Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
File: LF3rfkKW4vu0wB_AZKH2gYlreXk.mft (raw, json)
Hash identifier: UMjgkWDsNwFMD66ZJgnfttghn5rNV1nnjeJ1ldnUlRA=
Subject key identifier: 6C:81:12:9D:D5:9A:A5:48:7D:B4:98:C8:48:68:C9:63:BC:74:E9:0E
Authority key identifier: 2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
Certificate issuer: /CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Certificate serial: 01965E03FE2894E4A830221D18A018805694
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
Manifest number: 04DA
Signing time: Tue 22 Apr 2025 15:00:41 +0000
Manifest this update: Tue 22 Apr 2025 15:00:41 +0000
Manifest next update: Wed 23 Apr 2025 15:00:41 +0000
Files and hashes: 1: LF3rfkKW4vu0wB_AZKH2gYlreXk.crl (hash: Gijw894q9NozswgAsdXr978oOzzcWbH5P4pBMetmhWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:03:fe:28:94:e4:a8:30:22:1d:18:a0:18:80:56:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Validity
Not Before: Apr 22 15:00:41 2025 GMT
Not After : Apr 23 15:00:41 2025 GMT
Subject: CN=6c81129dd59aa5487db498c84868c963bc74e90e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c5:4b:35:d5:f1:ea:d9:58:8c:81:40:74:53:
3b:5c:3a:81:3d:c3:4e:cf:ed:06:5d:e6:60:7a:e7:
e5:3e:9b:7b:56:28:87:f8:76:4a:b7:0a:b5:ee:a5:
85:71:15:e5:42:b0:92:15:69:4c:a9:ee:3a:80:00:
b9:25:ce:fd:6e:c8:fc:a6:33:2c:a5:15:8e:2b:82:
c9:2e:df:42:14:b0:24:90:75:2f:88:ef:af:c2:6b:
b5:22:5b:8e:01:db:79:48:b6:d8:85:fc:03:68:2b:
bf:c2:6a:b3:6c:30:52:84:09:4c:1e:4e:54:83:3e:
f3:86:8f:70:31:22:c9:10:eb:f0:61:e9:60:f7:80:
5e:94:85:e2:f3:8d:0d:2e:cf:e6:87:77:1b:6c:18:
37:96:5e:fc:4f:2f:36:cf:58:ea:a0:cf:cb:ed:6d:
86:e4:a4:10:94:6d:44:23:d9:6f:96:8e:4f:40:43:
e1:74:ec:8a:e5:5a:e5:ec:8a:5c:de:dc:98:1e:4d:
69:2d:ae:8c:ca:53:ef:09:ef:83:1e:01:22:b9:7f:
7d:a7:2f:ca:83:29:0f:cd:b2:97:1d:d8:f0:90:c1:
fa:28:65:2c:e6:b6:25:77:7e:51:a3:2d:0b:32:0a:
03:1d:23:41:dc:59:6a:fb:1d:54:7c:bf:10:6f:91:
b2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:81:12:9D:D5:9A:A5:48:7D:B4:98:C8:48:68:C9:63:BC:74:E9:0E
X509v3 Authority Key Identifier:
keyid:2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:97:49:6e:c9:91:93:f4:87:03:b3:cc:e8:99:03:3e:ba:12:
00:82:8a:a6:6e:cf:01:8a:ed:ee:ac:17:e0:34:c2:0e:da:24:
65:13:f2:43:c6:c0:4f:4d:ca:7e:6d:4c:68:da:5a:70:99:46:
03:78:df:02:3f:cc:7c:e7:5a:d0:7f:7d:0f:7b:6a:15:71:1e:
ce:c1:18:09:56:a2:be:f4:6b:48:09:01:00:e8:1f:9e:41:6b:
cf:2d:de:41:0a:74:89:96:78:7d:95:a6:a0:62:83:fd:ae:e6:
bf:e0:bc:f8:b8:5b:7c:a6:b0:1e:a2:70:b7:10:34:d9:c8:4f:
39:55:4b:12:0b:05:6a:a9:a3:e1:c2:ba:5f:23:ea:4f:fe:69:
ac:e7:38:6c:eb:4f:8b:1e:19:6c:d2:17:ba:36:c9:b7:a0:c0:
a6:92:b5:6e:a9:c1:96:89:79:a4:0e:72:e1:b1:9b:90:96:91:
1b:18:82:4f:94:78:5e:28:97:28:34:0b:60:d0:c8:dd:14:b9:
b8:c1:3a:0e:12:c6:34:25:c3:1c:04:0a:89:d0:60:66:f6:55:
31:86:c4:49:d7:a2:85:59:55:34:1d:20:ae:8a:0e:f7:e0:45:
b5:10:59:92:ea:dd:84:08:48:da:88:27:61:78:8b:f9:e5:2c:
80:79:77:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 21:58:57 2025 by rpki-client