Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
File: lSGiYvUHXiSys8m2nIr0DimIoeQ.mft (raw, json)
Hash identifier: X5pptJVLWKhOVwda385g2Ho+oS9hBeZGdX0U/bTdyS8=
Subject key identifier: DA:22:E2:C0:B7:31:F8:D0:AF:64:60:26:47:74:6E:E0:84:40:09:A2
Authority key identifier: 95:21:A2:62:F5:07:5E:24:B2:B3:C9:B6:9C:8A:F4:0E:29:88:A1:E4
Certificate issuer: /CN=9521a262f5075e24b2b3c9b69c8af40e2988a1e4
Certificate serial: 0196A3F781328FF48B17E3F1609F0CE6CCC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
Manifest number: 0247
Signing time: Tue 06 May 2025 05:00:28 +0000
Manifest this update: Tue 06 May 2025 05:00:28 +0000
Manifest next update: Wed 07 May 2025 05:00:28 +0000
Files and hashes: 1: Lpcsk8pQMiEPT6ApZhOXx9JAafQ.roa (hash: UQY6sisXum2gKK35fkWx14SykCBKN5d6dEz3tT5FKwk=)
2: lSGiYvUHXiSys8m2nIr0DimIoeQ.crl (hash: kf1P1+jzeqIzYstWR3k+noh1WIM+EwpPgU9Jls0X7/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a3:f7:81:32:8f:f4:8b:17:e3:f1:60:9f:0c:e6:cc:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9521a262f5075e24b2b3c9b69c8af40e2988a1e4
Validity
Not Before: May 6 05:00:28 2025 GMT
Not After : May 7 05:00:28 2025 GMT
Subject: CN=da22e2c0b731f8d0af64602647746ee0844009a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:2c:f4:7b:ae:17:23:72:71:b5:89:dd:c2:d9:
38:3b:30:d3:f7:d2:b5:54:9b:d3:94:e5:0a:13:b5:
7b:32:3a:3a:3e:6a:15:70:d3:89:20:d9:50:95:5c:
51:1a:63:e6:4c:e2:6d:ae:3c:d3:58:8f:61:70:53:
c0:b5:cf:07:2e:77:aa:f8:e5:1e:54:56:31:03:67:
7a:32:37:35:bc:5c:d5:a1:5e:e0:f2:cf:7b:ce:d7:
2b:53:49:3a:c4:bf:8f:a9:cc:07:ba:12:d0:c3:89:
19:f9:46:19:c4:83:ee:9f:e9:7d:eb:58:40:bf:cd:
92:7f:be:e3:e7:ef:ca:75:87:6a:32:0d:db:9e:cb:
5c:b6:b4:74:bb:9f:72:b4:61:92:7b:63:00:19:2e:
73:59:c7:fc:43:82:c4:71:59:86:39:57:96:c2:b9:
f5:97:ce:d2:fe:4c:a6:3a:0d:b6:9c:c7:08:65:a6:
42:e3:c2:17:5e:6c:c6:c1:66:d0:84:f1:d2:0c:a4:
3f:6c:63:5d:97:0c:b1:e1:0d:c7:65:ee:23:07:61:
26:a3:a9:07:a7:39:fd:56:6c:6d:33:e9:90:5f:66:
13:26:54:d8:69:46:93:1b:4e:28:b3:3d:f0:c7:ed:
28:6a:6e:d3:ff:fc:05:23:f1:e2:4e:f1:4e:18:1a:
92:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:22:E2:C0:B7:31:F8:D0:AF:64:60:26:47:74:6E:E0:84:40:09:A2
X509v3 Authority Key Identifier:
keyid:95:21:A2:62:F5:07:5E:24:B2:B3:C9:B6:9C:8A:F4:0E:29:88:A1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:b4:d1:47:fd:00:b3:e0:5a:f4:5d:46:30:02:08:0b:71:9d:
89:d8:45:77:b4:73:1d:2c:af:c4:da:82:54:b2:4d:9c:2c:f1:
73:fd:ac:5b:4a:92:dc:ce:d0:81:ad:37:35:d3:bf:b4:b3:05:
43:1e:a8:29:c0:74:d0:65:4a:49:9e:86:95:fe:9e:6f:4b:ed:
a4:14:fd:47:8f:f3:15:13:d5:86:cd:0d:24:73:a7:fb:f8:5c:
18:10:36:45:7d:f3:98:17:6e:8d:10:55:8e:a7:e2:2e:1a:dc:
85:eb:c8:ab:e4:85:66:2c:46:25:39:b9:31:ff:ac:78:5c:1c:
66:06:9f:17:57:8f:65:46:90:09:97:13:40:b8:62:07:2d:d7:
72:e7:fb:20:59:02:9d:7a:41:da:54:e0:5c:e9:bc:1d:06:f4:
65:c7:62:b5:71:03:9a:16:f9:43:33:1b:37:16:ce:a5:fb:42:
01:c7:96:92:ee:20:1c:00:8c:62:f3:f8:ee:5e:42:3b:41:52:
cb:5e:8f:90:25:ca:f4:20:d6:62:fb:3f:e7:3d:0c:9e:be:37:
58:14:93:86:a9:c0:04:3b:25:4d:36:7e:12:9a:0d:94:b7:f4:
cc:3a:8d:10:31:bd:a5:4c:db:29:35:d4:a0:d5:e3:8e:4b:ff:
52:20:9a:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 09:25:48 2025 by rpki-client