Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: LF7Pxx4JU2Qi5ntxOpzv44BrIl8jL0iwZgR3td2E75s=
Subject key identifier: CF:09:36:62:87:EC:71:8E:40:50:B8:CC:3E:AE:6D:F1:5C:4B:E8:F3
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 0196CE05D3CD7E55E0596A8A1DCB02618647
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 150B
Signing time: Wed 14 May 2025 09:00:10 +0000
Manifest this update: Wed 14 May 2025 09:00:10 +0000
Manifest next update: Thu 15 May 2025 09:00:10 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: p9gnMdK1fd1rRbjt4c/qQ4pEU37AH/2jULZAEn/zfu8=)
2: LSDLxpYG9vUS-ynb5NuKXC0hxwk.roa (hash: iU/GAJxLreLcqJkb0jyy5NFNWuEEVZB548A5w51V+6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:05:d3:cd:7e:55:e0:59:6a:8a:1d:cb:02:61:86:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: May 14 09:00:10 2025 GMT
Not After : May 15 09:00:10 2025 GMT
Subject: CN=cf09366287ec718e4050b8cc3eae6df15c4be8f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a7:34:fd:21:da:c5:2b:8d:46:cc:3a:ff:7d:
91:bf:2b:f8:0d:a7:06:35:21:bc:0d:0c:1c:94:35:
88:70:d7:26:e1:5b:d9:48:7c:f5:b6:41:e1:a9:d7:
49:33:91:cd:8f:75:21:0d:f4:c6:dd:f7:8b:ed:8f:
dc:fe:08:f0:11:61:a3:25:fd:b8:01:bb:38:b3:04:
4c:79:f2:9f:d1:be:d7:bb:9c:74:5b:56:74:a6:96:
4d:c0:cb:88:b6:bd:cb:38:9e:53:c6:2e:49:dc:89:
d2:66:b9:ed:46:5d:94:53:79:b4:b2:2f:4d:9d:ec:
b6:75:6e:46:12:84:ac:53:56:6c:e4:36:35:d7:26:
21:d2:30:d1:b2:31:63:0a:d2:89:9b:ee:31:d0:85:
1f:bd:ec:fe:f5:da:a7:0a:02:f9:1f:3a:21:0c:02:
c9:80:72:12:ab:b6:11:78:d2:9a:fe:4f:14:a7:3e:
52:a0:8a:0c:2b:f4:0c:88:25:5f:f1:2c:20:93:4f:
91:93:07:aa:b9:df:c1:ca:25:91:01:ef:ad:dc:f9:
b9:a1:8d:7f:2f:49:a6:8f:d8:27:9c:34:ea:90:eb:
ef:d0:aa:32:ec:fc:92:60:7c:44:60:ad:1e:f4:0b:
06:e6:7d:a0:d7:ab:5d:65:73:89:10:b6:6d:77:95:
d0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:09:36:62:87:EC:71:8E:40:50:B8:CC:3E:AE:6D:F1:5C:4B:E8:F3
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:0f:a9:b6:67:19:f9:f0:c2:de:95:b2:79:ee:4f:98:cf:4e:
1a:4a:34:87:00:c3:08:6a:a7:1e:7e:71:18:e9:00:84:10:98:
1b:9e:d9:00:79:af:d3:84:d1:f4:5c:3d:fd:49:d7:32:ed:ea:
21:9c:10:2e:e6:f0:14:55:2f:cc:81:d9:58:28:95:d2:39:e1:
fe:cf:8f:b4:dc:d3:51:1f:c6:a3:47:fd:d7:7b:7c:34:65:7c:
6c:cd:0d:72:5f:1b:3e:3c:6c:9e:10:a7:60:b6:c2:21:fb:9c:
a1:7b:96:cb:bb:23:4f:0b:c2:e2:52:6c:58:8b:4a:d1:fd:a7:
bc:49:a6:1d:79:b4:fa:ab:5e:5d:e8:38:c3:c1:b8:d5:b9:16:
61:b4:63:28:27:f0:b2:d2:f7:c2:39:1d:34:67:1e:79:3b:68:
bd:bc:c3:48:19:96:a2:dc:af:aa:4a:05:a6:c0:ff:57:b0:3d:
19:bc:fe:54:cf:8e:d0:c4:e6:82:cd:c8:74:21:4f:22:92:65:
d8:3f:3c:ed:7d:b8:40:39:aa:87:44:60:69:f2:50:90:0f:31:
52:76:03:92:ea:c6:a9:2f:e0:15:99:50:20:74:b9:d6:d7:b8:
01:8d:d5:b9:91:63:97:7e:c8:9f:1f:43:42:fe:e7:6f:ff:bd:
a2:80:7c:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 16:09:15 2025 by rpki-client