Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
File: lNmOj-xoB3WhVyZuDGt4sUGjT14.mft (raw, json)
Hash identifier: akioTJ+xGO2WX+vmOuUW1yM0N2B6aocnDdmcDfcHkrg=
Subject key identifier: EC:F4:7B:63:28:93:B4:31:95:E7:C8:DE:17:F2:39:22:D7:46:7C:44
Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Certificate serial: 0196BDB715BC4E892733ACA392DA7B80E204
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
Manifest number: 0E11
Signing time: Sun 11 May 2025 05:00:14 +0000
Manifest this update: Sun 11 May 2025 05:00:14 +0000
Manifest next update: Mon 12 May 2025 05:00:14 +0000
Files and hashes: 1: 0YppZtvRSXBHB8NFrLn_rzdM4Wg.roa (hash: AIX2Owt5viXo6Wp2eQTWR2x2rHaX/2g8xn17pbf1zi4=)
2: EKnIHBjVrQVGKttI-rFo2gf2VFc.roa (hash: J3kh1NFjTixOap26aJDcz17JVV8gbZy6u7PZjGr/JnE=)
3: H0U-Km3rz_YtidSX7xAdJ-A_RzA.roa (hash: L4ck5kUvwk5NkXR5fk3e/8692feGx3cZZTXMDkDHo6o=)
4: LaP9yZWFLbz-vA6yy7WQjmvmnXk.roa (hash: dSsBDcLcDlWyNXwHKuTffodeoLPC9SNQ0Byy4wB2Z1w=)
5: LbH9hJaSL1GOYzLXqD3Awd_qjoA.roa (hash: 3C2M+kU6uA2Qd0GYC2WkAPgI2BlaHp4MqS4lT08EAiA=)
6: PbarvFD-DfboyTwmYNWYW4W2R9w.roa (hash: x10XcqhvaDHkUVsBFH7jM56sVdDbvr2ZFm9l+eYW+G4=)
7: lNmOj-xoB3WhVyZuDGt4sUGjT14.crl (hash: BmVTDSmOLEuirb0SNSWc617BJgHFiRiMMk6dxj/NeSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 05:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:b7:15:bc:4e:89:27:33:ac:a3:92:da:7b:80:e2:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Validity
Not Before: May 11 05:00:14 2025 GMT
Not After : May 12 05:00:14 2025 GMT
Subject: CN=ecf47b632893b43195e7c8de17f23922d7467c44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:72:68:99:5a:7d:94:c8:d2:4a:8d:0b:6d:05:
25:1c:17:cc:ce:10:97:61:a7:66:44:b4:30:a6:c0:
f9:d5:70:93:ee:52:2a:0a:a2:5c:4b:15:8b:b2:5e:
b3:fc:de:32:b6:e1:8d:22:fc:ac:7a:74:c8:62:d1:
f8:09:cc:53:36:d6:55:0b:c5:f4:66:6e:e7:e3:ac:
66:10:3d:36:37:e2:17:d1:5e:55:1e:72:6d:41:36:
08:4a:a3:53:de:b9:b5:6f:a2:e2:00:55:32:76:47:
c8:4a:05:85:d2:72:ec:bd:d6:a7:89:cb:81:6a:22:
b9:a0:9f:50:8f:3f:84:0a:73:1c:86:9f:f9:5a:cc:
fc:18:2a:a5:0b:39:82:c9:66:f1:81:10:52:48:a1:
39:5d:f6:55:82:d0:02:9a:f7:b5:5d:15:e6:ba:7f:
0d:b5:a2:31:d4:f1:f4:a3:16:c5:50:d6:61:de:18:
fc:a9:53:4a:e8:6c:ab:51:75:08:28:9e:7f:db:b3:
18:89:71:af:b8:84:7c:16:6c:5b:6a:8e:4f:00:c1:
11:94:7e:bc:6e:ac:c5:cc:12:b4:a5:15:25:1c:12:
d3:a5:c5:c4:30:31:12:d2:b7:0f:0c:9d:b6:11:7d:
50:46:1a:88:00:0a:b9:32:a6:f9:8d:46:a8:d8:43:
24:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F4:7B:63:28:93:B4:31:95:E7:C8:DE:17:F2:39:22:D7:46:7C:44
X509v3 Authority Key Identifier:
keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:10:bf:5c:e3:05:53:1d:fe:93:59:7a:2c:f5:d4:f0:56:40:
8a:98:20:cd:df:3d:84:6d:6d:c7:05:f2:70:18:da:33:43:6d:
32:72:90:e3:26:39:d9:4a:cc:ab:c1:7e:89:71:c9:c1:dc:cf:
22:a0:51:97:6f:f2:91:75:9d:8c:a5:57:c1:b7:15:9b:05:80:
f9:9a:c1:e8:b5:78:12:9d:f7:e3:19:f8:a3:09:b1:7f:d4:27:
8c:43:b3:7b:47:2c:1c:5d:a1:5b:45:6a:32:45:e2:e8:85:b2:
c2:4e:aa:a7:40:7a:a2:26:9b:32:f1:2e:33:c6:3e:2a:1b:df:
c4:8a:a8:ae:34:03:98:86:9b:eb:5f:c5:79:9b:bb:09:89:3e:
f6:e1:f1:5d:7f:3a:08:c3:9d:56:c0:40:a5:cf:ea:a0:7c:38:
94:01:c1:3a:e9:1c:59:28:36:6f:ec:1c:e7:00:3e:28:b4:42:
2e:cd:8e:00:f0:12:3e:9c:e8:71:47:cb:e9:8a:fb:3b:f6:0b:
fc:81:23:d9:73:90:45:57:02:ce:f3:01:d0:22:d9:b8:54:b6:
80:1d:70:9c:e6:91:63:80:c5:8b:7b:6d:aa:4e:20:f4:bd:a4:
fc:6a:00:f5:d3:27:c4:0f:4b:03:f0:f0:cd:39:2c:44:cd:82:
e4:44:9c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:16:10 2025 by rpki-client