Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
File: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft (raw, json)
Hash identifier: fhA6Mjx/E6idaBZyEfj3Q++caqgMjerBY+WJc869jw4=
Subject key identifier: 30:79:84:5F:DA:CD:C7:FE:0F:BD:27:2B:1C:5A:D2:E0:49:46:02:29
Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Certificate serial: 0196C6BA7AE17D313CDDB46660E5263FD88B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
Manifest number: 0622
Signing time: Mon 12 May 2025 23:00:32 +0000
Manifest this update: Mon 12 May 2025 23:00:32 +0000
Manifest next update: Tue 13 May 2025 23:00:32 +0000
Files and hashes: 1: cCGgeXQG7w7JJ0VVtoCaqK0Nuk0.roa (hash: OWS86sPN3Xs5u+J3GeHiIwJ0UACEogG9zbUxH/qhnWU=)
2: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl (hash: BntsNx08STmTod6EGgwguRi2GqRAIhjRAnJbMSvxCBE=)
3: x4XI86xuT3wsfzGO7m_2JB-s4p4.roa (hash: Dt7gE1TI/UXgmAj9V+d2Jv58edUR433oJyH6DVwQHcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:ba:7a:e1:7d:31:3c:dd:b4:66:60:e5:26:3f:d8:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Validity
Not Before: May 12 23:00:32 2025 GMT
Not After : May 13 23:00:32 2025 GMT
Subject: CN=3079845fdacdc7fe0fbd272b1c5ad2e049460229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:28:f4:09:7f:06:4c:6e:57:32:75:34:35:5b:
f3:bb:f1:42:6a:4f:72:6b:4d:18:cc:66:5c:7a:c2:
ee:ad:17:54:87:db:2d:2b:c9:d1:d3:9f:77:b7:7c:
59:a0:55:f7:32:db:f1:0f:83:6a:5e:e5:0c:a4:1a:
90:53:cf:36:de:6f:04:90:71:43:e8:60:c2:93:29:
8e:cd:a9:78:e3:cf:74:b8:d3:81:b0:7f:91:fa:cb:
55:d8:88:01:e1:76:42:a8:bf:eb:2a:73:92:c0:af:
ec:7c:14:66:73:b6:31:87:c7:cc:d0:f2:48:78:fd:
b1:b4:40:f7:56:44:9c:d2:22:15:91:31:43:cd:7c:
5a:84:e2:3c:da:34:66:53:c2:60:67:63:dd:71:4e:
f9:5d:75:1b:a5:3e:d8:0e:d4:3e:37:58:99:9f:df:
89:da:84:df:e6:b3:c6:ff:1d:04:54:45:57:2d:d9:
c5:01:c2:0d:c7:ae:65:34:2f:d8:25:8f:f3:33:f6:
8f:ef:03:30:e6:ab:7c:f8:27:6b:a9:db:8e:a7:cb:
92:eb:4c:15:11:08:08:c2:77:eb:0d:d9:8d:80:61:
39:7e:14:57:da:7a:15:cb:5b:36:3f:91:d6:89:7d:
c1:ba:68:d8:3c:ff:38:57:12:e1:1b:41:e6:7d:66:
6d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:79:84:5F:DA:CD:C7:FE:0F:BD:27:2B:1C:5A:D2:E0:49:46:02:29
X509v3 Authority Key Identifier:
keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:86:d3:2b:d5:c2:83:fa:30:c3:82:62:7f:b2:c8:c0:3a:c2:
7e:91:87:ff:ff:03:d3:e0:1e:ca:f3:58:76:6b:1b:7e:6c:79:
a8:8f:d1:f7:b8:b8:d8:f6:23:8b:08:9a:99:47:2b:3d:84:9e:
30:89:ba:5a:d0:19:7c:21:87:7b:5e:f4:79:d2:d3:84:7b:45:
73:11:c9:94:67:b7:4f:cc:5d:3c:1a:0e:93:44:ea:b7:67:e9:
f8:9e:2c:81:75:f2:94:c3:f0:16:fb:18:c0:44:98:d8:c1:1f:
d3:3d:ed:7f:6a:a9:4b:a3:e2:98:44:7e:c3:45:47:0a:51:95:
1b:1f:e5:7d:a1:51:55:ce:51:9e:1f:ec:23:0f:99:d1:e2:87:
0d:94:ba:e1:ae:4c:d4:01:74:d8:52:20:45:53:37:42:5c:4b:
40:4d:b3:e9:7e:98:ba:13:29:21:16:a6:9b:8d:74:17:9f:8e:
8d:ac:83:d8:25:8e:68:4f:e7:53:c0:d8:b0:0b:78:8a:06:2b:
59:a6:05:f9:19:61:53:ba:8b:24:67:0f:15:aa:66:f7:4c:23:
25:11:13:26:c5:9f:5f:37:89:4f:0d:17:ab:56:30:0f:09:f9:
b9:72:d0:8d:b8:6b:d6:a8:13:48:c8:98:48:11:35:a2:57:31:
b0:96:d9:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 06:24:11 2025 by rpki-client