Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
File: lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft (raw, json)
Hash identifier: jmnx1DD14H5AG495jPpjQqS6H8O0Z3LADU0miZWmmrY=
Subject key identifier: 59:4C:E6:CE:D7:70:A8:78:80:C7:B4:31:3C:69:1A:BF:43:7F:70:43
Authority key identifier: 94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
Certificate issuer: /CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Certificate serial: 01958BBB445E313ED2574F67F6AF04AF73A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
Manifest number: 0EBC
Signing time: Wed 12 Mar 2025 19:01:00 +0000
Manifest this update: Wed 12 Mar 2025 19:01:00 +0000
Manifest next update: Thu 13 Mar 2025 19:01:00 +0000
Files and hashes: 1: H33ZXIhbVy7xU6xnvVekDxlllNY.roa (hash: gLytCIr8moIJFxRmjTSWLIbls8kZi2qpSK/USMqXNdU=)
2: lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl (hash: aPGvFsD45yH8qyxbeVhqFFV7vFUx+qKgXenIhM2VcYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:bb:44:5e:31:3e:d2:57:4f:67:f6:af:04:af:73:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Validity
Not Before: Mar 12 19:01:00 2025 GMT
Not After : Mar 13 19:01:00 2025 GMT
Subject: CN=594ce6ced770a87880c7b4313c691abf437f7043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:30:16:e4:4f:d7:42:6f:df:a9:bb:f6:bf:59:
b7:1b:1b:e9:b8:ee:f0:35:7b:c3:a7:22:64:67:eb:
e7:69:e8:64:69:fa:20:94:d4:a4:4e:4e:15:81:49:
f2:18:04:76:26:98:31:a1:cd:b4:1e:8d:bf:67:4e:
a0:a7:15:49:b1:14:4d:93:a3:12:43:9c:a3:71:f9:
f9:a5:1f:77:c6:a3:b6:80:8e:7a:91:cb:33:c1:79:
1c:30:a2:ac:7a:42:26:53:7a:81:ec:54:b3:67:42:
28:00:74:16:03:81:d5:69:40:44:95:7d:6b:b8:f3:
c4:58:c8:4c:a9:a8:dd:82:d8:04:e6:f3:34:68:94:
bd:89:f7:e9:8d:81:39:2c:e5:58:dd:8f:8d:88:b2:
ca:29:ea:50:04:b1:8b:64:33:1f:e1:ee:e2:98:72:
d1:59:06:40:f5:26:16:22:98:49:b6:15:65:d1:58:
76:1a:9b:84:7c:19:8f:7e:ca:96:0d:9c:4f:1c:c5:
15:4b:f9:26:63:57:bd:65:90:87:8d:33:c1:98:de:
c1:e1:7a:86:36:49:48:5e:c7:41:f4:f5:c2:79:18:
ae:61:23:9c:26:87:e8:3d:be:10:d1:3f:73:a8:65:
84:b1:de:30:92:1e:8f:11:ad:d2:49:1c:9f:77:f6:
dd:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:4C:E6:CE:D7:70:A8:78:80:C7:B4:31:3C:69:1A:BF:43:7F:70:43
X509v3 Authority Key Identifier:
keyid:94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:8f:e8:3e:07:df:36:f4:52:19:72:f0:bd:5c:42:fd:40:c4:
aa:db:cb:4f:de:85:dd:e5:67:34:d9:41:ec:b0:7c:b3:6d:0b:
c1:dc:68:90:6e:f7:63:9b:97:c1:57:da:91:26:fd:34:8c:73:
cd:23:22:f4:b0:37:0d:32:a2:0c:e8:74:18:3f:56:bb:0f:0f:
85:6b:05:85:ab:f5:1f:d6:93:46:73:17:eb:4d:3e:38:99:14:
f9:29:66:a8:a1:7e:41:39:08:72:1d:9a:3c:28:92:db:65:03:
2c:6e:90:af:aa:e6:fe:0b:dc:50:5f:96:6a:9a:d9:90:6b:86:
42:a8:89:33:fc:00:1b:b8:ef:0f:02:78:1b:00:e8:3e:3b:19:
c2:4f:71:bc:0a:13:50:4c:59:3b:3e:1a:83:e4:7a:b5:be:35:
98:a9:8a:dc:67:e4:fd:f7:83:90:06:a6:f0:57:1b:d9:90:3c:
37:93:11:ac:d8:e4:3d:41:87:5c:49:a7:2c:e7:8e:ac:ff:65:
56:b2:ff:18:a2:33:c5:06:9c:04:0f:19:ca:f0:0d:7b:a5:fa:
57:40:97:00:e9:81:25:c5:c1:9d:43:7f:11:34:03:ff:6f:cb:
8c:31:75:93:44:5e:2f:1e:cb:1e:aa:65:25:a0:85:93:c5:7c:
eb:e5:20:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:31 2025 by rpki-client