Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
File: lvMFpB83TbAVgTN3CNHHnr6nlxw.mft (raw, json)
Hash identifier: 1094pRIh/LKWO4rD/T/KD4b1/b5m2H9RnijQO8N0jyI=
Subject key identifier: 02:18:0E:1F:76:51:5F:F6:38:A1:CB:18:7B:97:85:C3:6F:A8:AF:F3
Authority key identifier: 96:F3:05:A4:1F:37:4D:B0:15:81:33:77:08:D1:C7:9E:BE:A7:97:1C
Certificate issuer: /CN=96f305a41f374db01581337708d1c79ebea7971c
Certificate serial: 019653800D77B0650FEE45EBDDAD1341FCDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
Manifest number: 037F
Signing time: Sun 20 Apr 2025 14:00:22 +0000
Manifest this update: Sun 20 Apr 2025 14:00:22 +0000
Manifest next update: Mon 21 Apr 2025 14:00:22 +0000
Files and hashes: 1: lvMFpB83TbAVgTN3CNHHnr6nlxw.crl (hash: HsbnesjGgGfCU1liVkQcSuKWAx/NWoK8TlE5XaHvO3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:80:0d:77:b0:65:0f:ee:45:eb:dd:ad:13:41:fc:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96f305a41f374db01581337708d1c79ebea7971c
Validity
Not Before: Apr 20 14:00:22 2025 GMT
Not After : Apr 21 14:00:22 2025 GMT
Subject: CN=02180e1f76515ff638a1cb187b9785c36fa8aff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e0:e9:97:e7:d7:7b:f3:62:89:87:02:2b:eb:
2b:64:ad:6e:a8:54:f9:8e:ae:f9:6a:43:a1:b6:5b:
9e:c8:d5:70:5a:96:e8:eb:0b:65:b9:09:ab:b6:f5:
c9:39:55:66:71:c7:9e:77:8f:12:21:e2:83:4d:d4:
1d:f3:4d:04:4f:f0:0b:5c:a9:02:33:cc:8b:2b:41:
16:fb:9e:d0:80:01:d3:91:bb:3b:a9:13:aa:d9:94:
1e:ff:40:d0:84:33:7f:60:0c:87:4d:f0:47:77:f8:
f8:83:6d:ea:c8:93:1b:3e:6d:2e:62:20:7a:6a:1c:
e3:08:11:8d:fb:fa:8c:30:49:1f:29:31:59:d1:95:
1a:d9:6d:a0:1b:43:06:74:fe:52:4c:7d:cb:88:a1:
54:18:95:7c:08:de:8b:4f:79:84:a9:0b:89:79:7d:
3a:f5:92:2f:ba:33:9f:42:30:d4:90:97:f6:68:7d:
8b:98:4f:9c:91:b9:79:59:1f:c2:b4:03:96:ce:1d:
15:5e:01:4c:72:55:08:56:ac:08:3e:3b:46:e7:89:
bc:ab:7f:4d:07:22:38:e9:f3:cf:d2:72:d6:aa:5a:
d0:1d:96:35:2a:69:5a:d5:2a:fa:34:85:e6:23:9f:
15:02:df:40:78:c5:a0:b4:07:62:64:d6:e4:ad:8f:
ad:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:18:0E:1F:76:51:5F:F6:38:A1:CB:18:7B:97:85:C3:6F:A8:AF:F3
X509v3 Authority Key Identifier:
keyid:96:F3:05:A4:1F:37:4D:B0:15:81:33:77:08:D1:C7:9E:BE:A7:97:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:46:ce:f0:bc:45:61:74:b8:25:3d:17:c1:e7:70:a0:18:c6:
d1:48:59:b6:e5:d4:63:1d:18:cd:bd:59:a9:aa:b2:80:41:e6:
3b:c4:b1:9d:c1:ee:58:e3:b0:56:53:4c:8c:13:3e:30:90:53:
65:2c:42:07:37:60:c7:35:6f:af:ab:10:68:34:87:da:7a:33:
5f:74:43:05:32:82:ff:bb:66:27:94:9d:44:f5:db:98:fb:05:
c1:b5:5f:13:55:b7:27:79:29:ca:e4:ea:f1:01:65:06:e1:02:
bb:82:bd:b3:bd:ce:b5:55:83:de:a4:e6:fb:72:40:1c:ad:44:
f9:7f:1f:ca:77:4f:8f:21:cc:fe:8e:60:e3:5b:6b:d3:44:e4:
79:cd:67:9b:8f:e3:fe:e2:4c:43:01:c4:a7:2d:c1:7e:2f:a6:
d6:59:33:2e:b5:83:9e:57:50:5d:16:e3:c4:3c:60:66:da:d8:
84:bb:5f:bc:b8:15:b8:fe:74:8f:07:34:f4:72:6f:d1:86:cc:
89:1c:d1:9a:4d:bc:9d:d2:6e:eb:20:1d:5d:59:03:1a:ea:17:
d2:32:1c:fa:04:55:39:a3:87:07:51:91:f7:c1:1d:a6:a6:ef:
57:41:4f:42:7e:c9:b8:29:31:9d:44:72:15:a3:72:65:5e:d7:
ab:5f:2b:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:39:45 2025 by rpki-client