Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft
File: LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft (raw, json)
Hash identifier: lgQDJQSYX+DeoquYYt439XqVKAXNjdY6RIf+X6UIfpg=
Subject key identifier: 14:6D:41:61:5C:A0:12:E8:B3:29:9C:5A:CC:EA:0D:06:6B:F4:45:BB
Authority key identifier: 2F:32:52:07:D5:CE:E0:EC:EA:99:E4:70:24:53:40:7B:56:4C:39:CA
Certificate issuer: /CN=2f325207d5cee0ecea99e4702453407b564c39ca
Certificate serial: 019510C73DF36302602CC62F17870F1A12A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft
Manifest number: 1452
Signing time: Sun 16 Feb 2025 22:00:47 +0000
Manifest this update: Sun 16 Feb 2025 22:00:47 +0000
Manifest next update: Mon 17 Feb 2025 22:00:47 +0000
Files and hashes: 1: LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl (hash: AM8NOEDxsxk4PZKQ7GVE1zZMNn/x2M2jJor3ooDUFec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft
rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:3d:f3:63:02:60:2c:c6:2f:17:87:0f:1a:12:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f325207d5cee0ecea99e4702453407b564c39ca
Validity
Not Before: Feb 16 22:00:47 2025 GMT
Not After : Feb 17 22:00:47 2025 GMT
Subject: CN=146d41615ca012e8b3299c5accea0d066bf445bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a7:17:de:6e:4e:eb:4f:1f:6c:f1:de:9d:36:
b0:41:6b:f1:46:b4:fc:21:5c:71:da:28:5f:c3:a8:
f8:9c:b8:5d:5f:d6:70:33:af:ad:e0:5d:ec:23:c3:
4a:ac:af:ec:98:39:a9:e4:75:84:9b:ec:4b:4d:c6:
f2:17:6a:22:2c:d3:ff:30:02:e3:d9:2b:2c:4c:20:
2a:db:6f:91:9b:32:1d:4c:68:08:29:7b:bc:99:44:
b4:eb:8a:e1:57:14:90:12:c8:2c:52:2e:31:b3:87:
ae:e5:2f:b0:03:2c:d2:44:9d:3f:d8:b0:4e:1a:14:
80:62:75:f0:d6:45:ff:7a:50:de:0f:4c:51:d6:d3:
10:23:b9:6d:78:02:c1:93:22:a5:c0:9e:49:f9:30:
a2:e0:15:d1:42:7b:63:fc:d4:d4:b0:a1:0c:15:8f:
54:4c:f7:7f:73:96:39:54:ef:7a:89:a8:54:1f:0a:
ab:43:bd:4d:69:5d:67:a4:43:2c:d4:8f:22:2c:f4:
65:36:3c:f1:7f:a6:e3:69:ad:74:a4:d0:1e:81:3b:
43:a3:2b:1a:63:b7:4c:80:9d:4f:1f:05:2d:7b:2a:
80:66:f6:fb:fa:f4:e1:46:98:08:e4:f6:89:1b:f7:
f0:96:0d:54:97:b7:9e:cb:16:0e:74:a2:bb:ff:dc:
1f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6D:41:61:5C:A0:12:E8:B3:29:9C:5A:CC:EA:0D:06:6B:F4:45:BB
X509v3 Authority Key Identifier:
keyid:2F:32:52:07:D5:CE:E0:EC:EA:99:E4:70:24:53:40:7B:56:4C:39:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:39:16:24:8a:70:66:ce:24:be:c6:6d:14:5c:3f:9c:c1:af:
b6:80:d2:cf:1e:79:68:a9:ae:2a:ec:de:9d:73:ef:39:cb:e1:
c4:48:d0:1a:a6:00:ab:22:06:8d:a2:a6:07:b6:49:40:47:02:
7b:69:ac:b7:2c:74:2e:6f:85:68:1c:c4:78:86:85:a6:0e:b7:
ea:28:fe:b3:c9:3b:24:79:78:ec:87:69:e5:df:35:25:12:91:
43:b0:58:40:c1:7b:3c:a1:b0:32:2b:10:6f:7e:76:c5:42:15:
00:2a:fb:1f:e0:f0:31:f8:bd:6e:24:db:96:db:8d:79:6f:a6:
f6:af:94:55:f2:82:8c:85:95:42:18:b0:40:e0:b4:43:0c:c9:
70:14:dd:87:bc:c0:9d:8e:eb:75:ab:2f:3e:9a:95:fc:dd:b4:
ec:02:55:c8:c4:2e:17:29:aa:64:d7:c3:05:16:29:21:96:0c:
ed:c5:19:7f:1a:b5:4b:aa:df:53:cd:8a:d6:68:61:c4:ae:c9:
41:a6:1d:75:8c:df:20:1d:91:1a:c2:92:c2:98:ff:06:fd:df:
0d:06:34:b2:5e:3c:d2:54:52:1f:d4:80:a4:f3:2b:8b:e0:8c:
55:ca:d0:ec:83:f0:54:96:a7:db:20:6e:71:ee:35:be:f4:56:
0d:2c:bd:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:18 2025 by rpki-client