Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
File: lQSgmkWW2BV9pp3DNGxavOTOThM.mft (raw, json)
Hash identifier: 5Z4ckv8JStO930NzWGLWfCotEYxDllTxpOnuMORFaqk=
Subject key identifier: F8:39:79:4F:E8:CC:A4:5A:61:9A:A3:5B:E6:D5:33:16:4E:5F:88:2E
Authority key identifier: 95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
Certificate issuer: /CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Certificate serial: 01964DB538C82F4490B6131E8E0FA7958506
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
Manifest number: 0156
Signing time: Sat 19 Apr 2025 11:00:44 +0000
Manifest this update: Sat 19 Apr 2025 11:00:44 +0000
Manifest next update: Sun 20 Apr 2025 11:00:44 +0000
Files and hashes: 1: lQSgmkWW2BV9pp3DNGxavOTOThM.crl (hash: v/vS1EnA8CCcmQiHi9pm48i/iAYXsOPAh1KfHO61YVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b5:38:c8:2f:44:90:b6:13:1e:8e:0f:a7:95:85:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Validity
Not Before: Apr 19 11:00:44 2025 GMT
Not After : Apr 20 11:00:44 2025 GMT
Subject: CN=f839794fe8cca45a619aa35be6d533164e5f882e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7c:84:5a:a1:b3:06:71:90:2c:43:0c:e0:c6:
7c:22:04:91:d8:72:42:3d:e7:be:6c:d1:f8:bd:97:
76:b8:2b:b3:24:60:24:2d:b6:42:4c:98:d2:7e:09:
9f:de:01:5f:35:48:97:65:2b:9b:85:46:10:e8:54:
fa:13:fe:1d:5c:f7:7b:3b:48:69:ba:33:ef:15:16:
4d:2d:97:f7:de:33:de:99:9c:f4:f3:58:4e:b2:4c:
ef:d0:f4:21:77:76:ae:c2:0d:12:0e:ea:22:40:32:
50:16:4d:34:a9:9a:26:59:41:9e:67:29:5e:37:5b:
9d:2e:48:2a:4c:f0:68:f4:2e:36:30:96:1b:ac:5a:
d9:40:a3:40:a6:82:a5:76:89:d0:2e:f8:26:40:be:
6c:44:78:98:db:e4:98:3d:e6:fc:6d:c0:25:60:7f:
7c:53:aa:36:cc:df:5a:21:05:b0:fc:b0:83:57:2b:
67:e8:8d:61:62:06:a3:fa:3f:1c:33:22:4e:a6:f0:
1c:06:bd:a0:33:7d:5e:01:58:99:25:02:c7:03:fb:
75:0f:24:41:7f:52:7b:ae:99:62:04:87:a4:fd:2e:
b6:3c:36:41:2e:06:2e:45:a6:e1:c9:0e:d5:d8:a2:
b6:bb:8e:61:b7:4d:36:12:fa:a6:49:ef:9c:39:0f:
1e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:39:79:4F:E8:CC:A4:5A:61:9A:A3:5B:E6:D5:33:16:4E:5F:88:2E
X509v3 Authority Key Identifier:
keyid:95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:5f:10:51:6b:60:ed:87:19:d5:b8:f8:86:ac:df:31:76:60:
70:e6:b8:83:c3:e2:cf:45:42:2d:17:5d:4a:67:0a:54:d9:1d:
71:75:d0:cb:36:b3:95:04:ae:20:64:c0:8b:30:87:9e:56:03:
72:b9:13:ff:f9:45:6d:25:96:0e:c4:d2:b8:92:a5:67:72:a9:
25:8a:ab:64:40:b0:c5:79:73:b3:33:df:4e:4f:cf:d7:71:64:
de:7c:04:19:99:8f:b9:04:a0:ee:3f:2b:cf:1f:ef:c3:60:3c:
e1:0a:95:dd:5c:ea:80:a0:45:fc:b5:90:67:54:8b:e7:f2:47:
5c:53:0e:f0:14:bb:a7:a5:fc:92:3b:a7:0a:63:11:aa:6d:73:
dc:c5:1a:3b:72:46:b1:28:48:7e:8f:d3:b5:06:1b:07:9f:ab:
d0:83:33:e2:ed:d3:63:da:8c:df:76:ca:ee:32:f8:ea:b6:2a:
c4:a5:3f:24:24:77:eb:1a:b5:84:40:d7:e6:53:f1:f9:2b:86:
d5:5b:81:a1:e3:9d:70:34:b8:02:c3:a5:45:25:65:61:ce:98:
db:8a:4c:41:c6:c0:26:a6:99:99:a8:4e:d2:24:18:25:b5:a1:
2b:d1:9d:43:7d:ac:59:b0:e0:2f:52:33:4a:76:c1:e6:6e:46:
8a:13:37:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:19:29 2025 by rpki-client