Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json)
Hash identifier: jRM6UB04G7wV/x8z9AtOTNYtpXI6oId044USSVyLh5c=
Subject key identifier: 7B:F7:C8:65:A4:82:B1:A0:34:6C:69:21:B4:76:14:D2:02:69:F5:04
Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066
Certificate serial: 01969F07FE80DA3986DBB5F17F028066AF69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
Manifest number: 1524
Signing time: Mon 05 May 2025 06:00:23 +0000
Manifest this update: Mon 05 May 2025 06:00:23 +0000
Manifest next update: Tue 06 May 2025 06:00:23 +0000
Files and hashes: 1: alfL1bRTQjOY-E2KjHP8N4Ulue0.roa (hash: ybSj2AdhAA+9tbRInXwXzkVBfMf3WHllqssGw6/wFUI=)
2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: kbQnMQl+nB33eHw1k82iwxiaWOL06wjSu2EDDO7yaKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 06:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:07:fe:80:da:39:86:db:b5:f1:7f:02:80:66:af:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066
Validity
Not Before: May 5 06:00:23 2025 GMT
Not After : May 6 06:00:23 2025 GMT
Subject: CN=7bf7c865a482b1a0346c6921b47614d20269f504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d3:0b:0f:c5:8a:ac:51:b6:5a:05:bf:04:b6:
be:14:42:0a:38:c4:83:c5:59:a0:ad:df:4c:3f:42:
0b:e2:37:62:32:db:a5:0d:2a:72:e4:76:d9:85:94:
c6:80:1b:5a:ff:da:4b:27:a5:cf:73:06:e4:00:64:
b9:05:0b:12:6e:20:0c:ee:29:66:b0:99:54:c0:b0:
8c:6e:3e:e0:d9:35:ef:52:5b:92:4c:14:58:1d:d0:
73:ba:1b:d9:c5:9b:f2:81:1f:cd:39:5c:d2:ba:01:
ef:74:39:8b:44:35:6f:4e:33:4e:f2:57:c8:f0:2c:
ef:64:b2:50:65:14:bd:be:88:79:7c:27:32:1a:1b:
58:c5:13:db:2b:db:72:ca:74:b5:9b:d7:5b:12:af:
0f:7b:b3:d4:d7:2a:70:a0:11:93:e3:a1:ac:e9:53:
26:84:b6:77:75:14:be:fd:08:26:4b:b6:34:54:aa:
2f:c4:37:42:82:16:c8:c9:f7:91:12:50:89:16:60:
5a:6f:7e:ec:49:5e:bb:38:f1:41:9c:27:a1:aa:d7:
c5:d6:73:91:12:8d:58:8a:a2:aa:91:58:ad:39:bb:
f1:0c:44:7e:96:95:4b:98:cb:db:98:2a:df:01:7e:
53:2d:b0:3c:b4:af:b0:e3:6b:7c:dd:7e:8d:30:75:
0d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F7:C8:65:A4:82:B1:A0:34:6C:69:21:B4:76:14:D2:02:69:F5:04
X509v3 Authority Key Identifier:
keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:8c:73:7c:6e:59:23:e7:5d:90:ed:3a:28:3a:33:1a:9b:14:
ad:8d:4c:8d:7e:e0:cb:75:49:a2:7c:a8:a9:ea:37:2f:4a:11:
86:2f:cb:c4:b9:e3:b7:3e:3f:ed:6e:35:bd:b0:54:5c:36:f2:
d6:26:6c:a8:cb:a3:83:f6:66:a1:72:42:40:22:ff:99:aa:e2:
fc:90:a9:3c:6c:dc:15:41:af:19:e4:3c:bc:f6:1e:19:36:47:
1c:3f:20:dc:90:ed:67:e0:20:21:9c:e9:e8:c2:43:57:cd:30:
1c:25:bf:59:26:8f:74:64:82:40:f4:f9:48:d7:95:24:3d:8d:
76:30:3a:f2:a2:de:fa:2f:c0:f6:32:85:8a:51:a5:a0:be:0d:
62:22:4e:46:1f:fa:90:63:db:df:f3:26:22:46:a3:fb:58:b2:
1b:c1:39:ff:fc:f5:3c:0b:0c:d0:cc:f2:da:ac:d5:c4:0d:92:
81:44:92:fe:00:52:1f:d6:0c:84:9e:41:37:53:a1:1a:26:90:
a8:58:17:bc:7e:eb:c1:ee:b0:0e:59:cd:c5:04:dd:3c:32:98:
ef:ba:d1:40:5d:33:4c:29:a3:9f:c2:9e:88:f5:dc:99:e6:75:
0a:1e:13:69:62:50:b8:c7:bb:f1:e0:62:11:c3:99:30:0f:a7:
09:4c:0b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 15:31:14 2025 by rpki-client