Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft
File: LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft (raw, json)
Hash identifier: z3q4MDqIwJ5anMVLGBzzOn/bdLxnkml1+4aDN2BORCg=
Subject key identifier: 86:9B:5F:F5:98:37:1C:55:40:27:C6:41:B4:0E:85:8E:58:4D:30:1A
Authority key identifier: 2C:98:22:00:8D:9C:C7:01:2D:60:30:42:9B:28:D8:58:DB:BA:CA:43
Certificate issuer: /CN=2c9822008d9cc7012d6030429b28d858dbbaca43
Certificate serial: 01958C60BF55B03E96EF2E3F4B3ADBC2D9AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft
Manifest number: 0BF6
Signing time: Wed 12 Mar 2025 22:01:45 +0000
Manifest this update: Wed 12 Mar 2025 22:01:45 +0000
Manifest next update: Thu 13 Mar 2025 22:01:45 +0000
Files and hashes: 1: LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl (hash: cYRN9uOK9KGpS1rCo4kGrXgYOWiIzev0LsqYPg0jQZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft
rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:60:bf:55:b0:3e:96:ef:2e:3f:4b:3a:db:c2:d9:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c9822008d9cc7012d6030429b28d858dbbaca43
Validity
Not Before: Mar 12 22:01:45 2025 GMT
Not After : Mar 13 22:01:45 2025 GMT
Subject: CN=869b5ff598371c554027c641b40e858e584d301a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ba:39:b0:31:13:95:5c:85:92:59:ab:fe:4d:
b7:0b:a2:74:cc:ce:41:ce:d4:cd:96:9f:b5:d6:5b:
48:51:7b:15:92:3b:9e:3a:27:60:41:01:19:49:58:
90:b9:2a:a7:6c:84:f2:26:90:cb:14:a0:4c:30:e5:
c3:34:ae:60:c1:1b:ff:a7:4e:27:da:d0:cf:39:6a:
06:03:cf:65:a5:c5:aa:35:cd:03:9b:5b:89:34:89:
21:1a:b2:b3:fd:d9:a3:e2:19:f5:b0:90:98:dd:4a:
b5:d7:aa:bd:b6:4c:3a:2a:79:f3:b2:8a:d5:0a:a0:
f4:45:fd:bb:27:06:6b:15:73:3f:d7:2e:03:d3:4f:
3b:ac:cb:ac:3c:b3:f7:43:82:5b:b7:9b:de:7b:41:
6d:4b:5f:cf:30:e3:56:d9:c5:d2:fd:02:ab:4e:91:
81:a7:da:ac:bf:f5:08:5d:11:c5:08:09:c1:6f:24:
a8:93:77:af:34:26:34:65:59:bd:6f:5e:34:13:61:
8f:12:a8:6b:90:87:74:18:3b:a5:98:10:4d:81:dc:
73:26:2d:da:1e:23:84:5b:69:b7:3c:e3:43:79:c3:
40:fb:38:ed:0a:cf:7d:6d:58:0f:db:ed:85:ba:2e:
c8:e1:85:ad:6d:a2:9c:11:ed:f2:56:7a:b9:42:f5:
31:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:9B:5F:F5:98:37:1C:55:40:27:C6:41:B4:0E:85:8E:58:4D:30:1A
X509v3 Authority Key Identifier:
keyid:2C:98:22:00:8D:9C:C7:01:2D:60:30:42:9B:28:D8:58:DB:BA:CA:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJgiAI2cxwEtYDBCmyjYWNu6ykM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/50ac12-fd93-4939-a2ef-41ca2d3aae71/1/LJgiAI2cxwEtYDBCmyjYWNu6ykM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:cf:67:b1:17:80:a8:e8:4b:97:26:95:24:27:d3:b8:cd:00:
