Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: 2yIuk8rKr/ljiSRwT3d5iIuaiz37Gqe9VFUQVh4WOB0=
Subject key identifier: 17:5E:84:36:93:7C:AF:D4:2E:D3:41:57:97:3D:08:3E:10:13:92:C3
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 0196D1E30F71BA465A887B19D873074EF367
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0C9E
Signing time: Thu 15 May 2025 03:00:40 +0000
Manifest this update: Thu 15 May 2025 03:00:40 +0000
Manifest next update: Fri 16 May 2025 03:00:40 +0000
Files and hashes: 1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: lMC287nPmu8+HmgRz8BVqAfMVcfDdVPpLw2QLkxTVdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d1:e3:0f:71:ba:46:5a:88:7b:19:d8:73:07:4e:f3:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: May 15 03:00:40 2025 GMT
Not After : May 16 03:00:40 2025 GMT
Subject: CN=175e8436937cafd42ed34157973d083e101392c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ab:52:dd:07:4a:24:8f:fc:f4:ce:3f:0c:68:
a6:d2:d0:47:f2:e0:c3:d5:99:04:6a:41:c4:1a:65:
dd:7a:9a:02:9e:82:5a:33:2d:1b:34:6e:32:ce:96:
2a:68:17:44:79:a9:f6:8f:48:80:fd:ad:06:39:b3:
c2:38:6e:83:e8:a3:c6:a5:83:7d:cb:c1:51:d6:be:
b0:02:c6:39:81:55:39:77:1b:80:d6:1e:63:90:2e:
94:fc:bd:1f:90:7b:44:fb:b9:a0:36:0a:24:7e:06:
01:05:75:0c:02:d3:18:e2:ea:b0:39:25:89:b7:d7:
cd:9d:d5:ac:3f:28:4e:df:38:9d:58:ba:d0:95:a3:
f5:63:80:b2:73:9d:0a:3d:b7:58:c0:37:43:5f:7c:
b4:f5:a2:e6:9f:f6:12:e7:f2:e9:e3:28:8e:d0:de:
b9:ab:b0:b2:b5:e5:2a:a9:02:3c:f4:e5:aa:35:6c:
d6:6f:07:ad:fb:c7:19:d0:ee:c9:c0:51:01:e5:66:
18:0a:63:1a:22:50:d7:aa:76:bb:6b:ac:c5:c6:ec:
ab:eb:6f:08:4f:6a:d9:cf:65:10:ab:fa:bb:4a:00:
66:79:a3:ae:d1:8d:42:f3:7b:e8:0a:73:6b:78:b0:
a4:5a:8f:6a:c4:5b:0b:73:fa:ca:cb:25:66:79:3a:
b9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:5E:84:36:93:7C:AF:D4:2E:D3:41:57:97:3D:08:3E:10:13:92:C3
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:5a:99:1b:29:fa:d9:78:2a:2f:df:69:eb:67:0c:f7:8a:a8:
5e:95:57:fa:3b:5e:61:ed:b4:6a:a4:46:48:24:59:9d:4e:04:
d7:45:b0:35:3b:be:2b:21:af:d2:23:6b:e5:60:5e:5c:44:e9:
09:10:30:56:59:b1:db:de:50:70:e7:2f:fa:ef:d9:11:93:b1:
82:86:db:e2:64:04:92:fe:1c:d4:4b:a4:23:dd:b4:d9:a9:55:
1d:be:a7:85:2c:96:22:8b:c8:ad:cf:27:79:2f:43:09:65:77:
79:0a:79:2e:dd:7d:02:d4:d4:d6:c6:81:47:9f:4e:17:1e:e5:
cf:12:5b:f1:08:c3:cb:98:a8:0e:91:4a:9a:59:7b:b1:c6:d9:
01:14:56:26:24:20:db:24:32:e5:22:10:60:6e:49:15:a3:53:
e5:57:d3:5b:ae:67:85:89:c6:38:1f:37:74:ee:ad:01:a5:bc:
11:ce:8c:e2:7b:71:fb:70:a2:41:d7:ba:e3:f3:94:95:b8:a9:
86:4d:0f:c6:59:c9:8f:88:bf:7d:2f:24:32:dc:2e:3e:57:e4:
6d:28:e9:2f:e9:53:a4:cd:43:cc:1e:15:9d:dd:4d:e2:57:bd:
0e:3e:fc:1b:61:0e:dd:39:a4:53:b4:59:5b:74:a5:4f:9b:4a:
89:2e:72:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 08:52:44 2025 by rpki-client