Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: jiK7HmySPpRc/glsixRFiviLsDjIVtGT/UdKYd1B83I=
Subject key identifier: 82:F3:4B:E3:B8:C6:F0:A4:3B:23:D1:42:7F:46:BD:7F:43:65:91:A2
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 0196BE5C8A7AD4B023C43C5DA2EF52F50A15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 01A3
Signing time: Sun 11 May 2025 08:00:57 +0000
Manifest this update: Sun 11 May 2025 08:00:57 +0000
Manifest next update: Mon 12 May 2025 08:00:57 +0000
Files and hashes: 1: 32WtKH3EfM7-S6v7tTmyQcU-a9s.roa (hash: Fn/80HetfWjEwrwQy2saw9cqkA9VjrY/6O3eDGyjCbw=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: D3NPVg2HgNpBNZZLjJC69uyKAOUjkz64qSLWYIc5kP8=)
3: ef1K6dC6_lGn3rxGTHxMT8fcB0w.roa (hash: KYKxli5ZRinkaBImEiWWBBcr8lpZPoWAqbzOeddaU7I=)
4: pLMH0ozDSiYZXzqiHdSEzphkheE.roa (hash: CFbM9K2hMJ4HkUaVbEdJq2H47xHqfonXY2RvABtKsw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:5c:8a:7a:d4:b0:23:c4:3c:5d:a2:ef:52:f5:0a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: May 11 08:00:57 2025 GMT
Not After : May 12 08:00:57 2025 GMT
Subject: CN=82f34be3b8c6f0a43b23d1427f46bd7f436591a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:17:50:77:72:05:4a:7e:7a:d0:a9:61:87:65:
3d:b1:f6:f7:52:2e:6e:66:54:fb:0a:d0:88:0b:3a:
28:8d:ac:d0:1a:b8:12:94:78:73:ee:a8:a0:03:d6:
bc:d8:74:78:92:f8:c9:d0:a9:8a:f5:64:4d:f1:6f:
22:56:76:c1:60:a1:d1:c5:19:8e:88:26:1e:f8:c4:
38:9f:d0:63:f6:e1:bc:17:bd:c0:49:e3:ab:04:4d:
f3:6a:17:a8:8e:0d:8a:07:85:af:0d:77:87:19:d1:
7e:65:5e:27:a2:d2:74:81:21:dd:e0:01:5a:3a:91:
f7:50:f6:fb:5e:b1:f4:e4:a4:1f:b9:84:01:8e:6e:
08:31:ef:5b:6f:84:70:05:99:a8:b6:f8:ce:51:48:
c1:00:95:42:15:58:a4:8b:c5:11:63:49:ae:2d:97:
57:dc:2d:c8:f1:e3:e3:d5:3e:ff:7a:a8:ec:28:9e:
da:06:71:d1:bc:92:b0:5e:84:4d:a3:10:94:70:1b:
d3:09:ae:b3:be:d2:f9:d0:c6:51:8b:11:b7:f2:58:
97:47:c2:8a:f1:b1:1d:af:a3:6c:42:12:16:8b:cf:
b9:fe:a3:d2:9e:7b:ec:f3:82:ec:11:cd:31:f3:5d:
bd:04:9b:e6:e3:a3:1a:bd:42:67:d8:85:c3:1e:07:
22:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F3:4B:E3:B8:C6:F0:A4:3B:23:D1:42:7F:46:BD:7F:43:65:91:A2
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:56:02:6e:cc:a3:40:a1:68:e7:63:7d:b4:46:6c:67:0f:a3:
18:76:4c:92:6a:17:25:7b:34:85:79:23:ee:ee:5d:d7:18:b0:
81:e9:d3:fe:64:f1:bb:03:0f:dc:8a:07:bd:ca:c2:8f:31:b4:
8f:b1:50:1e:92:57:4f:86:36:02:94:50:bc:0d:5a:c3:5b:50:
57:45:08:7e:62:09:02:a5:d3:0f:c5:c8:8e:64:a1:d3:c6:21:
1d:25:75:e7:a1:7d:d0:81:8f:56:bd:39:11:a8:9d:55:14:ee:
83:3d:c6:e5:e1:29:ca:04:e9:d7:a8:f3:26:57:54:a5:7f:b7:
7b:86:74:71:91:49:fd:4e:69:e5:69:1a:31:20:eb:b8:10:bd:
6b:54:27:1b:af:f9:f4:b9:01:f8:65:07:3c:e3:e4:c7:cc:1f:
aa:39:62:bd:92:44:14:52:42:6f:da:91:8d:f7:34:4f:f9:d6:
a0:ff:9f:47:22:36:2f:49:b8:42:11:97:8b:4d:70:ae:30:4e:
a5:e3:5e:13:a1:07:c1:a7:7e:8b:fc:28:31:4b:2d:6c:fe:ee:
2d:40:71:83:0e:33:ac:c0:b6:69:f6:9f:52:6e:ed:53:3e:17:
a0:92:61:c0:a4:db:9a:76:b7:1d:5a:7b:bd:15:84:03:ff:2c:
c4:9b:84:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:39:53 2025 by rpki-client