Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft
File: lcGSBnFsXHnTW_FZJNszI6TsGMg.mft (raw, json)
Hash identifier: Ov/QsrmceAUAl3tfEQec2RISz0UZwm4zFlJBV9Mk7Po=
Subject key identifier: E1:9E:B2:EB:23:84:01:37:73:4D:0E:4D:FE:76:08:7A:DB:3F:BD:F5
Authority key identifier: 95:C1:92:06:71:6C:5C:79:D3:5B:F1:59:24:DB:33:23:A4:EC:18:C8
Certificate issuer: /CN=95c19206716c5c79d35bf15924db3323a4ec18c8
Certificate serial: 019655DC97AD52298AE0F7167874280FEBB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lcGSBnFsXHnTW_FZJNszI6TsGMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft
Manifest number: 10CE
Signing time: Mon 21 Apr 2025 01:00:42 +0000
Manifest this update: Mon 21 Apr 2025 01:00:42 +0000
Manifest next update: Tue 22 Apr 2025 01:00:42 +0000
Files and hashes: 1: lcGSBnFsXHnTW_FZJNszI6TsGMg.crl (hash: gB9WUuMvbiQbGnRa5fZojVe8l3i0oJP2PcikGXbnVIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lcGSBnFsXHnTW_FZJNszI6TsGMg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dc:97:ad:52:29:8a:e0:f7:16:78:74:28:0f:eb:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95c19206716c5c79d35bf15924db3323a4ec18c8
Validity
Not Before: Apr 21 01:00:42 2025 GMT
Not After : Apr 22 01:00:42 2025 GMT
Subject: CN=e19eb2eb23840137734d0e4dfe76087adb3fbdf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:09:fb:2f:7e:c8:68:ce:09:3e:b2:32:2b:d3:
69:97:20:d8:5b:0d:c9:17:be:6a:22:ba:27:4f:6c:
09:cc:5f:3b:cf:05:8f:28:ef:7b:c2:45:f1:92:5c:
e0:23:19:0e:fc:07:71:c2:83:1b:a9:91:a5:c3:94:
ad:3d:08:9f:36:5e:cd:0e:6e:11:6f:9a:ca:24:68:
ad:b2:fc:45:ca:7b:6b:b3:29:0e:3b:9a:02:3c:3d:
c2:70:eb:ef:9e:50:ab:41:a1:70:16:3e:08:5b:d2:
03:81:9d:b8:d9:db:35:f6:0e:64:58:71:e3:94:12:
d1:91:98:26:81:42:62:20:ba:bd:54:a3:9b:86:31:
f9:14:e5:af:b2:e5:6a:14:93:29:8c:09:ae:bb:81:
63:39:7d:40:34:a0:0b:89:0c:3c:af:fc:ba:c3:eb:
70:02:5c:b2:58:65:4f:85:25:02:ad:be:65:dc:3c:
25:78:f6:6e:07:0a:63:99:3b:82:ea:da:e8:bb:50:
9e:47:ce:d6:c3:84:62:2a:31:f2:cf:ca:b2:c3:84:
23:39:ce:a4:f3:06:4e:ad:f1:9f:6a:e7:36:ad:17:
97:11:88:72:10:0f:50:c3:0f:76:7a:c9:82:52:96:
c6:e1:c9:c2:8f:4c:9c:93:2b:a1:20:d6:5f:dd:24:
71:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:9E:B2:EB:23:84:01:37:73:4D:0E:4D:FE:76:08:7A:DB:3F:BD:F5
X509v3 Authority Key Identifier:
keyid:95:C1:92:06:71:6C:5C:79:D3:5B:F1:59:24:DB:33:23:A4:EC:18:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lcGSBnFsXHnTW_FZJNszI6TsGMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:5b:9d:80:19:4f:4a:67:cf:03:be:da:e7:a9:6d:8e:2b:a7:
