifier: 09:B9:1C:6E:7A:4E:22:4C:7A:EB:05:FB:42:72:4F:CB:8F:CB:5B:59
Authority key identifier: 2C:37:E9:AB:97:33:99:F0:2F:03:27:C9:81:1A:18:75:00:C4:B6:C9
Certificate issuer: /CN=2c37e9ab973399f02f0327c9811a187500c4b6c9
Certificate serial: 019659F053A84798442A75E32E45BF48FE54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDfpq5czmfAvAyfJgRoYdQDEtsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/55314e-9156-4776-9e01-570dca7ad13e/1/LDfpq5czmfAvAyfJgRoYdQDEtsk.mft
Manifest number: 0338
Signing time: Mon 21 Apr 2025 20:00:44 +0000
Manifest this update: Mon 21 Apr 2025 20:00:44 +0000
Manifest next update: Tue 22 Apr 2025 20:00:44 +0000
Files and hashes: 1: LDfpq5czmfAvAyfJgRoYdQDEtsk.crl (hash: 4HOQ1wd/FYwx5Zf+2kJkXtVSGOifTeqBZtEfMstdr3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/55314e-9156-4776-9e01-570dca7ad13e/1/LDfpq5czmfAvAyfJgRoYdQDEtsk.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/55314e-9156-4776-9e01-570dca7ad13e/1/LDfpq5czmfAvAyfJgRoYdQDEtsk.mft
rsync://rpki.ripe.net/repository/DEFAULT/LDfpq5czmfAvAyfJgRoYdQDEtsk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:f0:53:a8:47:98:44:2a:75:e3:2e:45:bf:48:fe:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c37e9ab973399f02f0327c9811a187500c4b6c9
Validity
Not Before: Apr 21 20:00:44 2025 GMT
Not After : Apr 22 20:00:44 2025 GMT
Subject: CN=09b91c6e7a4e224c7aeb05fb42724fcb8fcb5b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a0:a3:84:29:4a:10:23:94:8c:ee:8e:8f:e7:
7c:26:6e:07:79:08:f0:ca:38:64:d4:65:08:0e:b6:
26:cf:fb:71:33:ba:ba:8c:4c:54:51:20:d8:44:64:
00:6d:c2:cb:f2:ab:9c:62:64:79:63:d8:f1:d2:75:
5a:5b:9b:c6:2f:7e:de:e2:a2:2f:06:c3:5e:7e:20:
64:a9:c6:10:cf:cc:1d:91:87:3d:80:c7:95:06:ad:
51:f3:31:31:69:89:65:7b:72:83:4f:73:6a:a8:7e:
24:a8:be:d3:c7:b9:4c:34:45:67:bf:8b:64:38:c8:
0b:49:71:96:8a:a9:eb:9d:41:48:7a:74:00:fb:b3:
cc:58:bf:6f:4c:11:9d:0d:a5:70:3b:b9:e4:ea:46:
28:a9:aa:7f:51:9a:62:be:53:0b:46:4a:83:2d:b6:
ae:03:73:2e:ff:40:73:85:38:aa:1c:e4:42:2b:99:
68:43:28:9f:a2:17:29:33:90:74:47:b6:d0:48:02:
82:11:2f:9a:70:cd:3a:9b:2a:d0:ed:89:92:14:b1:
cd:a6:93:a2:76:35:a9:08:0d:81:ba:f2:9c:ee:16:
6a:31:4e:12:23:38:e2:54:86:d7:cd:3e:0c:86:cd:
b2:1c:da:87:fe:c5:5b:98:d6:04:a1:fc:2b:19:c1:
ab:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:B9:1C:6E:7A:4E:22:4C:7A:EB:05:FB:42:72:4F:CB:8F:CB:5B:59
X509v3 Authority Key Identifier:
keyid:2C:37:E9:AB:97:33:99:F0:2F:03:27:C9:81:1A:18:75:00:C4:B6:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDfpq5czmfAvAyfJgRoYdQDEtsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/55314e-9156-4776-9e01-570dca7ad13e/1/LDfpq5czmfAvAyfJgRoYdQDEtsk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/55314e-9156-4776-9e01-570dca7ad13e/1/LDfpq5czmfAvAyfJgRoYdQDEtsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:18:7e:46:37:87:76:9f:e1:54:00:3a:9f:8e:a4:dc:b3:39:
2d:e3:f3:86:1e:b2:ca:16:fa:8e:99:39:9b:2a:96:1c:1e:84:
bf:76:27:5f:57:1d:00:12:48:a5:1b:42:2c:c7:72:f5:ff:e2:
bc:3c:8f:ad:67:65:4f:ff:a9:7d:61:a4:0c:9d:3b:87:b6:ff:
4a:44:c7:b4:70:a9:1f:86:b4:4c:54:4b:bc:5c:de:dd:f0:43:
3c:d7:32:d5:6c:59:d0:d5:3b:1e:85:89:bd:04:29:bb:18:88:
a0:5e:ed:36:7b:bc:9b:04:7c:63:80:d8:d5:74:72:c5:60:06:
78:37:37:25:7e:f6:f1:07:b4:89:23:d9:12:dd:04:1b:75:bd:
47:c4:ce:3d:cd:2d:08:6d:02:3c:c8:64:bf:3b:ec:7b:ec:2a:
a5:11:17:bc:97:e0:c7:bb:1e:0e:72:c3:ed:4e:a9:1c:a7:60:
1c:67:5c:6f:1f:0a:2b:c5:80:26:1b:23:dd:1b:69:f8:ef:3e:
30:98:6d:a3:21:2b:99:28:48:b0:09:49:e3:2f:83:cf:14:20:
91:d1:94:6a:ed:e7:4f:9d:71:56:90:1a:1c:8f:17:ac:c6:c0:
ff:93:ca:7d:7b:de:f9:c3:b8:9d:ba:2e:f3:03:67:70:e5:af:
e7:80:f4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:45:20 2025 by rpki-client