Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
File: LF3rfkKW4vu0wB_AZKH2gYlreXk.mft (raw, json)
Hash identifier: CD0V7x9+tkGOjYNnfAvcttJPEwj7QLObqqIAnqvI9sw=
Subject key identifier: E7:BA:0C:D6:1F:D3:34:58:9B:D8:43:84:FB:24:9A:32:F3:2C:CD:D3
Authority key identifier: 2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
Certificate issuer: /CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Certificate serial: 019511D952788383032B2B1BAC883615ADDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
Manifest number: 042E
Signing time: Mon 17 Feb 2025 03:00:09 +0000
Manifest this update: Mon 17 Feb 2025 03:00:09 +0000
Manifest next update: Tue 18 Feb 2025 03:00:09 +0000
Files and hashes: 1: LF3rfkKW4vu0wB_AZKH2gYlreXk.crl (hash: xfwlZCgtjUVaj7zP/o2zhOZN4t9BzsWNiUielgMF10k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:52:78:83:83:03:2b:2b:1b:ac:88:36:15:ad:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Validity
Not Before: Feb 17 03:00:09 2025 GMT
Not After : Feb 18 03:00:09 2025 GMT
Subject: CN=e7ba0cd61fd334589bd84384fb249a32f32ccdd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:52:9c:61:8e:16:5c:1a:1d:8b:3a:5e:29:b9:
c5:66:09:ff:73:3d:e5:9c:7f:06:7d:77:c1:fe:d3:
e3:dd:44:0c:95:70:c7:cf:72:4c:0f:6d:af:04:c2:
8c:66:d1:59:2f:15:5b:4f:95:c3:3a:24:40:08:ed:
76:06:ff:4e:8f:ca:c5:56:f5:4b:4c:f7:46:0f:29:
c0:92:c3:1d:80:02:9f:b6:b7:80:ab:6d:7e:de:3d:
82:5b:37:db:bc:36:15:4d:84:26:34:09:67:35:3e:
5a:fc:a8:06:2f:7c:65:58:15:e9:10:55:79:34:66:
4d:83:d1:4b:26:3c:04:e3:4e:6d:b0:c7:71:87:04:
b4:fd:e0:44:60:fb:2a:f5:2b:20:e3:8f:77:47:55:
02:d4:14:6c:d1:cc:fe:a5:18:ca:57:aa:58:ef:41:
03:3e:ff:58:bd:dd:67:07:f7:b2:4c:45:d0:a0:b6:
95:d4:02:23:3a:92:b2:3b:61:f6:3e:53:bc:6f:e9:
81:1d:c7:6c:88:b9:de:f4:47:7c:01:8a:36:56:b1:
76:5c:97:fb:06:29:19:bc:04:b1:b7:cb:58:e7:80:
90:59:3f:a8:81:eb:34:42:a1:3f:0d:bb:e1:6d:29:
a2:e8:eb:aa:fc:4a:38:0f:c4:b5:3d:55:33:8a:1c:
ad:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:BA:0C:D6:1F:D3:34:58:9B:D8:43:84:FB:24:9A:32:F3:2C:CD:D3
X509v3 Authority Key Identifier:
keyid:2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:18:db:b6:a1:d3:96:bb:38:a2:7a:ea:3d:4f:da:57:0b:47:
0d:2f:34:e5:cf:65:8c:bc:17:e3:86:02:8e:cc:ff:2c:60:4e:
d8:10:17:a2:97:77:ef:dd:6f:67:52:03:7b:87:24:34:c4:ae:
d1:a8:25:6b:19:11:29:60:69:fa:1f:27:6a:d8:bc:38:1a:0a:
79:cb:54:30:24:90:1e:9c:1d:19:3b:9b:60:31:9f:a0:d0:03:
0f:ed:63:08:a0:d1:1f:71:27:bf:30:d3:2a:28:e6:a6:49:c7:
4b:22:64:6b:4d:fe:e1:da:6c:a1:d1:dc:03:c6:df:7e:01:bd:
69:2d:96:9e:d9:21:0b:57:15:cb:bf:dc:a5:60:61:0a:df:9f:
a3:7a:0c:b5:2c:c9:b3:e1:39:ad:54:79:a1:1b:34:fb:4e:18:
27:58:8c:9e:36:c3:65:95:34:f4:eb:58:c3:d9:bd:d3:e7:ec:
0e:c4:59:21:79:ef:d6:8e:2a:f4:dd:ce:7b:99:e6:33:c3:28:
36:16:b0:c5:1b:0f:f0:59:54:ca:8a:08:e0:74:4a:8c:50:f2:
0c:4a:a9:cf:a4:e4:c3:dc:08:0d:7e:8c:86:54:32:67:cd:29:
c2:bd:62:7f:7c:da:28:97:35:da:6c:82:83:e0:ec:a1:13:91:
9d:71:a8:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUR2VJ4g4MDKysbrIg2Fa3dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjNWRlYjdlNDI5NmUyZmJiNGMwMWZjMDY0YTFmNjgxODk2
Yjc5NzkwHhcNMjUwMjE3MDMwMDA5WhcNMjUwMjE4MDMwMDA5WjAzMTEwLwYDVQQD
EyhlN2JhMGNkNjFmZDMzNDU4OWJkODQzODRmYjI0OWEzMmYzMmNjZGQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVKcYY4WXBodizpeKbnFZgn/cz3l
nH8GfXfB/tPj3UQMlXDHz3JMD22vBMKMZtFZLxVbT5XDOiRACO12Bv9Oj8rFVvVL
TPdGDynAksMdgAKftreAq21+3j2CWzfbvDYVTYQmNAlnNT5a/KgGL3xlWBXpEFV5
NGZNg9FLJjwE405tsMdxhwS0/eBEYPsq9Ssg4493R1UC1BRs0cz+pRjKV6pY70ED
Pv9Yvd1nB/eyTEXQoLaV1AIjOpKyO2H2PlO8b+mBHcdsiLne9Ed8AYo2VrF2XJf7
BikZvASxt8tY54CQWT+oges0QqE/DbvhbSmi6Ouq/Eo4D8S1PVUzihytewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOe6DNYf0zRYm9hDhPskmjLzLM3TMB8GA1UdIwQY
MBaAFCxd635CluL7tMAfwGSh9oGJa3l5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEYzcmZrS1c0dnUwd0JfQVpLSDJnWWxyZVhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS85OTMyM2UtMDFmNi00OTU5LTk4MTYt
YTg2YWM1NjFhYjU2LzEvTEYzcmZrS1c0dnUwd0JfQVpLSDJnWWxyZVhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS85OTMyM2UtMDFmNi00OTU5LTk4MTYtYTg2YWM1NjFhYjU2
LzEvTEYzcmZrS1c0dnUwd0JfQVpLSDJnWWxyZVhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQhjbtqHT
lrs4onrqPU/aVwtHDS805c9ljLwX44YCjsz/LGBO2BAXopd3791vZ1IDe4ckNMSu
0aglaxkRKWBp+h8nati8OBoKectUMCSQHpwdGTubYDGfoNADD+1jCKDRH3EnvzDT
KijmpknHSyJka03+4dpsodHcA8bffgG9aS2WntkhC1cVy7/cpWBhCt+fo3oMtSzJ
s+E5rVR5oRs0+04YJ1iMnjbDZZU09OtYw9m90+fsDsRZIXnv1o4q9N3Oe5nmM8Mo
NhawxRsP8FlUyooI4HRKjFDyDEqpz6Tkw9wIDX6MhlQyZ80pwr1if3zaKJc12myC
g+DsoRORnXGodw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:37 2025 by rpki-client