Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
File: L42NDO68zXW2BrpJaPXHlG6NR8A.mft (raw, json)
Hash identifier: FSmoWcw6XvbKs8KdhL8aOxOPsEbO5AkMmvxsO2DkeXs=
Subject key identifier: E1:15:46:D5:28:21:68:40:7C:37:CB:2D:73:56:00:05:20:B2:E4:E7
Authority key identifier: 2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
Certificate issuer: /CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Certificate serial: 0196BF00B7C457C203D2E21BD905B4ABF9C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
Manifest number: 0B22
Signing time: Sun 11 May 2025 11:00:17 +0000
Manifest this update: Sun 11 May 2025 11:00:17 +0000
Manifest next update: Mon 12 May 2025 11:00:17 +0000
Files and hashes: 1: KvErQkIa-7bptS15YPSXyRA9CSc.roa (hash: oCFio8e2SnoXuYWAJDUSo/+OUQCG41H/KpmIERPwk3M=)
2: L42NDO68zXW2BrpJaPXHlG6NR8A.crl (hash: kuXMsI1/YbS+VrU3bj/MXEGQa7JM92r/KvhY5Ppy8KI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:00:b7:c4:57:c2:03:d2:e2:1b:d9:05:b4:ab:f9:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Validity
Not Before: May 11 11:00:17 2025 GMT
Not After : May 12 11:00:17 2025 GMT
Subject: CN=e11546d5282168407c37cb2d7356000520b2e4e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d8:47:35:3c:be:02:30:40:0a:2c:18:ef:c9:
b6:f7:77:69:2f:54:eb:3c:03:6f:0c:f4:6e:ac:ce:
fe:6a:15:f6:4a:71:5e:e4:07:da:3c:7c:1a:30:a9:
68:fc:e5:36:a3:f5:34:3f:40:b6:f0:85:ed:ad:6c:
05:db:a7:73:7d:a2:6d:4b:ef:8a:3d:1d:ab:ba:49:
95:0b:d9:d1:3d:44:62:02:76:f3:a7:50:bb:b0:c1:
53:11:f9:5a:2f:ab:fa:25:0c:c4:b9:d4:dc:2d:41:
a7:bd:b9:b3:70:f8:e1:0c:a3:d8:5f:51:bd:33:b4:
91:7e:a2:c0:34:72:f4:47:be:4a:f4:64:25:1e:0f:
e6:bc:4c:8d:17:e4:a3:07:a7:4a:3b:c9:e3:ae:c0:
3d:8d:92:64:ea:ee:22:45:cd:31:22:98:46:92:53:
b7:95:30:62:89:17:f0:e2:d2:a8:4e:88:a0:f7:4a:
85:49:6c:a1:28:22:d0:66:b3:54:78:e0:df:ec:09:
1f:18:a0:0a:a3:e5:1a:dd:f7:48:be:60:7d:d7:7a:
0e:e7:df:af:89:2a:24:d5:33:2d:c8:e0:71:8d:ab:
80:9d:63:34:8e:f8:4b:a0:fd:05:db:35:76:bc:f1:
0d:47:0e:9b:e1:7e:90:59:69:25:e0:54:55:e2:09:
9c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:15:46:D5:28:21:68:40:7C:37:CB:2D:73:56:00:05:20:B2:E4:E7
X509v3 Authority Key Identifier:
keyid:2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:3f:c8:f6:f7:97:8e:6f:8c:e9:78:ca:20:84:6a:76:e8:b5:
ea:1b:cd:bf:82:b1:26:4b:09:19:67:d9:7e:b3:0c:5e:16:93:
3c:97:88:a2:e7:a5:2c:c9:e0:36:fd:c1:c9:d6:47:d3:6c:ef:
8c:c0:dc:a4:b8:ef:c7:bc:52:f6:64:d4:a5:1b:ec:80:85:5a:
f5:b0:9e:d2:ab:47:7d:f9:30:30:ee:df:08:ab:bf:bc:ab:a5:
9d:46:35:8d:50:81:39:71:2d:aa:e3:1d:9e:ad:d4:f2:39:cf:
7c:0c:e0:d5:96:65:d7:72:46:e1:8b:66:b7:6b:59:5a:71:99:
40:5c:7d:13:d3:0b:27:d2:7c:ea:51:9e:1e:fa:74:a7:7a:d6:
8b:84:94:20:0a:af:da:d2:76:f4:8d:a3:b9:04:8f:69:51:1a:
06:74:3b:be:cd:3d:77:b0:11:cf:ad:2b:8a:36:32:88:e1:4b:
d6:e0:96:8f:d2:58:93:24:17:3d:d1:ee:9e:36:02:91:4b:90:
3c:9f:3f:2d:e2:cd:d1:cb:78:4e:02:b4:22:39:4e:3f:58:eb:
3b:0e:42:93:a8:56:61:ac:ca:1f:8d:7d:3f:f6:38:52:40:4b:
55:84:18:34:3a:5b:41:98:00:be:c7:d0:67:ef:7e:66:c2:67:
dc:dd:eb:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 16:57:55 2025 by rpki-client