Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
File: lKpBiudwvajvBRax0cYzpn6R84s.mft (raw, json)
Hash identifier: 988hB0VTFx+uEZB+1TECqq7lzeq9J8uFLh82W5wq2Cg=
Subject key identifier: 6A:37:D3:76:E1:06:93:C4:B7:E3:D9:9F:49:DA:0B:A3:CC:1D:B0:A0
Authority key identifier: 94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
Certificate issuer: /CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Certificate serial: 0196BD81526CA50F15A8414A27AF7EA7E44F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
Manifest number: 0EFC
Signing time: Sun 11 May 2025 04:01:31 +0000
Manifest this update: Sun 11 May 2025 04:01:31 +0000
Manifest next update: Mon 12 May 2025 04:01:31 +0000
Files and hashes: 1: JDbsNRiv_WMTlViBQXQ3g59gK5M.roa (hash: 5BHapuXzcbpJhpfOa/evo44J0f0F6BTnvXfMcpPhdEU=)
2: lKpBiudwvajvBRax0cYzpn6R84s.crl (hash: dXix9SGQUJOfS0fDZW+izBo3rV86bvZaJZ12a4JvnxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:81:52:6c:a5:0f:15:a8:41:4a:27:af:7e:a7:e4:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Validity
Not Before: May 11 04:01:31 2025 GMT
Not After : May 12 04:01:31 2025 GMT
Subject: CN=6a37d376e10693c4b7e3d99f49da0ba3cc1db0a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:84:88:22:8c:40:cf:0f:a8:b5:ef:62:3c:3d:
d6:7e:0b:a1:23:b0:7e:c4:f0:49:80:26:4e:ae:d9:
b6:97:75:1f:85:e4:dc:72:e9:8a:5e:27:4c:35:1a:
ff:5a:10:4e:ed:e8:2d:90:42:28:1a:cb:20:c6:e9:
31:4c:22:63:2b:32:ea:e8:1d:d7:02:02:77:38:9b:
e0:82:a8:b0:61:83:04:3d:e9:f9:dd:ee:ab:1d:bf:
24:67:53:57:15:30:78:1e:10:0b:2a:c5:ab:7a:23:
a3:9a:31:33:df:df:61:36:1a:2a:61:c7:9a:b8:29:
b6:fb:a8:55:b3:b3:c9:51:d6:4c:a2:5f:0c:19:41:
2b:92:e9:cf:40:a0:69:40:71:01:83:21:3b:09:ce:
8e:49:cf:f8:82:f7:9e:3c:b2:9c:15:83:68:7e:2c:
f6:5f:18:f3:65:3e:09:1a:5a:34:51:29:ec:77:ab:
1c:43:ca:9e:ec:80:16:8f:1a:db:66:94:76:0b:d9:
c9:bf:4c:63:9b:9e:ed:68:a6:93:78:08:ed:e4:c7:
97:9a:c3:06:8e:57:26:8e:72:45:9b:12:6d:40:e0:
91:17:ac:b9:b4:0a:28:df:99:4c:c8:58:a8:3d:9b:
95:60:c2:8d:48:de:9d:c1:2b:a5:48:0c:07:ac:9b:
1c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:37:D3:76:E1:06:93:C4:B7:E3:D9:9F:49:DA:0B:A3:CC:1D:B0:A0
X509v3 Authority Key Identifier:
keyid:94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:e6:6b:ce:56:53:f2:01:42:5a:e3:0b:7f:58:91:cc:87:de:
06:e7:cd:d1:79:92:7e:a6:a9:23:2b:08:4b:cd:da:a5:bf:32:
a3:47:e4:84:56:c3:2c:c0:37:69:0d:ce:01:56:91:ea:ca:37:
58:10:66:a6:3c:13:19:cf:71:fc:06:39:57:34:ff:78:a9:1c:
5d:07:22:21:4e:33:97:f1:73:bd:28:f0:6c:2a:22:13:20:4d:
cd:69:6f:3a:92:7f:90:04:94:c8:a3:e1:f5:b6:c2:d8:2c:82:
bc:58:32:94:a8:6f:72:c3:a9:5e:07:b5:f6:46:88:d2:d1:63:
c7:7c:28:5b:6a:85:e5:14:00:7e:17:8c:eb:c3:a9:9a:ff:f8:
71:1f:88:01:5c:54:35:d9:df:72:ad:bb:a8:f1:a2:9d:7e:4f:
e1:32:ae:3a:67:37:34:2c:9a:26:bf:f9:dc:6c:3b:eb:d7:de:
08:f9:60:37:de:83:ef:38:9d:18:0b:d6:c9:48:6a:63:60:18:
33:46:a1:48:a9:16:2b:ad:46:03:10:0a:0f:04:37:15:fc:3b:
c3:45:f8:99:3c:1f:a9:65:e6:b0:58:f7:21:58:75:b4:64:10:
a9:5f:a7:5e:0c:ab:2d:cb:9b:22:87:3c:28:65:8c:b9:29:77:
e9:c0:c9:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 08:34:34 2025 by rpki-client