Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
File: L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft (raw, json)
Hash identifier: 7yKttnk+uYX9lbI+om9HsMixzp03/sgwa/9yn7bVKAs=
Subject key identifier: B5:4A:CF:DA:25:05:12:B1:FB:54:8B:42:75:56:AC:24:F2:90:B0:A5
Authority key identifier: 2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
Certificate issuer: /CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Certificate serial: 0196C7281BC1AA2253705DE045A1C6D4A394
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
Manifest number: 1538
Signing time: Tue 13 May 2025 01:00:16 +0000
Manifest this update: Tue 13 May 2025 01:00:16 +0000
Manifest next update: Wed 14 May 2025 01:00:16 +0000
Files and hashes: 1: L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl (hash: nVE679eDvJj+AV/NxeG0rv+yklzgzt+1C+42o5yx6eU=)
2: yz6_439OmIgbPGI_9SMl-hcB7SM.roa (hash: b+VVST8s13jCLV/LOSpCV8hcczaiQ8urh6lhnrg3Cso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:28:1b:c1:aa:22:53:70:5d:e0:45:a1:c6:d4:a3:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Validity
Not Before: May 13 01:00:16 2025 GMT
Not After : May 14 01:00:16 2025 GMT
Subject: CN=b54acfda250512b1fb548b427556ac24f290b0a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6a:3e:7a:86:22:ca:7b:f3:53:f2:f5:6d:d0:
11:49:ff:d0:6f:a6:e0:53:3a:64:59:04:ea:c3:ed:
37:13:72:c6:a6:c9:a4:6d:f4:46:83:28:11:f9:a2:
4c:1d:a0:0a:40:64:7f:eb:d8:cb:1f:19:16:7b:af:
8a:ab:11:5a:a6:01:66:e0:a3:fe:93:be:23:51:66:
6b:c1:43:14:3d:8a:63:63:10:06:28:01:cd:2c:30:
f1:99:1b:20:4f:61:36:e4:3d:67:8a:dd:e6:c3:4e:
12:fd:d7:79:68:31:fa:c0:32:a0:a8:1f:22:41:5b:
53:e1:ab:65:bc:28:75:81:8f:b0:e8:31:43:0a:6f:
ba:c3:e1:7d:68:9c:66:44:2b:d9:b7:39:d3:01:0a:
f5:c9:7a:86:c7:a8:f0:4f:e6:6f:e0:bc:22:54:c0:
33:9a:bc:03:40:05:ac:06:dc:78:70:e0:46:31:4e:
ed:e7:c3:5e:38:0d:43:bb:3e:7b:2c:5d:51:06:d6:
f9:e2:1c:b6:99:44:45:eb:49:56:b6:df:42:54:21:
c7:d9:fc:ac:f7:3d:19:97:c9:1b:1e:b0:28:4a:6c:
70:67:f6:d9:03:90:1f:2e:c9:ab:e6:33:81:c8:ca:
5d:9a:11:e8:e4:95:cc:26:39:48:bb:92:ae:f1:58:
af:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4A:CF:DA:25:05:12:B1:FB:54:8B:42:75:56:AC:24:F2:90:B0:A5
X509v3 Authority Key Identifier:
keyid:2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:74:48:ce:9f:f6:98:bc:11:11:d1:4b:e6:1c:f6:52:2c:38:
06:34:7e:db:6a:96:1e:aa:b6:06:6e:16:0e:d0:d2:be:be:1c:
6c:93:99:e1:66:b4:59:93:36:7f:72:9c:7d:dd:6c:2d:bb:28:
6f:e5:9c:11:ee:26:2f:78:d1:60:a6:47:5a:c5:ed:2c:24:eb:
9a:03:6c:f8:75:98:ca:ae:30:74:a9:a2:48:6a:a5:ec:67:01:
3b:17:c9:81:1a:cb:e4:97:ae:be:50:90:cc:01:48:65:c4:01:
6b:de:0f:40:91:48:fc:cc:4e:ab:41:69:dd:de:c5:43:38:d4:
46:04:bd:df:24:3c:90:f4:0f:51:c1:7c:cd:56:cb:ff:56:6b:
99:1e:5d:70:63:78:6f:25:77:fa:47:22:36:4d:1c:cc:c0:59:
3d:d9:4d:92:04:ff:24:f4:db:32:5f:5d:28:60:be:1a:2f:4e:
c0:77:9e:6e:1f:9a:40:ed:37:bf:8e:a6:55:ff:13:98:14:ee:
24:b9:84:f9:46:95:05:f5:29:86:c0:fc:44:aa:d8:cb:78:94:
24:f5:49:3d:b0:b5:a6:60:18:bd:cb:56:c0:42:20:65:6e:97:
c7:08:20:62:83:7a:03:aa:e9:9a:56:5e:47:65:e0:3d:d0:12:
d1:ab:59:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 06:33:46 2025 by rpki-client