Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.mft
File: LRGXVPwU_-eWimUWvUm9slYzuIc.mft (raw, json)
Hash identifier: 1FjSHZWtzItCt/RQjzB68toMHg8IFxrCte6Zre0d+90=
Subject key identifier: 5F:05:08:48:37:14:AE:2A:11:1C:24:3F:72:26:66:87:34:D5:A2:98
Authority key identifier: 2D:11:97:54:FC:14:FF:E7:96:8A:65:16:BD:49:BD:B2:56:33:B8:87
Certificate issuer: /CN=2d119754fc14ffe7968a6516bd49bdb25633b887
Certificate serial: 0196C15DD42008396930B81268EED4B35890
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRGXVPwU_-eWimUWvUm9slYzuIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.mft
Manifest number: 0EF1
Signing time: Sun 11 May 2025 22:01:13 +0000
Manifest this update: Sun 11 May 2025 22:01:13 +0000
Manifest next update: Mon 12 May 2025 22:01:13 +0000
Files and hashes: 1: LRGXVPwU_-eWimUWvUm9slYzuIc.crl (hash: 3eyWBQALaL3bsmwq/8NQ6DWBOo1umhb4JFF4dIdVgVQ=)
2: Yq8p-Zl2UZI4Tb-nuCgzMSOT2M4.roa (hash: nZW2inX60+r3Vn2H9HqAa0liDQDWLVr6X/Z09+vg9g4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/LRGXVPwU_-eWimUWvUm9slYzuIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 22:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5d:d4:20:08:39:69:30:b8:12:68:ee:d4:b3:58:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d119754fc14ffe7968a6516bd49bdb25633b887
Validity
Not Before: May 11 22:01:13 2025 GMT
Not After : May 12 22:01:13 2025 GMT
Subject: CN=5f0508483714ae2a111c243f7226668734d5a298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:45:d8:d3:d9:fd:eb:0c:5c:b5:f3:ef:65:12:
69:fe:99:0b:8e:6c:9f:f8:8e:b9:e2:92:46:3c:2c:
49:d1:be:e9:ab:f2:09:5f:27:6c:8d:5e:96:b0:d2:
36:da:53:c7:78:e1:47:70:d7:c0:83:8a:dd:5e:b7:
9f:7b:54:79:60:0e:ba:ff:6c:0a:19:25:63:00:ac:
df:9a:eb:b4:2e:06:9e:2a:38:ea:9a:ae:4b:8f:d9:
3b:1c:7d:24:ba:0c:2c:ae:98:a6:4d:da:fa:7a:8f:
6a:1a:c3:2a:16:78:8a:7f:56:92:a9:4e:73:fc:f6:
b5:69:9d:17:d8:87:97:dd:6b:a3:4a:46:0b:91:22:
b0:fa:1c:c9:50:83:21:13:9c:7f:4e:dd:fe:3a:2a:
47:f6:1b:28:eb:b0:f6:57:07:b2:fb:5c:47:e4:1c:
69:83:4f:d1:69:7c:c9:67:29:a9:65:89:bd:e4:18:
70:7e:21:21:1b:67:1a:33:c4:48:13:98:7a:1e:13:
5f:24:a5:a5:e1:b5:2d:7f:6e:d7:e6:22:1a:76:55:
72:26:cf:7d:b7:74:93:84:c1:33:d9:b2:c7:7c:f5:
29:5c:24:54:3e:99:62:4d:46:ca:c2:89:3b:08:e3:
c7:5f:84:33:f3:5e:43:88:74:59:dc:b5:6d:eb:13:
0f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:05:08:48:37:14:AE:2A:11:1C:24:3F:72:26:66:87:34:D5:A2:98
X509v3 Authority Key Identifier:
