Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
File: lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft (raw, json)
Hash identifier: crtNrGnJBzud23GqWeiAIkjj5nmHy7hFBZuyiqZLASg=
Subject key identifier: FE:AC:26:3A:0E:54:F8:DB:73:D3:58:9C:55:57:32:43:46:8E:58:97
Authority key identifier: 96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
Certificate issuer: /CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Certificate serial: 0196C193ED579929CA70C36D2875F6BECC3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
Manifest number: 0CEE
Signing time: Sun 11 May 2025 23:00:19 +0000
Manifest this update: Sun 11 May 2025 23:00:19 +0000
Manifest next update: Mon 12 May 2025 23:00:19 +0000
Files and hashes: 1: ew1zgYS28PrRo2_vyICjeeeZzZk.roa (hash: Fhi/oH9QUYxK/iP3UryNP+xQPg6T4wc9jRF/RdGEuMY=)
2: lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl (hash: k5TMFyg5xhIeitoQaN0MC+TtMmxZUZToz7NErMffh/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 23:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:93:ed:57:99:29:ca:70:c3:6d:28:75:f6:be:cc:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Validity
Not Before: May 11 23:00:19 2025 GMT
Not After : May 12 23:00:19 2025 GMT
Subject: CN=feac263a0e54f8db73d3589c55573243468e5897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:e8:56:ac:39:9d:4a:51:19:5b:d9:7f:c3:c6:
4d:81:3e:a7:af:ca:c2:92:61:67:51:f3:ba:78:80:
a6:31:24:ec:b5:8e:5a:1d:03:71:2a:9e:c0:22:9a:
6c:86:7f:8e:74:5d:e1:eb:51:22:85:91:e7:30:67:
ba:48:cc:ba:36:53:90:39:71:a4:a2:bd:4a:13:f7:
3e:b7:f0:9a:bd:4e:32:25:84:e3:7d:44:d1:f5:52:
8f:aa:dd:d2:8c:40:e7:3d:de:62:57:06:36:b6:0f:
73:de:8a:bf:5a:7c:db:d0:fd:74:c6:0c:81:91:4c:
ca:36:e0:e6:08:02:a9:6f:8a:bc:e0:32:fb:0a:db:
7a:bc:97:d5:96:68:e3:db:f8:b2:d2:50:e9:5a:fe:
74:b0:f2:d1:4d:c9:41:7e:4c:7b:29:21:e8:15:67:
ef:7d:ed:5f:9f:27:68:f6:43:15:f3:8e:01:7a:96:
59:b3:9d:f7:7e:d2:3f:5b:b6:0c:8c:13:95:6c:2f:
ab:31:28:e3:62:84:cf:a4:13:b3:db:57:d8:d9:75:
d8:ab:56:33:c6:7d:e2:71:2e:cd:00:a2:c3:56:03:
59:a9:81:22:d0:d5:42:17:fb:34:6c:12:3e:0b:9f:
cb:7f:c9:8e:51:31:66:8f:b8:d8:e7:98:06:18:33:
a9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:AC:26:3A:0E:54:F8:DB:73:D3:58:9C:55:57:32:43:46:8E:58:97
X509v3 Authority Key Identifier:
keyid:96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:f8:d7:52:e7:50:c7:9e:85:ea:05:b6:00:f4:84:ee:14:70:
f2:e2:4e:ef:8b:7b:eb:c2:4b:9b:c2:78:67:a2:16:d2:99:b4:
65:8b:b6:5f:fc:d8:1f:d2:b0:14:67:f9:52:14:e0:b8:99:85:
3a:2d:d2:f3:05:44:57:48:72:bb:b0:44:cf:0c:46:9d:d4:f1:
67:0a:26:0d:c5:da:98:43:83:63:b2:7b:77:f5:9e:b0:d6:b4:
99:28:5c:24:fc:9f:f6:9e:25:77:12:ec:8a:4f:e8:e8:a7:9e:
50:13:7f:ef:05:8a:5d:a5:fe:cb:70:e6:9e:fc:e2:36:c1:1a:
69:70:37:78:13:b8:04:96:03:1c:1c:ef:37:37:b5:01:77:92:
dd:42:9f:24:17:a0:91:3d:8c:5c:9d:1b:4e:3e:04:8b:65:73:
58:2d:5d:bc:f0:77:bb:b8:52:31:92:3f:01:7d:0e:d8:f2:67:
9e:e7:b4:21:89:60:a8:25:60:b0:98:a4:67:57:95:0c:40:6a:
d6:ce:ad:81:e9:98:12:57:12:21:20:cb:3f:cd:7b:c2:01:f5:
2b:a4:de:18:c3:65:99:7b:e2:13:02:57:5a:28:ba:4e:2a:8a:
81:e5:18:bd:ec:1e:97:bf:d4:54:cc:24:a7:17:6e:4b:e4:a5:
e2:b2:9c:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:05:46 2025 by rpki-client