Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
File: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft (raw, json)
Hash identifier: 89LnKG7mEDzc2ZBp9mHoLQnP5So9KZWErVpAbn63nVI=
Subject key identifier: 06:9E:42:F5:CD:65:E8:A6:8C:91:2F:99:88:9C:1A:BD:53:9E:AF:D4
Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Certificate serial: 019654C9DE762E8581B35A4743C3071E547B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
Manifest number: 05E7
Signing time: Sun 20 Apr 2025 20:00:37 +0000
Manifest this update: Sun 20 Apr 2025 20:00:37 +0000
Manifest next update: Mon 21 Apr 2025 20:00:37 +0000
Files and hashes: 1: cCGgeXQG7w7JJ0VVtoCaqK0Nuk0.roa (hash: OWS86sPN3Xs5u+J3GeHiIwJ0UACEogG9zbUxH/qhnWU=)
2: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl (hash: wV3CBRFwF87LOqruXSMwwqHURUMpd0EYb14Ze01j5jk=)
3: x4XI86xuT3wsfzGO7m_2JB-s4p4.roa (hash: Dt7gE1TI/UXgmAj9V+d2Jv58edUR433oJyH6DVwQHcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:de:76:2e:85:81:b3:5a:47:43:c3:07:1e:54:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Validity
Not Before: Apr 20 20:00:37 2025 GMT
Not After : Apr 21 20:00:37 2025 GMT
Subject: CN=069e42f5cd65e8a68c912f99889c1abd539eafd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:62:da:bf:64:58:c0:f3:42:53:58:c0:c3:5c:
d8:f1:e2:4e:0f:1c:b6:7a:7d:dd:3f:f0:e2:1f:80:
72:6f:e0:e2:16:99:ad:e1:93:bb:e4:b0:a7:03:5c:
04:5a:aa:ca:db:ab:c8:4d:2e:8f:89:b8:ef:7c:bc:
be:f8:3f:56:b1:e5:43:d4:ff:a7:48:87:70:27:cf:
f6:f5:bd:7a:ac:67:49:f3:88:1b:fa:01:53:a9:28:
74:5f:2b:1c:4c:11:8c:e4:9e:93:a8:3a:44:e4:8b:
3d:d4:f7:5a:83:da:11:33:c0:09:99:5e:8f:0a:18:
c7:bb:49:6c:98:37:04:37:47:dc:25:5e:a7:e4:f9:
dc:9a:21:2e:7e:d0:e3:6b:34:f5:2a:4d:07:d0:45:
9c:69:6a:b3:ed:8a:79:fc:9e:79:92:2b:c4:41:6b:
d1:4e:b1:28:09:3c:22:19:3b:e8:9e:9d:df:4b:7a:
97:10:ff:db:1c:04:fd:9f:dd:6a:00:1d:ab:67:69:
11:fa:62:4e:c3:fb:e1:de:07:c1:85:c7:51:f8:49:
d7:8a:d1:36:59:9e:82:f1:44:12:8a:e1:be:2a:44:
f8:82:b9:63:66:06:51:ad:b9:33:37:aa:5c:9b:5b:
64:1f:df:2d:bf:14:78:3c:93:ac:4a:21:52:27:13:
20:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:9E:42:F5:CD:65:E8:A6:8C:91:2F:99:88:9C:1A:BD:53:9E:AF:D4
X509v3 Authority Key Identifier:
keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:bd:db:08:51:0d:76:c8:7d:a7:56:cd:a8:26:b5:f0:59:72:
52:47:5e:60:70:83:c2:c2:f7:74:eb:01:07:93:67:e6:19:b1:
f2:5a:ca:46:91:7d:5c:3e:6b:61:2d:a6:33:ec:50:e4:45:1a:
a9:d3:df:26:df:13:be:06:ab:37:83:2b:67:02:27:1d:e8:63:
2f:f5:3c:31:a5:b7:22:f7:bf:06:5a:7f:5d:a5:04:22:3b:02:
40:62:e7:97:32:a9:b9:81:24:fe:7b:b4:9b:8e:49:96:1c:ee:
65:3d:ef:b2:47:a2:b5:cd:d0:c5:d3:59:26:23:69:38:4c:7f:
c2:de:f5:1b:86:c3:de:1c:9e:95:b6:06:06:1f:3d:20:89:c4:
a9:f3:13:40:db:43:6a:3e:63:d2:d4:2f:79:c2:45:bf:0f:0e:
00:af:4a:b7:28:47:22:4b:65:17:d2:76:87:3c:ab:09:66:81:
b7:46:e8:82:f1:5e:36:42:2b:b8:95:60:72:5b:bd:8f:c8:4a:
0c:54:9e:a0:d1:34:ce:ea:8b:73:ac:9a:91:39:96:d2:4c:df:
38:05:f8:5d:31:11:37:25:17:67:0a:dc:02:83:d1:7c:24:c7:
24:8a:71:ae:cd:1c:88:68:e5:91:db:7b:20:15:74:48:d5:4b:
fd:15:14:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:30:33 2025 by rpki-client