keyid:2D:11:97:54:FC:14:FF:E7:96:8A:65:16:BD:49:BD:B2:56:33:B8:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRGXVPwU_-eWimUWvUm9slYzuIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:a3:5b:ef:16:51:46:98:57:d9:07:3a:48:54:6d:34:f1:50:
db:27:93:24:6c:c1:dd:c7:34:bb:7c:49:14:cb:f0:e0:a9:0c:
7b:6a:07:24:21:33:33:c3:19:63:1f:ed:e7:19:c0:b7:d4:a2:
a4:58:8f:9e:2b:67:6c:9c:03:ec:b8:4a:ee:70:70:74:1a:8e:
31:51:96:e8:f5:38:af:d7:4c:c2:85:71:f4:c4:74:f0:6f:3a:
c0:a6:eb:8c:8c:ea:29:4d:28:c7:e7:69:c9:3a:4b:68:ab:f0:
ac:4d:31:0a:69:28:41:18:29:82:2d:a7:09:08:16:13:d2:c7:
8e:69:d3:ec:2f:60:4c:3d:ba:95:6c:6c:55:57:82:44:2b:9d:
e0:f2:d2:a6:ba:ba:c3:05:6a:97:98:bb:29:fa:63:77:a2:6e:
3a:1a:3b:e8:35:7f:0f:1e:d5:64:3d:bd:0a:2a:02:13:fc:1d:
cd:2a:6a:58:5a:d7:ac:06:1a:c1:98:ca:9c:92:c8:e0:ac:06:
d5:27:1d:53:5d:aa:28:68:35:41:b9:f7:23:d4:9c:5b:b0:b6:
fd:36:54:1f:4a:76:74:9b:71:ab:56:74:e9:08:86:32:bd:18:
dd:4e:f5:94:e8:89:f3:15:5c:bb:58:62:7b:37:f4:17:c1:44:
76:b5:30:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbBXdQgCDlpMLgSaO7Us1iQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMTE5NzU0ZmMxNGZmZTc5NjhhNjUxNmJkNDliZGIyNTYz
M2I4ODcwHhcNMjUwNTExMjIwMTEzWhcNMjUwNTEyMjIwMTEzWjAzMTEwLwYDVQQD
Eyg1ZjA1MDg0ODM3MTRhZTJhMTExYzI0M2Y3MjI2NjY4NzM0ZDVhMjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUXY09n96wxctfPvZRJp/pkLjmyf
+I654pJGPCxJ0b7pq/IJXydsjV6WsNI22lPHeOFHcNfAg4rdXrefe1R5YA66/2wK
GSVjAKzfmuu0LgaeKjjqmq5Lj9k7HH0kugwsrpimTdr6eo9qGsMqFniKf1aSqU5z
/Pa1aZ0X2IeX3WujSkYLkSKw+hzJUIMhE5x/Tt3+OipH9hso67D2Vwey+1xH5Bxp
g0/RaXzJZympZYm95BhwfiEhG2caM8RIE5h6HhNfJKWl4bUtf27X5iIadlVyJs99
t3SThMEz2bLHfPUpXCRUPpliTUbKwok7COPHX4Qz815DiHRZ3LVt6xMPLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF8FCEg3FK4qERwkP3ImZoc01aKYMB8GA1UdIwQY
MBaAFC0Rl1T8FP/nloplFr1JvbJWM7iHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJHWFZQd1VfLWVXaW1VV3ZVbTlzbFl6dUljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wNzcxZTEtMzlhZi00MzUzLTk0N2Yt
MDFmYWNjNzQ3YzI0LzEvTFJHWFZQd1VfLWVXaW1VV3ZVbTlzbFl6dUljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8wNzcxZTEtMzlhZi00MzUzLTk0N2YtMDFmYWNjNzQ3YzI0
LzEvTFJHWFZQd1VfLWVXaW1VV3ZVbTlzbFl6dUljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApKNb7xZR
RphX2Qc6SFRtNPFQ2yeTJGzB3cc0u3xJFMvw4KkMe2oHJCEzM8MZYx/t5xnAt9Si
pFiPnitnbJwD7LhK7nBwdBqOMVGW6PU4r9dMwoVx9MR08G86wKbrjIzqKU0ox+dp
yTpLaKvwrE0xCmkoQRgpgi2nCQgWE9LHjmnT7C9gTD26lWxsVVeCRCud4PLSprq6
wwVql5i7Kfpjd6JuOho76DV/Dx7VZD29CioCE/wdzSpqWFrXrAYawZjKnJLI4KwG
1ScdU12qKGg1Qbn3I9ScW7C2/TZUH0p2dJtxq1Z06QiGMr0Y3U71lOiJ8xVcu1hi
ezf0F8FEdrUwpg==
-----END CERTIFICATE-----
Generated at Mon May 12 03:57:00 2025 by rpki-client