Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
File: LX893KDLOOx7CMaQKeIPUtxAjxc.mft (raw, json)
Hash identifier: GMokQw+xvaxGHJbYBZkb0trG4xWV+i7tMjfDSY4BWEQ=
Subject key identifier: FB:47:29:05:A5:E8:87:92:27:F2:91:D8:48:54:6E:54:E2:AD:D5:6F
Authority key identifier: 2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17
Certificate issuer: /CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17
Certificate serial: 01964AEB45E5795E4004E491EA9877545774
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
Manifest number: 14FB
Signing time: Fri 18 Apr 2025 22:00:54 +0000
Manifest this update: Fri 18 Apr 2025 22:00:54 +0000
Manifest next update: Sat 19 Apr 2025 22:00:54 +0000
Files and hashes: 1: LX893KDLOOx7CMaQKeIPUtxAjxc.crl (hash: yzjziu0iD5RdNayzIQeGncHCzzXKCxeZs9+zPh6WqzE=)
2: NJtD_wJPtwe6yI8QzJv-rd_AAv4.roa (hash: goN8mo/tdm+T4x5aP0V4Y6dre6dhF2ryG392gou/4Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:eb:45:e5:79:5e:40:04:e4:91:ea:98:77:54:57:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17
Validity
Not Before: Apr 18 22:00:54 2025 GMT
Not After : Apr 19 22:00:54 2025 GMT
Subject: CN=fb472905a5e8879227f291d848546e54e2add56f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3f:59:f8:25:c0:51:1f:26:fb:32:0e:7c:b0:
be:46:24:7b:26:74:6b:0c:0e:12:c8:f5:21:b1:06:
ba:61:1f:73:3d:50:91:e7:51:b5:b3:1b:9d:f9:13:
f3:12:aa:08:1d:d1:d9:c8:10:51:a3:06:4e:7a:bb:
7f:50:95:58:3f:37:32:d1:fe:80:89:15:63:b8:5a:
42:76:04:a6:e6:95:ec:c5:5a:2e:75:95:cc:21:6f:
11:cf:c4:4a:e6:b1:17:b2:26:03:7b:e8:d3:ab:d4:
b0:5a:5a:f8:54:d0:f4:d3:af:2e:d1:71:5c:2c:97:
c8:d8:af:b2:3d:06:57:ed:fd:33:11:b0:a1:f1:3c:
82:7f:dc:98:05:bc:38:e3:5c:00:97:18:49:ad:1a:
61:ca:42:a0:79:eb:97:07:00:e9:80:cd:51:c2:e5:
84:32:55:66:e0:8d:40:98:0c:a7:43:49:b9:a6:ce:
4c:a7:65:7a:fd:22:c7:e9:37:97:2e:3e:e8:9d:c9:
c8:35:2d:6b:24:19:8e:4e:d8:df:4e:69:6e:8f:93:
37:63:61:3f:08:6b:93:17:3f:70:bc:93:2b:66:2e:
b2:64:ad:da:22:58:1e:6d:7b:4a:d9:2e:c3:61:47:
97:a2:d2:98:1c:f1:f4:d3:b8:8f:c1:e1:88:b1:1c:
82:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:47:29:05:A5:E8:87:92:27:F2:91:D8:48:54:6E:54:E2:AD:D5:6F
X509v3 Authority Key Identifier:
keyid:2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:75:7b:07:67:3e:5f:70:9d:78:54:20:4d:c8:e2:0c:e1:36:
4e:07:a9:10:e4:be:58:84:e0:ba:ba:10:7c:2f:ee:d2:c9:fc:
92:4a:fd:69:ee:09:7c:79:71:1b:7c:64:85:53:00:d1:07:19:
87:eb:2b:4e:a1:30:dd:2e:59:fd:b6:9a:60:e3:da:a8:14:aa:
55:1c:e0:7a:15:ec:7f:04:e2:97:63:11:6a:24:2b:65:46:07:
50:f7:78:31:26:38:4d:b6:1f:db:69:a6:51:a5:fd:5e:c4:0f:
d7:4a:59:85:89:62:07:3a:53:71:6e:e7:83:c2:e2:21:b1:37:
dc:49:67:29:a3:f0:f7:1b:f3:52:64:01:c8:7d:5b:0b:1e:e6:
cf:f0:cd:ab:f0:49:5e:45:49:38:05:00:89:cb:02:10:ee:c0:
7b:f0:71:8b:41:00:8f:32:6c:bb:a4:29:3b:c6:7b:0f:fb:d1:
c7:0e:89:5e:0f:e3:3b:a9:7f:f0:5e:0a:6c:3b:90:1d:99:d2:
37:32:ed:c9:e4:b6:38:f8:ff:5b:ed:60:9c:9e:1a:15:43:76:
76:a1:ee:48:e5:22:34:7e:65:5d:be:a2:c6:1b:70:c7:f5:93:
4b:6c:a2:e6:c7:39:6e:0b:29:ae:f4:34:72:8a:6c:0b:13:8f:
97:92:37:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:31:18 2025 by rpki-client