Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: LUxdaCgn+ubM4leRZgENYqCSWaI8tqfyZD2HQ6C38cI=
Subject key identifier: 12:92:D5:ED:19:2C:BC:EF:36:05:60:1B:0F:04:A2:F2:9E:4A:1A:FC
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 019511A2F9B5F4B60C5BCA35EA0DEE177837
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 0F44
Signing time: Mon 17 Feb 2025 02:00:48 +0000
Manifest this update: Mon 17 Feb 2025 02:00:48 +0000
Manifest next update: Tue 18 Feb 2025 02:00:48 +0000
Files and hashes: 1: 8PzBSdujNIrE9ZxwXkq7Jh0bBAs.roa (hash: 4Awpnumk+tPfHQxPVq+VsOA860hCJdP+GfTQ/2K+zcA=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: YeTg0H0IPbgv/PYp3NOXAikROsGob7XtqwTr+cWsVSI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:f9:b5:f4:b6:0c:5b:ca:35:ea:0d:ee:17:78:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: Feb 17 02:00:48 2025 GMT
Not After : Feb 18 02:00:48 2025 GMT
Subject: CN=1292d5ed192cbcef3605601b0f04a2f29e4a1afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e3:75:70:a0:ac:76:db:11:53:6f:b3:ed:02:
a9:9b:c8:0d:59:38:56:15:82:7d:67:51:2d:a5:f4:
46:f9:e8:df:f6:be:e7:7d:78:25:34:e9:74:be:79:
8b:8f:93:44:7c:e0:55:94:50:b5:81:5b:65:6b:5d:
80:fd:82:3d:1e:12:63:a7:c0:46:e1:20:e4:bb:60:
e4:54:70:5e:14:7f:0d:0f:a1:86:16:a8:71:71:3d:
8e:f6:a1:b6:cb:c4:e4:c8:32:fd:d2:e9:37:46:19:
6e:47:55:6a:9f:1a:5a:6e:05:d3:87:39:b0:92:f2:
d8:f5:34:22:14:8c:c0:0e:9b:0e:b0:c9:0a:7c:f4:
42:8c:44:7f:dd:a1:96:11:50:64:ab:b5:aa:a8:a1:
d1:41:8b:30:25:e6:f2:dc:4f:bd:26:db:b1:94:35:
5b:f8:5c:8f:e8:0a:99:ee:72:00:7d:87:47:58:70:
12:55:06:38:be:77:14:04:6b:99:1f:0c:1b:60:31:
90:48:6a:6b:a7:9a:5e:ef:5b:de:b1:63:5b:00:c1:
d9:e0:74:1f:55:96:f2:93:75:d3:70:0e:82:c4:bd:
dc:3e:b9:5c:a0:9d:3a:84:02:02:c8:e3:58:7f:80:
ed:57:61:a6:28:11:f3:5f:22:6e:98:32:f8:2b:45:
a2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:92:D5:ED:19:2C:BC:EF:36:05:60:1B:0F:04:A2:F2:9E:4A:1A:FC
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:8c:58:b9:bc:66:dc:fe:38:5b:6c:aa:9c:9c:64:86:f1:36:
be:72:2a:07:31:d6:e4:64:bb:5c:69:83:f5:ca:81:2a:b8:10:
60:47:94:0e:87:d4:55:86:69:f6:5d:3d:59:3e:e4:f8:d6:46:
06:ee:09:bd:e3:27:5e:9a:da:02:5d:96:79:69:b7:61:73:cc:
61:30:ec:0e:21:50:77:1c:a3:f4:ca:0c:75:e0:af:70:09:b8:
ad:ff:0c:1a:54:f1:1a:3b:f9:b8:49:82:c1:07:f7:ff:cd:d1:
4e:f7:ef:a2:47:4c:cd:cd:c0:ce:7d:24:8e:13:27:fa:8d:1d:
65:62:64:18:50:8e:83:88:7f:41:25:da:e0:69:51:a1:25:75:
00:02:c2:d5:37:02:09:0a:c1:e6:9d:8d:47:3c:dc:e6:d5:a0:
9a:a0:9e:60:49:12:9b:32:43:a1:55:a6:06:68:24:82:ab:80:
6d:9d:70:fa:68:be:29:9b:cd:cb:d3:0f:20:d9:2e:62:3e:ac:
fe:bb:de:de:26:5b:be:37:90:14:7c:65:b2:1b:67:3d:00:25:
a1:61:70:9d:26:25:4a:10:00:62:e2:cf:70:72:16:02:15:ff:
61:aa:5f:22:87:47:bf:41:35:2c:cc:b1:cd:a1:4c:87:2a:81:
75:00:6e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:04 2025 by rpki-client