Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
File: lN7qVibZ6DJkDx7N9_i7clckCEc.mft (raw, json)
Hash identifier: g5OTA+UHg8K0AcBCw3PK/Kn86dhqfXyoerOuRKCMMZk=
Subject key identifier: C6:D6:B4:BB:3B:3C:66:C8:70:3A:2C:CA:03:A6:C6:F7:C6:18:51:05
Authority key identifier: 94:DE:EA:56:26:D9:E8:32:64:0F:1E:CD:F7:F8:BB:72:57:24:08:47
Certificate issuer: /CN=94deea5626d9e832640f1ecdf7f8bb7257240847
Certificate serial: 01963FC250AEF3547EC4B49FBD484EBC4486
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
Manifest number: 09E7
Signing time: Wed 16 Apr 2025 18:00:21 +0000
Manifest this update: Wed 16 Apr 2025 18:00:21 +0000
Manifest next update: Thu 17 Apr 2025 18:00:21 +0000
Files and hashes: 1: cJPUTKGhm9-SQMKgHrLgVtONres.roa (hash: YPKASk/Rrx47xThFCgmIxwpwkFMGL6Ambuvld828dUQ=)
2: lN7qVibZ6DJkDx7N9_i7clckCEc.crl (hash: h1XCgeW43oXqWiWQXkzy3mbiLlywVxq9cihHzJd39RY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 18:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:c2:50:ae:f3:54:7e:c4:b4:9f:bd:48:4e:bc:44:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94deea5626d9e832640f1ecdf7f8bb7257240847
Validity
Not Before: Apr 16 18:00:21 2025 GMT
Not After : Apr 17 18:00:21 2025 GMT
Subject: CN=c6d6b4bb3b3c66c8703a2cca03a6c6f7c6185105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6d:dc:bc:4d:6a:f6:72:09:0e:78:56:74:5e:
86:69:c6:f3:42:bd:cd:ec:8c:34:05:e2:82:65:0d:
b9:b7:d4:c9:ea:db:c5:e7:9b:06:9e:5f:62:5e:5a:
b9:2f:06:2c:29:04:78:46:2b:a9:49:dd:7c:1c:31:
1c:f6:50:69:81:f2:0c:0a:e7:84:a9:da:a5:6f:5e:
c9:05:2d:1d:7a:74:c0:3f:62:fe:6b:9e:a8:7b:4a:
62:58:f8:ad:9e:5e:b8:96:f8:14:6c:45:1f:18:ed:
f8:00:4e:2f:e8:72:f5:cf:41:bd:e5:f2:fa:ff:74:
af:e5:d3:cc:a6:be:5b:81:9a:d9:f3:58:72:63:dc:
6d:85:4e:27:c6:92:2c:91:14:d0:d3:9b:25:9b:35:
30:29:f0:8b:d3:9d:74:53:fc:89:15:07:e5:6e:d8:
f2:da:88:f8:af:4d:1d:58:4a:3c:79:90:1b:74:ad:
1b:60:43:af:e3:9f:fc:12:d0:05:a2:76:79:63:d1:
81:9b:bd:c9:0e:57:ea:36:f5:7d:63:41:b8:9d:2e:
96:63:13:6a:5b:44:1e:9d:35:df:04:2a:85:0e:bd:
9b:ab:f4:93:7c:09:53:72:b4:e6:1a:bf:f7:e2:2e:
e6:c2:67:fa:62:76:c3:20:e6:e2:0d:6f:31:79:3d:
12:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D6:B4:BB:3B:3C:66:C8:70:3A:2C:CA:03:A6:C6:F7:C6:18:51:05
X509v3 Authority Key Identifier:
keyid:94:DE:EA:56:26:D9:E8:32:64:0F:1E:CD:F7:F8:BB:72:57:24:08:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:42:24:7a:a8:44:9a:72:9d:6d:07:33:b4:62:f4:3b:53:b4:
f1:f4:5f:ed:8d:47:9c:61:43:93:c2:91:d8:8a:b4:07:a2:df:
45:55:24:05:5c:f5:da:5c:fa:6b:d1:38:ef:50:30:d8:ac:ad:
9a:d9:e0:f4:8d:14:28:ce:b2:4c:e9:ae:96:bd:6f:8c:d4:01:
75:4a:44:ac:5c:d6:ec:c3:de:53:bc:41:f7:0c:55:66:ac:5b:
a0:f4:1e:de:39:45:52:c3:43:7e:32:f5:88:f0:1c:2b:e1:44:
93:7b:39:48:9e:f1:b1:87:d0:57:00:73:f0:c3:72:d9:5a:be:
e0:3c:10:99:7a:86:31:c7:db:f8:67:c0:b6:c5:d8:6a:87:39:
72:33:6c:ce:1d:91:96:22:74:71:84:fa:20:fb:ed:3d:fc:eb:
3d:36:30:ba:d0:90:ce:cb:34:2d:f4:4d:ec:b9:1c:e6:bc:03:
7a:42:c5:80:56:4a:ad:2f:a3:fd:d5:54:f6:bd:5e:1c:fe:e0:
44:a7:37:5b:74:d1:10:6e:26:46:c8:9b:4a:31:4b:64:17:04:
36:83:81:73:7f:3f:48:1e:ec:90:be:9b:5c:51:a5:71:e4:03:
47:c8:80:bc:38:cc:bf:c5:5b:75:ca:be:fb:5e:ec:48:04:7d:
15:7e:95:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:17:22 2025 by rpki-client