Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json)
Hash identifier: T8eiX8k1qbZSDIcQogElOkLMlb3rWmFpZSAuspEugco=
Subject key identifier: A1:66:49:62:9C:86:39:46:DB:F0:97:5A:EE:54:05:C9:A8:20:C4:1D
Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Certificate serial: 0196C9F2752C8E557C685C33EC58E58578B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
Manifest number: 09DF
Signing time: Tue 13 May 2025 14:00:32 +0000
Manifest this update: Tue 13 May 2025 14:00:32 +0000
Manifest next update: Wed 14 May 2025 14:00:32 +0000
Files and hashes: 1: BlSKEWV8a0Pu0DQWSBEZ8E6j6Ig.roa (hash: E+fl2IDftOEsy56bvfa1HOBzyBMqnDbK6GEdF9F9KeI=)
2: amBacDdU6Mjk1rJegCvOmhPZCuI.roa (hash: QFuN87Ca0aIv1BOf1cf5zbuSpQPxJlnZXFNDEW5Ik9U=)
3: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: 2hU56YFqKft/9Q/F9UisvtyidpMBrgAaVlBtr4bLJT4=)
4: oQUx3CaetTGOoOfH7R_GIuQC9ZM.roa (hash: QXtVeIAnBIaJbBWzjL0HKxzProdKFi/c2re+3CNcveM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:f2:75:2c:8e:55:7c:68:5c:33:ec:58:e5:85:78:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Validity
Not Before: May 13 14:00:32 2025 GMT
Not After : May 14 14:00:32 2025 GMT
Subject: CN=a16649629c863946dbf0975aee5405c9a820c41d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:88:b1:05:30:d2:29:b4:aa:dc:e9:d5:7f:f2:
1e:e9:81:ef:9b:24:3e:81:3e:d8:0c:1c:8d:5b:7e:
2c:1d:c3:b8:44:40:98:a9:23:c3:e3:e1:31:d5:88:
9d:6a:ee:4d:f3:74:f5:5c:8e:0d:ce:c2:b2:d2:68:
26:d1:a7:04:41:95:e6:4a:09:a7:03:86:ee:ae:45:
df:ea:a8:13:37:6c:88:fc:a6:4b:03:43:03:cd:a9:
9a:c6:88:d5:09:dc:1d:fc:dc:ff:9d:48:d4:24:30:
c5:46:b0:be:f5:4b:72:d3:8e:3a:dd:40:95:64:14:
09:98:bd:4d:d2:38:f7:31:1b:67:eb:32:a8:54:0a:
a1:ca:3d:0f:d6:58:36:13:db:91:c8:d4:93:82:6c:
06:d0:2d:5f:bd:9e:89:37:a9:92:76:dc:11:c0:34:
04:fe:eb:bd:51:e9:61:ea:9f:ae:de:b5:16:c1:86:
22:5a:03:fb:0e:6a:fb:78:3a:f6:3b:35:10:d2:fa:
e8:b5:69:a2:e1:73:2e:4c:3d:fd:5d:96:e6:91:6f:
58:f1:af:1b:ea:68:91:a7:b0:5f:2c:78:70:aa:6f:
d2:2e:06:96:c3:30:2f:bd:96:67:72:69:d5:a4:d8:
77:4a:c6:8b:d5:bb:75:6d:a3:d8:7f:aa:12:0b:ca:
c8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:66:49:62:9C:86:39:46:DB:F0:97:5A:EE:54:05:C9:A8:20:C4:1D
X509v3 Authority Key Identifier:
keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:e9:42:f4:57:d9:98:2d:53:57:db:51:28:fd:b8:07:c3:72:
2c:09:2c:88:02:89:7b:15:4d:f1:e1:43:ad:c6:c8:f0:9a:28:
b4:fe:79:ef:81:4e:4e:7d:25:6d:43:40:d0:3f:45:27:34:a7:
e8:57:58:e4:2c:e4:b4:e2:8c:04:1e:cb:b6:04:90:85:b4:8b:
1e:22:2e:79:00:2f:b3:0a:9f:3e:32:dd:ca:2a:a5:c1:ff:61:
f5:2c:42:60:6a:11:36:be:18:7d:ba:00:90:d9:fa:03:54:2b:
44:ae:ef:6e:bc:dd:ca:14:01:86:a8:47:cb:cf:6f:69:5f:d0:
13:27:16:30:f8:82:d5:3f:6a:68:3a:00:02:83:32:5e:d7:fe:
10:51:3a:d9:28:83:d4:18:2f:5b:0b:e6:81:6b:66:34:5d:93:
82:f1:5b:76:26:49:a4:15:a9:aa:6c:80:43:43:2d:e5:07:91:
b0:93:8c:f2:0c:c4:d7:e5:03:58:4f:1f:69:f2:bc:9d:05:17:
15:34:ee:c0:5b:22:bf:93:89:d3:49:ac:a6:bd:6e:2f:6d:72:
78:6b:e1:a4:a4:85:74:b6:65:a3:d2:24:67:46:ea:71:3d:d3:
da:d0:db:97:37:49:c0:6c:ef:d8:a4:e9:2e:54:a4:c6:2c:61:
2c:64:53:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:04:32 2025 by rpki-client