Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
File: lRTVqEAEnUQt83dEU5TfcZIBp3M.mft (raw, json)
Hash identifier: TeHIGt/v43SmN4sUSvJQQz9I90t2G/VOV9af1W2d7gM=
Subject key identifier: 13:51:F6:48:12:47:5D:36:F9:CF:9E:34:CF:18:C9:F6:4D:43:85:51
Authority key identifier: 95:14:D5:A8:40:04:9D:44:2D:F3:77:44:53:94:DF:71:92:01:A7:73
Certificate issuer: /CN=9514d5a840049d442df377445394df719201a773
Certificate serial: 01964CD9639400604195116195EB6DFF34C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
Manifest number: 0340
Signing time: Sat 19 Apr 2025 07:00:37 +0000
Manifest this update: Sat 19 Apr 2025 07:00:37 +0000
Manifest next update: Sun 20 Apr 2025 07:00:37 +0000
Files and hashes: 1: h0vy9KP5l8xr8yJ-2ncCcO3rvZU.roa (hash: WW+DmP6TLxBJVPgyfFOFc50eb4JwhFwUi3K7+OUSV3A=)
2: lRTVqEAEnUQt83dEU5TfcZIBp3M.crl (hash: GcGt8V8lsUHrg33kN5L1/CsY28RQGZocIaFHQdSZu30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:d9:63:94:00:60:41:95:11:61:95:eb:6d:ff:34:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514d5a840049d442df377445394df719201a773
Validity
Not Before: Apr 19 07:00:37 2025 GMT
Not After : Apr 20 07:00:37 2025 GMT
Subject: CN=1351f64812475d36f9cf9e34cf18c9f64d438551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e4:d0:9b:62:f2:de:ea:0c:c0:fe:91:0f:de:
e1:0d:f8:5e:8e:db:3f:2c:0c:92:d9:23:4a:a8:bd:
ac:b8:9a:68:76:4f:52:f4:3a:a4:71:99:09:b8:7c:
01:1c:a6:b5:86:ca:32:01:09:2d:cc:94:c9:e4:22:
75:44:72:84:03:83:4f:29:8b:71:d8:e9:a1:a4:37:
95:f5:88:69:ed:97:b6:c4:5a:a9:85:bc:d7:4e:72:
2e:8f:71:2a:78:18:da:58:fe:27:76:62:6b:1a:f9:
e5:b4:cc:90:23:48:98:2c:e4:e6:04:5a:e9:f0:a2:
e8:ae:5f:6e:b8:f6:26:54:a2:88:6b:39:14:69:12:
5f:ff:70:6b:49:05:bf:c0:6b:17:eb:24:f7:a0:64:
e9:2a:76:49:a5:7c:4d:0c:68:7d:d0:aa:ff:3e:e6:
ac:b4:e4:72:ab:fa:12:c4:b9:ac:cb:ce:58:f4:3a:
0d:98:61:24:b9:db:51:29:2d:17:66:58:ab:11:86:
94:a0:c0:26:03:d8:d8:02:cd:f8:50:29:15:25:0e:
55:00:41:9d:1b:97:8a:49:c6:53:33:f0:c4:a1:32:
0f:0e:51:70:bc:52:15:17:7b:26:34:00:1f:a5:9f:
a8:99:df:62:50:b3:16:ba:cd:fe:55:9e:51:43:9c:
ac:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:51:F6:48:12:47:5D:36:F9:CF:9E:34:CF:18:C9:F6:4D:43:85:51
X509v3 Authority Key Identifier:
keyid:95:14:D5:A8:40:04:9D:44:2D:F3:77:44:53:94:DF:71:92:01:A7:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:76:cc:49:c8:23:ff:93:6f:35:e6:ec:1d:7a:82:6f:3c:39:
15:78:83:f8:2f:71:dd:b9:3a:2f:ed:e6:dd:5c:2e:a2:f5:19:
09:fd:36:40:bb:5b:71:cd:d1:23:28:97:ef:ba:42:a4:75:c8:
a5:6d:b0:e4:85:c0:e7:e3:de:b0:41:4f:91:2b:60:6d:80:b9:
1e:ca:dc:e5:49:b4:f6:05:f3:d7:e8:b4:13:fd:2d:35:76:4b:
dd:af:d5:58:79:97:27:23:d0:38:d8:f9:08:4c:ac:f1:44:99:
39:31:d6:e9:2c:9a:5a:c7:de:9e:34:b7:60:9e:70:05:65:fb:
78:30:d1:40:83:df:8c:f0:40:e9:55:6d:63:7d:57:cf:63:7c:
e7:db:85:f0:56:32:20:e5:8f:30:28:dc:ca:d5:46:e6:eb:d1:
2f:90:a9:83:df:26:f2:cf:32:57:48:98:6d:1e:c6:38:cf:73:
65:dd:98:49:2a:37:50:9b:7e:91:be:08:23:6b:74:e5:63:c0:
0d:0d:5a:54:6b:39:24:09:0d:53:e2:8a:3d:a6:ce:0b:ff:51:
d6:f5:54:3e:38:fc:75:50:e9:0d:24:da:15:3c:8e:f5:37:22:
49:c4:fb:74:ba:99:90:d1:91:d4:db:c9:36:55:82:f6:64:2e:
54:e9:a3:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:16:59 2025 by rpki-client