Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
File: Lr_2z7gya0RylaEbEHhoIS5mX90.mft (raw, json)
Hash identifier: zgTwmJHQ8T2AmNZGsHXKYQDAnPPZSEi849NMo0c1cvI=
Subject key identifier: 8B:3C:53:A6:8C:4B:94:43:48:93:73:8B:C5:05:C1:F4:5D:64:32:28
Authority key identifier: 2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD
Certificate issuer: /CN=2ebff6cfb8326b447295a11b107868212e665fdd
Certificate serial: 0196561332B728894351578FDBDFD548C37D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
Manifest number: 05DE
Signing time: Mon 21 Apr 2025 02:00:20 +0000
Manifest this update: Mon 21 Apr 2025 02:00:20 +0000
Manifest next update: Tue 22 Apr 2025 02:00:20 +0000
Files and hashes: 1: 2EHY0ANqI6GjPJ3q8F_H43sabIk.roa (hash: 6KKbNu6n/lBjRM28xxVSQgucF7edE6uzeJUy5fL1Psg=)
2: Lr_2z7gya0RylaEbEHhoIS5mX90.crl (hash: 9efnWziGRFOasF2v8l7N7X91mHOBXRYaZlKHPDczM3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:32:b7:28:89:43:51:57:8f:db:df:d5:48:c3:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ebff6cfb8326b447295a11b107868212e665fdd
Validity
Not Before: Apr 21 02:00:20 2025 GMT
Not After : Apr 22 02:00:20 2025 GMT
Subject: CN=8b3c53a68c4b94434893738bc505c1f45d643228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fe:29:16:dd:ad:f8:b2:20:82:ce:62:a2:39:
36:9a:d6:4a:77:0f:b6:25:fc:3f:1a:e5:77:f3:ad:
ee:40:7f:16:fc:10:ec:20:c6:14:0f:f8:78:f7:33:
6a:12:47:85:e1:60:58:ca:9f:62:f0:26:88:20:0f:
bd:f4:04:3d:e4:fc:ed:ee:35:32:3a:36:c1:96:07:
e8:f7:39:28:7b:fa:b7:47:cf:ab:98:24:08:93:2f:
79:99:97:8e:0e:c1:7f:5a:f5:93:e7:2a:6c:81:28:
83:0e:f5:f4:aa:a7:f1:af:64:4b:a5:8d:7a:d7:29:
3e:73:f6:20:2d:43:cc:29:23:f8:99:23:1d:a2:df:
09:8e:b4:17:0b:a4:4e:4a:48:32:54:ec:0f:af:ff:
71:4c:23:ac:c3:b5:d5:8d:51:46:ef:c6:09:a5:b9:
9e:16:c8:75:57:ae:09:59:7c:9a:07:88:d4:6e:b6:
9a:a7:40:ae:a9:bf:67:70:09:39:75:09:71:8d:d1:
dc:35:61:a1:38:4f:42:a5:6f:44:cb:f8:7b:49:51:
60:82:ed:fd:74:34:33:1b:61:d6:be:e3:ea:e8:f9:
ad:89:77:f3:60:d4:a2:19:a9:db:26:21:96:2d:08:
4f:0f:0a:aa:51:28:ef:81:c0:cd:37:0b:f1:4d:a1:
2e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:3C:53:A6:8C:4B:94:43:48:93:73:8B:C5:05:C1:F4:5D:64:32:28
X509v3 Authority Key Identifier:
keyid:2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:fe:1d:d3:78:28:76:0d:99:67:eb:97:4c:12:9a:3a:16:38:
6f:82:59:81:3c:9f:7d:3f:6c:6a:48:c9:05:05:bd:16:4a:34:
4c:45:90:4b:bb:d8:6e:9c:05:16:70:79:f5:9f:b4:cb:74:a4:
9f:d6:9f:d5:b1:f7:f0:fb:f7:26:1a:e9:be:55:86:1b:85:4d:
84:65:7a:3d:7c:84:4d:58:96:6c:62:32:2b:97:17:92:6d:d4:
eb:c0:be:31:46:e4:c5:26:dd:a8:f6:50:04:4b:6b:95:4f:8d:
ba:de:c7:89:1a:4f:0a:14:1a:04:a8:33:19:9a:52:46:d7:70:
7b:98:fb:a5:67:ed:df:94:72:06:be:f1:4a:3c:9c:9a:76:e8:
6e:59:9f:a4:a0:18:78:a1:44:c4:f2:ca:7a:b2:b7:2c:01:f7:
74:8f:90:2a:67:c2:f5:7e:dd:96:bb:29:11:28:03:13:98:bd:
cf:60:05:8a:21:99:18:c8:7f:ac:0c:8d:a5:9e:07:fc:44:fd:
78:95:94:59:56:05:a5:05:c3:c3:0d:93:ad:a0:6c:c8:a7:90:
e0:2a:cc:99:d4:86:22:36:9f:6c:f7:4e:18:02:ff:21:7e:e2:
56:4f:e4:65:79:40:60:24:e0:d5:ba:4f:38:aa:b5:62:70:63:
fe:f7:da:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:53:21 2025 by rpki-client