Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
File: ltTArxW-ONL8XjD-NFdHXTS3g5o.mft (raw, json)
Hash identifier: 2cLKdUJBI6IHq8JX0qDIMtzbKVvD2lHg6S/u/kSpcNA=
Subject key identifier: E6:66:0B:CE:3F:58:41:4F:46:61:B2:31:DB:13:4D:61:4F:B8:B2:A8
Authority key identifier: 96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A
Certificate issuer: /CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a
Certificate serial: 01974A7B022D1D4959FB44136B7790FA6C1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
Manifest number: 11ED
Signing time: Sat 07 Jun 2025 13:01:04 +0000
Manifest this update: Sat 07 Jun 2025 13:01:04 +0000
Manifest next update: Sun 08 Jun 2025 13:01:04 +0000
Files and hashes: 1: ltTArxW-ONL8XjD-NFdHXTS3g5o.crl (hash: J1FnBZgXjp7MHlrz1v3RbcsH1SOv/qzxrvxZqCHWdnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:02:2d:1d:49:59:fb:44:13:6b:77:90:fa:6c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a
Validity
Not Before: Jun 7 13:01:04 2025 GMT
Not After : Jun 8 13:01:04 2025 GMT
Subject: CN=e6660bce3f58414f4661b231db134d614fb8b2a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:17:aa:76:35:ed:1e:00:51:26:93:bf:37:fa:
20:4d:00:c7:96:38:50:62:7c:1a:e7:22:d2:38:95:
d5:79:35:bc:1f:93:ed:4a:6a:a4:e7:24:f6:c6:67:
a7:f2:c5:3a:32:7a:72:2c:18:c3:23:1f:7d:98:17:
ff:8d:41:a1:05:b2:66:7f:35:70:de:b4:d0:fd:10:
7e:8c:70:89:66:e9:65:d3:44:69:18:3e:bd:ae:43:
5b:a6:47:9e:9a:08:ad:a6:59:26:c5:0e:9a:84:8e:
66:0d:bd:54:f3:ba:48:a2:49:94:ba:6d:a7:9e:e0:
98:ae:4e:83:e3:2b:2f:fe:34:c8:4f:51:d2:33:53:
54:34:d5:c7:55:b8:65:93:e2:31:62:a7:b1:5f:d5:
e1:95:8a:9f:67:76:d8:78:62:90:e7:5d:de:61:5f:
11:9a:3b:43:f2:21:45:03:6a:5b:f4:af:2a:6b:2b:
31:04:90:20:36:b7:43:00:a4:bc:ba:90:0d:ca:c2:
4f:67:57:19:22:50:5a:78:49:1e:e7:e5:83:66:e4:
42:7b:1f:f0:67:59:29:72:cf:f7:13:f3:06:ab:7c:
77:e1:1c:b5:ab:ae:bf:78:d7:8e:22:1c:44:8a:06:
07:e1:22:8c:be:7f:6a:09:04:c9:93:11:f7:cb:e9:
5c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:66:0B:CE:3F:58:41:4F:46:61:B2:31:DB:13:4D:61:4F:B8:B2:A8
X509v3 Authority Key Identifier:
keyid:96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:7c:3c:da:6f:d2:c4:db:76:02:02:4c:ca:20:02:39:9c:01:
fc:af:c8:72:13:56:8e:2e:fe:91:59:7b:b9:ef:60:d8:d1:e1:
04:2f:c4:78:72:34:b7:ae:47:84:75:62:78:1c:d0:08:07:4e:
f8:8e:a9:67:6b:56:43:52:48:5c:80:0a:7a:61:dc:8c:c6:44:
6c:36:c9:27:3e:ef:ec:fe:6c:46:23:0f:41:2e:eb:64:54:4d:
b5:3c:ee:e9:72:8f:c3:98:3a:18:2c:76:a8:3a:9c:4b:25:7b:
e5:33:1b:f0:e1:8a:68:9b:49:9c:4b:63:0b:6f:93:fb:b3:aa:
24:8c:38:3c:91:e8:b6:a2:e0:9b:fe:e3:75:cf:9e:c6:ee:52:
81:84:5a:d3:ff:00:a8:f8:89:16:10:35:db:2c:d1:c7:4b:e9:
a7:d8:13:f5:9b:ac:b9:0d:04:c4:fd:4b:f3:77:c8:40:fd:91:
c6:c6:e5:f3:61:b4:59:fa:3f:10:e4:27:50:a7:f0:70:97:4f:
c3:ee:09:0e:b8:84:a2:bf:a8:ac:e0:f7:25:ed:57:96:15:f3:
00:de:ae:a7:8b:b2:6c:a7:94:ea:44:7e:1e:4b:13:01:dc:6f:
25:8a:ec:16:c0:f5:f9:3d:7e:35:2f:4e:bf:c6:0c:7d:bc:18:
f2:61:1b:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:03:17 2025 by rpki-client