5c:15:f7:cf:d3:1d:8f:f0:e2:ee:70:70:2c:da:0e:fd:45:5e:
3b:67:65:c6:dd:3e:15:ac:7d:f9:85:df:fb:ac:9c:58:c7:a8:
20:2e:01:e5:22:bb:cf:ce:19:7f:41:52:58:fc:fd:f5:d5:7c:
0f:d2:44:2a:52:d2:45:08:52:80:10:41:9c:9e:b5:7a:b1:ab:
ae:96:77:10:8f:66:9f:31:e9:3f:75:54:eb:84:6b:7b:6d:e3:
c1:d3:b9:96:a7:13:78:37:bd:e1:a5:20:88:f4:dd:f9:f7:b3:
64:3e:56:04:01:ec:e3:57:71:5f:a2:28:65:de:65:75:1c:25:
81:1c:6d:3e:9f:d7:cf:f3:65:98:1c:60:b9:25:a3:9d:28:2d:
fa:7b:73:f4:d3:f7:d0:82:b4:4e:76:0b:13:81:8c:e4:a8:a9:
ea:fe:9b:c5:04:75:0f:f0:8a:e3:e7:5e:33:f0:81:e9:76:4e:
1b:c7:47:29:d0:ee:15:21:9c:0b:d3:47:00:a3:01:12:93:c8:
c7:5b:b7:a8:da:d4:72:ea:20:f0:aa:2c:1e:57:b4:cb:dd:dd:
63:37:ce:39:ad:c0:6f:79:60:55:f0:94:28:ec:d2:07:7d:e3:
34:d3:3d:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWMYL9VsD6W7y4/SzrbwtmqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjOTgyMjAwOGQ5Y2M3MDEyZDYwMzA0MjliMjhkODU4ZGJi
YWNhNDMwHhcNMjUwMzEyMjIwMTQ1WhcNMjUwMzEzMjIwMTQ1WjAzMTEwLwYDVQQD
Eyg4NjliNWZmNTk4MzcxYzU1NDAyN2M2NDFiNDBlODU4ZTU4NGQzMDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArro5sDETlVyFklmr/k23C6J0zM5B
ztTNlp+11ltIUXsVkjueOidgQQEZSViQuSqnbITyJpDLFKBMMOXDNK5gwRv/p04n
2tDPOWoGA89lpcWqNc0Dm1uJNIkhGrKz/dmj4hn1sJCY3Uq116q9tkw6KnnzsorV
CqD0Rf27JwZrFXM/1y4D0087rMusPLP3Q4Jbt5vee0FtS1/PMONW2cXS/QKrTpGB
p9qsv/UIXRHFCAnBbySok3evNCY0ZVm9b140E2GPEqhrkId0GDulmBBNgdxzJi3a
HiOEW2m3PONDecNA+zjtCs99bVgP2+2Fui7I4YWtbaKcEe3yVnq5QvUxUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIabX/WYNxxVQCfGQbQOhY5YTTAaMB8GA1UdIwQY
MBaAFCyYIgCNnMcBLWAwQpso2FjbuspDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi81MGFjMTItZmQ5My00OTM5LWEyZWYt
NDFjYTJkM2FhZTcxLzEvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi81MGFjMTItZmQ5My00OTM5LWEyZWYtNDFjYTJkM2FhZTcx
LzEvTEpnaUFJMmN4d0V0WURCQ215allXTnU2eWtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATc9nsReA
qOhLlyaVJCfTuM0AXBX3z9Mdj/Di7nBwLNoO/UVeO2dlxt0+Fax9+YXf+6ycWMeo
IC4B5SK7z84Zf0FSWPz99dV8D9JEKlLSRQhSgBBBnJ61erGrrpZ3EI9mnzHpP3VU
64Rre23jwdO5lqcTeDe94aUgiPTd+fezZD5WBAHs41dxX6IoZd5ldRwlgRxtPp/X
z/NlmBxguSWjnSgt+ntz9NP30IK0TnYLE4GM5Kip6v6bxQR1D/CK4+deM/CB6XZO
G8dHKdDuFSGcC9NHAKMBEpPIx1u3qNrUcuog8KosHle0y93dYzfOOa3Ab3lgVfCU
KOzSB33jNNM9ZQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:53:37 2025 by rpki-client