38:70:7e:16:13:d2:33:e4:42:39:14:88:56:7e:82:49:33:9e:
65:8b:45:8e:06:8e:5e:4c:ee:45:da:8d:fd:49:ea:13:ef:72:
ba:51:2c:2a:ba:e3:82:67:6c:c0:37:a1:d7:52:07:97:07:2c:
b1:a5:f0:5a:2f:54:ab:ea:fb:12:68:b8:f2:2d:49:9c:83:f0:
52:a7:64:92:01:6c:88:2e:ee:45:9e:5d:43:d3:21:2f:91:8e:
31:cd:a1:ca:e4:8d:c4:a5:d7:16:78:7a:7f:91:00:27:88:2f:
57:c2:88:c7:22:0e:80:e3:86:d7:4c:b1:7e:c0:47:06:6b:a9:
b1:20:08:8e:d4:f2:ab:65:ae:0b:62:32:5c:29:c5:36:4a:d2:
42:e1:93:66:ac:35:4a:50:dd:49:be:dc:44:77:34:d6:65:fa:
f7:e0:58:0a:a8:5d:4f:11:c0:eb:ec:d7:aa:09:af:f4:84:4b:
1e:87:2c:a3:7e:25:9c:48:27:a0:a1:fb:64:8c:24:92:ab:e3:
0b:c8:b3:d4:17:f2:ee:5e:d2:11:6e:68:7e:22:1e:e4:ab:c8:
b2:62:e7:4d:b6:d6:0d:48:43:75:4e:4f:40:4f:68:c0:26:2c:
b3:40:14:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZV3JetUimK4PcWeHQoD+u0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1YzE5MjA2NzE2YzVjNzlkMzViZjE1OTI0ZGIzMzIzYTRl
YzE4YzgwHhcNMjUwNDIxMDEwMDQyWhcNMjUwNDIyMDEwMDQyWjAzMTEwLwYDVQQD
EyhlMTllYjJlYjIzODQwMTM3NzM0ZDBlNGRmZTc2MDg3YWRiM2ZiZGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1An7L37IaM4JPrIyK9NplyDYWw3J
F75qIronT2wJzF87zwWPKO97wkXxklzgIxkO/AdxwoMbqZGlw5StPQifNl7NDm4R
b5rKJGitsvxFyntrsykOO5oCPD3CcOvvnlCrQaFwFj4IW9IDgZ242ds19g5kWHHj
lBLRkZgmgUJiILq9VKObhjH5FOWvsuVqFJMpjAmuu4FjOX1ANKALiQw8r/y6w+tw
AlyyWGVPhSUCrb5l3DwlePZuBwpjmTuC6trou1CeR87Ww4RiKjHyz8qyw4QjOc6k
8wZOrfGfauc2rReXEYhyEA9Qww92esmCUpbG4cnCj0yckyuhINZf3SRxMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOGesusjhAE3c00OTf52CHrbP731MB8GA1UdIwQY
MBaAFJXBkgZxbFx501vxWSTbMyOk7BjIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGNHU0JuRnNYSG5UV19GWkpOc3pJNlRzR01nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8zZmVlZDktY2U1Zi00YTIyLTk5Yjkt
YTRhOWNjNDcxNTk5LzEvbGNHU0JuRnNYSG5UV19GWkpOc3pJNlRzR01nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC8zZmVlZDktY2U1Zi00YTIyLTk5YjktYTRhOWNjNDcxNTk5
LzEvbGNHU0JuRnNYSG5UV19GWkpOc3pJNlRzR01nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATludgBlP
SmfPA77a56ltjiunOHB+FhPSM+RCORSIVn6CSTOeZYtFjgaOXkzuRdqN/UnqE+9y
ulEsKrrjgmdswDeh11IHlwcssaXwWi9Uq+r7Emi48i1JnIPwUqdkkgFsiC7uRZ5d
Q9MhL5GOMc2hyuSNxKXXFnh6f5EAJ4gvV8KIxyIOgOOG10yxfsBHBmupsSAIjtTy
q2WuC2IyXCnFNkrSQuGTZqw1SlDdSb7cRHc01mX69+BYCqhdTxHA6+zXqgmv9IRL
Hocso34lnEgnoKH7ZIwkkqvjC8iz1Bfy7l7SEW5ofiIe5KvIsmLnTbbWDUhDdU5P
QE9owCYss0AUHg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 05:29:45 2025 by rpki-client