Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.mft
File: lSC_jHciaj-ojr4RzI8RacxWCnk.mft (raw, json)
Hash identifier: yh4WL+JbD4x7ffVJhgP+fRCTWGQC5fvvVvPdWFpJehk=
Subject key identifier: 55:54:26:CE:CE:33:B4:EE:7C:4E:16:E0:16:76:F6:D6:89:66:DF:7C
Authority key identifier: 95:20:BF:8C:77:22:6A:3F:A8:8E:BE:11:CC:8F:11:69:CC:56:0A:79
Certificate issuer: /CN=9520bf8c77226a3fa88ebe11cc8f1169cc560a79
Certificate serial: 01964FA32D18DBDD960AA66D61FEF20A9D28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSC_jHciaj-ojr4RzI8RacxWCnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.mft
Manifest number: 0C15
Signing time: Sat 19 Apr 2025 20:00:15 +0000
Manifest this update: Sat 19 Apr 2025 20:00:15 +0000
Manifest next update: Sun 20 Apr 2025 20:00:15 +0000
Files and hashes: 1: 5_9mocxdNZ9MQ0g3lwcXXvM4yBI.roa (hash: QFa9yzo72h2sHM5VVVFbluHjiQ4dadLFT4v/+o9O32g=)
2: lSC_jHciaj-ojr4RzI8RacxWCnk.crl (hash: QlJan6UZXRzd4UOAmwTU+GzSp+9x7rWJBN1LwZ2mq9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/lSC_jHciaj-ojr4RzI8RacxWCnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:a3:2d:18:db:dd:96:0a:a6:6d:61:fe:f2:0a:9d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9520bf8c77226a3fa88ebe11cc8f1169cc560a79
Validity
Not Before: Apr 19 20:00:15 2025 GMT
Not After : Apr 20 20:00:15 2025 GMT
Subject: CN=555426cece33b4ee7c4e16e01676f6d68966df7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:74:22:97:48:31:5d:05:26:52:32:6a:37:b2:
3d:87:12:a2:e7:c1:3d:e1:3b:0d:52:04:51:ad:cf:
74:28:d6:4d:b9:a4:ab:de:1b:3b:f3:9d:f1:d8:ec:
c8:c8:1c:8d:eb:1b:18:5f:a5:fd:92:45:5c:e1:22:
ee:4d:66:7b:b4:f6:6d:fe:64:d8:6c:84:92:53:ea:
96:43:d2:78:d7:99:c8:16:cd:d7:27:89:73:4c:b1:
ba:c9:49:85:5e:93:1e:cb:82:55:81:3d:43:eb:30:
68:d5:f6:d4:04:38:0d:c3:13:8c:a7:98:3c:91:3a:
14:de:89:87:4a:c1:31:5c:fa:15:2e:3a:94:66:80:
a5:85:de:7a:16:3f:ab:6b:eb:e9:b3:01:38:70:c0:
bb:28:85:99:f5:86:d9:1e:9f:7d:77:bf:c0:d7:88:
78:e9:69:f7:cf:c4:67:59:30:6a:5d:99:20:d4:b0:
1c:49:b7:9e:f5:5b:93:f9:2b:c0:21:7b:ab:57:58:
55:8b:d0:c6:f7:15:24:8c:2b:fe:15:8f:79:64:04:
20:52:71:ed:07:20:21:e5:5b:d1:34:5a:e1:7a:6c:
b2:d5:6d:1f:4c:6f:59:43:90:1f:f4:d9:a4:40:29:
df:ac:ed:af:e6:6a:df:a1:74:de:bc:11:21:4a:a8:
61:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:54:26:CE:CE:33:B4:EE:7C:4E:16:E0:16:76:F6:D6:89:66:DF:7C
X509v3 Authority Key Identifier:
keyid:95:20:BF:8C:77:22:6A:3F:A8:8E:BE:11:CC:8F:11:69:CC:56:0A:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSC_jHciaj-ojr4RzI8RacxWCnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:f2:8c:79:be:6d:a2:ed:41:b3:ef:1a:25:20:79:4d:bb:0e:
2b:97:e9:34:82:70:8c:58:ae:23:52:25:22:60:fa:06:47:9c:
2e:da:19:7d:17:73:b4:b3:7a:48:e0:8b:1a:a0:20:ec:87:00:
c5:5f:27:63:65:a6:2e:09:1f:f0:28:4e:ec:f8:b4:9a:35:cb:
70:ca:56:a8:77:53:e5:3f:19:04:02:61:67:e8:56:5f:3f:a5:
dd:d3:25:41:7c:6f:38:0d:83:25:33:d2:a2:2c:58:35:30:2e:
54:34:17:1c:8d:6a:88:94:17:a6:09:a2:63:d8:6e:6a:c4:c6:
4c:e8:0f:2a:ae:bd:ff:2c:ad:e7:c2:87:83:ef:95:f5:57:60:
1b:09:11:c9:6a:c2:12:ac:24:f4:3f:e4:c7:9f:22:86:15:1c:
36:d8:e6:58:75:ea:c8:23:02:1a:92:a7:1b:c9:ea:1c:c2:c4:
73:cd:54:ef:5e:b1:e0:5b:17:da:40:8e:ad:a7:dc:a8:df:5a:
08:3a:ca:7a:eb:1e:b9:cf:b7:73:84:40:ba:86:7b:8c:c9:ee:
f9:77:25:c6:9d:51:19:db:4d:6e:e1:d6:0a:87:65:67:47:bd:
db:69:af:6d:e3:1a:3a:ed:74:27:5d:e5:fd:f9:26:d2:9e:98:
f7:dd:6c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:22:30 2025 by rpki-client