Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
File: legTEe8dNuzG0SXjbILCb5FbDfc.mft (raw, json)
Hash identifier: IXs+PTzP4wuQznN230QK6JSWY3hwfI7ae/h7+13edJQ=
Subject key identifier: 69:BC:8A:B0:1D:DE:9D:1E:40:95:AC:76:6D:9E:57:9E:4E:B8:8F:91
Authority key identifier: 95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
Certificate issuer: /CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Certificate serial: 0196C6F1610B334566EBF2FFE091A1E63877
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
Manifest number: 109B
Signing time: Tue 13 May 2025 00:00:29 +0000
Manifest this update: Tue 13 May 2025 00:00:29 +0000
Manifest next update: Wed 14 May 2025 00:00:29 +0000
Files and hashes: 1: WYTqj2Ru4b6Ds31lFp0qL0GBiG0.roa (hash: TiMpifh1/6heVxOwrxdYBK/lz/TeczLDX2jTHHgJqNw=)
2: legTEe8dNuzG0SXjbILCb5FbDfc.crl (hash: 61cEEqTOw6zOSatFa6JjWl6NzAOpBPl6wy+EIkqb8k0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:f1:61:0b:33:45:66:eb:f2:ff:e0:91:a1:e6:38:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Validity
Not Before: May 13 00:00:29 2025 GMT
Not After : May 14 00:00:29 2025 GMT
Subject: CN=69bc8ab01dde9d1e4095ac766d9e579e4eb88f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c8:db:67:ba:12:47:73:ee:98:fa:7e:30:70:
ce:ed:11:e6:18:3f:59:97:0b:6e:1e:78:9d:0d:59:
db:66:7f:f2:76:0a:b7:7d:e7:d5:b3:23:49:f7:0c:
7b:7f:e5:aa:30:a2:79:ae:27:c4:74:1f:b6:96:15:
7a:0d:14:10:e5:ab:07:13:9d:31:11:82:c6:2a:a9:
c8:8c:61:08:03:df:47:07:32:4c:73:f5:69:39:5c:
76:9f:4d:fb:d4:94:24:a1:7c:31:6f:9a:c8:e7:df:
50:19:bd:5e:06:68:e3:e3:65:9e:39:67:e3:a6:98:
98:12:75:ad:69:6e:aa:c5:df:e7:e0:1f:e4:c9:03:
e5:e3:7c:ab:96:0f:96:5e:42:c1:4f:e2:04:7c:29:
d4:da:0f:b8:31:53:e4:02:f4:2a:f0:e9:e8:d7:a3:
12:be:28:37:3d:0d:14:85:e9:3f:83:63:5b:88:02:
24:a8:ce:b6:54:66:f9:b8:3d:bf:83:43:66:8d:c4:
ea:9d:28:30:6f:3a:1a:ef:00:61:43:4e:0f:3d:c7:
28:66:f1:0b:48:37:a8:35:fa:4e:86:6d:d7:37:cc:
67:05:9d:81:fe:1a:6a:6f:04:24:fe:2b:0f:f5:16:
63:c1:ea:85:58:70:0c:90:c6:c1:cf:d3:44:4a:79:
da:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:BC:8A:B0:1D:DE:9D:1E:40:95:AC:76:6D:9E:57:9E:4E:B8:8F:91
X509v3 Authority Key Identifier:
keyid:95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:76:ab:08:e4:6e:7e:a3:44:3d:27:6d:45:b8:33:3d:c5:1a:
4e:a6:67:3a:da:a8:b0:eb:f4:aa:49:7f:48:ad:8c:71:51:7b:
db:d6:8e:a2:f0:b2:bc:dc:bb:8d:12:b3:49:75:29:a7:dc:d9:
df:ab:d0:0b:18:15:6f:60:69:6e:42:98:e0:a9:b1:9a:ae:28:
65:6f:82:a6:7b:cd:77:b3:98:c8:76:46:0c:b2:f4:3e:1d:7d:
1c:40:bd:7c:05:c6:19:17:dd:a0:ed:74:2f:7e:46:d9:51:30:
5e:2c:a2:24:03:35:86:dd:45:c7:fe:b2:00:dc:bb:31:98:0c:
81:83:b2:7b:2d:82:fd:60:22:c3:e5:44:55:b0:fc:83:af:2d:
85:d5:ce:34:61:33:0b:dd:a6:38:c7:f5:72:1e:85:61:c3:48:
fa:27:26:99:6a:30:3a:fc:4b:c7:af:7d:6c:de:7a:c4:57:55:
1f:b0:92:e4:bb:53:22:28:15:7b:3a:26:e5:85:6d:a8:6b:a3:
29:49:df:80:7f:4d:84:63:cf:ae:33:c1:3f:37:4a:14:20:f4:
91:ca:e5:e7:13:b6:e6:47:bf:d8:a9:e5:c9:b1:fa:87:8a:41:
42:0a:1d:82:1e:f2:35:73:1a:59:e2:65:d4:0d:33:dc:8b:68:
e7:71:2d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 05:52:26 2025 by rpki-client