Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
File: Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft (raw, json)
Hash identifier: BFdh3S3xc0EpYW+mXk9UEc6Xhzu6RCZyTM1HSO/2rXU=
Subject key identifier: 12:0A:60:A2:F5:1B:DB:6F:A4:4C:3C:7C:FE:AD:8E:EE:C4:30:67:D0
Authority key identifier: 2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E
Certificate issuer: /CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e
Certificate serial: 01963F8B3F8908BE4712BFD5B6C459CE5425
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
Manifest number: 14F6
Signing time: Wed 16 Apr 2025 17:00:12 +0000
Manifest this update: Wed 16 Apr 2025 17:00:12 +0000
Manifest next update: Thu 17 Apr 2025 17:00:12 +0000
Files and hashes: 1: LDfn0M5v99IHnOQFUNXp12Nf90k.roa (hash: do0pH7tAz4W21wYBRY5jEznU82Zdd3DteyiFEbjbCqA=)
2: Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl (hash: rdvfQFbOyd4MWKmdvka/+WRNQMwHxMjXAkD/3MUOpy0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:8b:3f:89:08:be:47:12:bf:d5:b6:c4:59:ce:54:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e
Validity
Not Before: Apr 16 17:00:12 2025 GMT
Not After : Apr 17 17:00:12 2025 GMT
Subject: CN=120a60a2f51bdb6fa44c3c7cfead8eeec43067d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b0:32:6b:e2:83:47:73:61:81:59:5b:39:d1:
96:30:de:d6:99:07:2c:5a:73:7c:52:bb:c8:0d:58:
ab:03:79:61:50:70:9d:99:ec:59:68:03:8b:73:25:
a2:0f:a3:75:50:41:50:91:38:a0:6c:1e:68:05:42:
cc:4f:af:81:36:70:30:dd:0c:08:d2:c1:60:ae:9c:
7f:2c:96:03:0b:8a:94:71:0d:a7:a7:32:22:ea:7d:
02:a5:b3:96:d8:c4:7d:3a:f4:c9:ae:0c:b1:aa:d7:
3a:ef:02:f1:0d:49:4b:b4:51:26:2a:9e:0a:13:df:
72:5b:1f:aa:49:6a:ba:3f:71:ef:64:4a:a7:55:db:
73:a9:0d:90:8e:f5:69:12:9e:ff:e6:82:fc:40:72:
a7:43:04:d0:ae:0e:bf:c8:59:e8:06:f2:3f:0d:ec:
ae:d0:c8:ed:22:ab:ef:61:20:e0:3e:e9:10:b9:ab:
c4:c1:03:7a:66:47:9d:c7:46:5f:d6:87:d8:e8:71:
1f:21:c2:ce:0f:95:f2:22:98:bc:1c:d9:6c:fc:48:
8e:3a:31:63:ff:46:f7:c2:8b:18:05:21:b8:0d:7a:
c9:44:14:a6:7c:79:e9:25:0c:10:df:93:5d:99:e1:
15:26:f6:23:a5:39:ee:0c:34:7a:6d:42:74:84:8d:
fd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:0A:60:A2:F5:1B:DB:6F:A4:4C:3C:7C:FE:AD:8E:EE:C4:30:67:D0
X509v3 Authority Key Identifier:
keyid:2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:a1:ad:c0:64:fb:6e:28:9f:dc:ad:21:a0:b7:4d:b5:0c:e9:
91:59:cd:93:cc:71:36:c1:ed:d4:58:4a:36:5c:dc:40:06:2b:
51:d0:64:79:56:66:49:1d:99:f8:78:c4:b5:2a:ff:c9:e8:fc:
50:03:9d:f5:da:96:e7:f6:2b:5d:be:ea:98:d5:8f:e8:56:b3:
8b:6c:83:38:43:4c:a7:c6:d2:38:68:1d:b6:80:fc:ab:f5:e5:
b4:cd:87:07:74:73:48:91:e3:6d:bf:78:e5:cf:4b:dd:b4:63:
18:3b:87:e9:89:d6:81:7f:28:c9:d0:22:a9:05:00:c6:c1:91:
f4:f8:e4:ef:a3:fc:a6:3b:6f:6b:7d:72:47:46:d3:e5:be:b1:
58:50:ca:ec:d1:88:93:24:5b:f2:82:1e:ff:7b:c5:28:57:c3:
16:17:cf:f9:a2:26:24:f4:22:ae:7a:c6:b2:3d:1d:44:0c:28:
85:28:1f:14:55:04:74:3d:b5:79:09:e5:1e:78:00:e1:90:d4:
92:65:18:0d:ec:8e:e8:e3:78:85:64:a3:1b:8d:8d:42:92:0c:
33:f3:88:53:56:5f:48:b3:59:16:e1:cc:8c:9f:15:ae:28:fe:
82:0d:03:fc:68:ab:b5:5c:82:89:45:fb:0d:e3:86:7c:9e:96:
c3:a0:5e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:10:24 2025 by rpki-client