Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
File: lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft (raw, json)
Hash identifier: zzhc2elyrg5eiQQjATeJaKy1u5xfs0tO4ovJh+Tl19g=
Subject key identifier: F0:56:DB:D2:D0:66:30:63:E3:2F:62:EB:85:E1:2C:87:CC:01:3C:B4
Authority key identifier: 94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
Certificate issuer: /CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Certificate serial: 019656819F429DB6D3B0871CEBC2C5F676B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
Manifest number: 0F25
Signing time: Mon 21 Apr 2025 04:00:57 +0000
Manifest this update: Mon 21 Apr 2025 04:00:57 +0000
Manifest next update: Tue 22 Apr 2025 04:00:57 +0000
Files and hashes: 1: H33ZXIhbVy7xU6xnvVekDxlllNY.roa (hash: gLytCIr8moIJFxRmjTSWLIbls8kZi2qpSK/USMqXNdU=)
2: lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl (hash: GI0O7dM9107paBC8Z6l9XCUNupox1Noi4PCj752iGY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:81:9f:42:9d:b6:d3:b0:87:1c:eb:c2:c5:f6:76:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Validity
Not Before: Apr 21 04:00:57 2025 GMT
Not After : Apr 22 04:00:57 2025 GMT
Subject: CN=f056dbd2d0663063e32f62eb85e12c87cc013cb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0f:24:a9:55:14:52:91:c0:12:50:23:1f:c7:
a4:09:44:99:21:59:39:e2:07:ec:92:13:b9:a1:0e:
09:5a:69:bb:c6:33:6d:ff:ca:39:61:5f:63:90:5e:
e7:a5:75:87:75:df:f0:a8:3f:d6:e4:6f:b5:f0:a5:
bd:b7:44:2e:0a:d9:29:37:5c:6b:fb:67:27:86:ce:
70:4e:98:7a:1a:b4:53:0f:21:ca:19:0f:2f:f4:94:
c8:9b:3d:c7:20:62:8e:31:44:24:ec:77:00:44:8c:
fd:ff:4b:7a:d2:16:5e:c7:11:62:4b:b8:2a:9e:06:
43:5c:ab:56:b4:c3:81:27:1a:c4:37:3e:00:f5:07:
3d:55:70:0d:eb:e4:34:62:d1:30:6e:dd:c6:ff:5e:
9d:6f:ad:ae:2d:3a:a7:2e:6c:68:5f:8f:9e:12:84:
6f:f5:34:88:f5:a3:17:cd:4e:9c:a2:48:dc:b1:0d:
20:ed:61:45:c6:df:ec:8f:9c:4b:a9:65:f6:20:ec:
92:05:8f:6a:64:54:62:3d:ac:18:2a:4c:a1:34:02:
3f:8a:60:53:d9:00:f9:b6:8d:be:11:0b:04:cd:dd:
5d:3a:cd:42:58:24:44:01:2a:51:21:58:3c:d1:2f:
7d:75:8e:de:7b:d1:fa:a9:cd:aa:64:02:83:af:fb:
df:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:56:DB:D2:D0:66:30:63:E3:2F:62:EB:85:E1:2C:87:CC:01:3C:B4
X509v3 Authority Key Identifier:
keyid:94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:d3:32:ae:ad:8c:75:b5:10:26:bf:e6:76:8d:0d:7e:24:bd:
5c:2b:7f:2b:ff:dc:6f:38:51:a9:b0:37:6a:e5:d2:de:6e:be:
22:8a:8f:f8:5e:c9:f3:e2:60:25:7e:8f:f1:9d:b5:70:79:ee:
5b:16:4b:8e:83:8d:a5:bb:d2:97:f7:b9:05:c8:74:1d:04:a7:
c5:8c:91:18:56:08:ea:01:21:2d:8b:4b:88:2a:fd:5a:50:3e:
c6:e5:b1:11:cd:2f:b5:32:15:0b:9d:f6:68:15:50:3b:4e:18:
27:62:bc:d2:10:43:39:56:22:c8:fc:db:b5:59:4c:ec:ae:5f:
24:5e:a3:2c:8e:b9:57:05:b8:93:71:fa:76:db:53:a5:1b:45:
21:15:e6:1e:58:22:c0:a7:65:5b:43:e1:6d:2a:ed:18:8d:9e:
c8:04:1c:92:26:ee:ad:86:91:ea:f0:43:d1:a3:e1:d8:49:a2:
af:6e:44:cd:62:f3:1c:07:2b:d0:ac:01:d7:5d:6e:f9:ce:15:
27:d2:54:ad:78:3b:d8:68:1b:13:16:2b:aa:27:4c:61:3a:21:
02:6e:26:4f:aa:0b:c3:9c:54:a5:8a:7d:d3:05:00:1b:e0:72:
bd:26:80:27:50:1d:68:11:ab:37:49:15:46:e7:01:36:72:ee:
a3:d8:4f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:46:09 2025 by rpki-client