Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
File: ltTArxW-ONL8XjD-NFdHXTS3g5o.mft (raw, json)
Hash identifier: sdx3AkhWyYBfplTuCJIP+0SO3T+3z7u9eBBaZiv3ask=
Subject key identifier: 3C:9F:02:5A:00:93:33:FF:82:5E:63:66:A0:37:CA:0C:1E:CB:20:D0
Authority key identifier: 96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A
Certificate issuer: /CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a
Certificate serial: 019611A1CB3AC54DB65E578033B709DE8325
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
Manifest number: 114B
Signing time: Mon 07 Apr 2025 19:02:18 +0000
Manifest this update: Mon 07 Apr 2025 19:02:18 +0000
Manifest next update: Tue 08 Apr 2025 19:02:18 +0000
Files and hashes: 1: ltTArxW-ONL8XjD-NFdHXTS3g5o.crl (hash: c7L9edjhMw6XprIS6GBiPFeIX7wi7XnZ0y0bEpXnODM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:a1:cb:3a:c5:4d:b6:5e:57:80:33:b7:09:de:83:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a
Validity
Not Before: Apr 7 19:02:18 2025 GMT
Not After : Apr 8 19:02:18 2025 GMT
Subject: CN=3c9f025a009333ff825e6366a037ca0c1ecb20d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e7:f0:aa:36:fc:85:dd:60:b4:54:fd:9e:3d:
60:06:f7:bb:7d:31:70:ad:47:cf:ca:5f:b0:bd:57:
40:78:87:9f:08:54:da:7d:65:cd:ee:75:74:a4:2d:
e7:e5:4d:86:55:40:0c:8f:a6:33:17:b5:b4:bc:a4:
2d:7a:74:62:b1:45:68:e5:6a:fe:b9:95:11:26:58:
f0:14:42:6d:39:18:e5:36:2c:6c:ff:ce:e7:98:0c:
e2:3e:71:f3:38:77:be:a2:67:4e:47:46:38:b6:ab:
9f:9d:10:09:68:b8:44:b1:50:be:68:8f:a4:e7:6e:
8a:25:0a:b8:16:e9:62:00:63:17:21:40:70:d4:da:
f8:be:c2:04:c1:5f:82:48:99:b7:94:a2:d2:d4:54:
98:b4:72:e4:39:49:50:55:bf:66:67:d2:37:9e:b0:
c6:6b:85:42:ca:db:57:8a:f6:0e:71:f5:57:4d:8c:
20:94:22:cb:90:aa:8f:61:1b:6e:86:5a:f6:ba:a6:
f7:33:c9:d4:42:04:24:6c:40:02:c0:16:4e:d5:3d:
82:61:cf:90:e1:5f:ea:60:73:8e:5f:12:8a:be:2a:
46:80:8f:20:65:1f:54:e5:36:4c:b2:52:17:19:49:
33:74:f4:f7:66:1f:04:9b:79:1c:8d:81:ae:aa:fe:
3a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:9F:02:5A:00:93:33:FF:82:5E:63:66:A0:37:CA:0C:1E:CB:20:D0
X509v3 Authority Key Identifier:
keyid:96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:43:a2:ae:87:e3:dd:6a:1c:88:ee:c9:20:ec:49:65:0b:33:
4b:30:ed:b9:79:de:a8:a4:73:02:e3:d0:e4:68:58:e6:32:a3:
b6:c1:7c:50:38:b6:5b:70:91:c1:52:a1:2a:04:06:ff:72:b2:
02:46:88:6a:61:85:b9:47:be:6a:3c:82:3d:90:f3:bc:5c:3e:
04:b1:90:10:57:d3:5a:2b:74:24:27:80:a6:46:43:20:31:8d:
41:59:9c:cb:b6:8c:ee:e1:a4:6e:64:5e:9c:60:61:08:39:0f:
85:9c:b9:de:dc:ff:67:7b:8e:e7:78:32:bb:d7:28:26:10:4e:
0a:6e:16:5e:7f:0e:97:c7:39:bf:58:f0:67:e4:b1:b1:37:09:
1b:99:25:6e:58:59:b4:69:03:ea:92:08:b6:98:28:be:3e:c9:
6a:8a:06:00:d4:be:b7:09:3a:37:7b:62:8d:fe:23:89:4d:02:
64:1d:e6:ff:b3:8b:2a:c0:ea:9e:bf:9c:13:3e:3b:ab:0c:b0:
ed:d4:b1:80:8d:10:64:65:2e:60:ce:c0:7a:8b:ca:9a:a9:48:
31:9a:b4:17:bc:34:f9:f6:8c:e3:e6:a0:3b:93:0e:9b:94:5e:
da:33:63:55:d6:14:2e:19:04:8c:83:ca:10:09:cd:e3:74:52:
30:bf:23:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:39:00 2025 by rpki-client