Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
File: lER-sxl6ox5-aEnxavVaslMB-oI.mft (raw, json)
Hash identifier: 7qm3c7pufVntM0DCo3cz/fMTv3xgr4O3KNhiaCeaitc=
Subject key identifier: 40:1F:2F:14:63:F9:3F:C8:00:3E:EA:BD:DA:E7:D9:F4:74:94:82:8B
Authority key identifier: 94:44:7E:B3:19:7A:A3:1E:7E:68:49:F1:6A:F5:5A:B2:53:01:FA:82
Certificate issuer: /CN=94447eb3197aa31e7e6849f16af55ab25301fa82
Certificate serial: 01969DF57491D4EC2BD7D260A26CD7F4A9F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
Manifest number: 049C
Signing time: Mon 05 May 2025 01:00:31 +0000
Manifest this update: Mon 05 May 2025 01:00:31 +0000
Manifest next update: Tue 06 May 2025 01:00:31 +0000
Files and hashes: 1: lER-sxl6ox5-aEnxavVaslMB-oI.crl (hash: xp7nKtIQUkFqBG6O4jZ3mEPk7T4eHZD7ZMi7885qKjg=)
2: o3HDa5Hn0JXB7VWawD3Vzcdyd5k.roa (hash: di4+72seaNK8FCueSsPtQY60+2j8OsXpOCEk2d98xmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:f5:74:91:d4:ec:2b:d7:d2:60:a2:6c:d7:f4:a9:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94447eb3197aa31e7e6849f16af55ab25301fa82
Validity
Not Before: May 5 01:00:31 2025 GMT
Not After : May 6 01:00:31 2025 GMT
Subject: CN=401f2f1463f93fc8003eeabddae7d9f47494828b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:51:47:6d:59:c3:47:0f:9e:da:c6:3b:81:7d:
5b:96:3b:e0:11:35:be:2f:b2:f2:61:89:db:74:d3:
89:1b:11:a7:4a:78:d1:09:ff:89:d8:2d:90:e5:6c:
ff:11:40:11:75:0f:15:ee:ef:16:ff:c4:71:22:26:
b8:84:19:60:37:23:f5:19:ec:41:3f:1c:72:a6:cf:
a0:ca:cd:a3:15:8a:f0:95:d8:41:4c:68:36:91:2b:
75:a4:26:33:6c:8e:d6:0b:30:80:15:d9:b0:07:e3:
ad:e6:01:1e:57:b9:9b:0a:84:40:b0:45:d4:3b:7f:
86:91:e3:45:d9:96:cb:65:2e:ed:39:7f:d5:ab:42:
3a:eb:95:55:64:b3:d2:78:fb:2a:94:54:60:40:8f:
e7:d7:37:9d:2b:ce:39:79:49:5d:4a:cb:f7:a3:05:
ed:47:88:96:7b:d2:e1:26:5c:9a:06:42:1e:21:30:
a9:b9:e2:cb:e9:6b:47:b7:c2:25:f9:f1:24:58:da:
6b:ee:29:75:2e:65:29:fb:00:18:b2:6b:aa:e3:14:
de:bc:c2:af:7e:e7:fe:d1:1a:5f:53:bb:68:9f:2f:
44:ab:fe:e5:6d:ad:bf:dc:e1:93:80:62:97:24:55:
a7:c0:01:0a:ab:8c:cd:3a:e0:5c:fe:3b:25:46:5d:
6a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:1F:2F:14:63:F9:3F:C8:00:3E:EA:BD:DA:E7:D9:F4:74:94:82:8B
X509v3 Authority Key Identifier:
keyid:94:44:7E:B3:19:7A:A3:1E:7E:68:49:F1:6A:F5:5A:B2:53:01:FA:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:bb:ac:6b:08:99:ac:4f:71:bc:f3:0e:ca:06:c6:2d:fd:9b:
79:03:81:be:98:17:7b:a9:ad:54:ea:c8:67:c1:5e:51:e8:a8:
2e:b6:40:80:aa:c0:6a:2e:cd:79:68:d9:b2:41:41:a7:92:09:
e3:4d:90:83:4d:a0:15:ec:45:91:83:f3:a6:40:29:f0:64:17:
e2:01:84:aa:31:76:1f:3a:22:ec:d6:26:5a:84:37:12:3e:e0:
fc:66:bd:95:81:33:7a:f1:3e:f7:22:f2:76:f9:94:46:09:c7:
f6:75:bf:58:32:f2:39:95:12:8d:99:c5:3f:77:17:23:f4:09:
47:6f:95:99:80:94:63:30:e2:81:ca:3a:af:e1:7a:9b:ad:25:
f3:e4:6b:bd:b6:ab:73:67:34:ff:94:a2:50:3d:69:4f:6d:77:
d7:18:08:d3:7a:e3:62:5c:9a:63:b7:10:8a:2e:53:8a:2b:0d:
22:60:1a:92:97:47:10:30:10:92:b7:93:ef:e3:c3:0c:2b:e3:
c4:4e:dc:1a:af:c0:16:4f:bc:50:9f:77:9f:7f:8a:7a:0e:63:
9f:2d:89:83:0c:dc:25:e4:60:57:1b:be:7c:4a:c6:3a:73:ed:
60:db:78:b4:4f:ba:21:6f:79:8e:cc:40:dd:50:c1:ee:e8:b3:
c2:6e:6b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 03:56:58 2025 by rpki-client