Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
File: lQSgmkWW2BV9pp3DNGxavOTOThM.mft (raw, json)
Hash identifier: i/uhTkUb/dJqsZih0A2K5kE5A9z67uFLABkrM1d36hU=
Subject key identifier: AE:06:16:E0:39:98:8D:94:B7:BD:BC:C5:E3:17:23:EF:D5:55:E5:FF
Authority key identifier: 95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
Certificate issuer: /CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Certificate serial: 0196C38240B91EE3C5D63577726F1F0E6384
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
Manifest number: 0193
Signing time: Mon 12 May 2025 08:00:15 +0000
Manifest this update: Mon 12 May 2025 08:00:15 +0000
Manifest next update: Tue 13 May 2025 08:00:15 +0000
Files and hashes: 1: lQSgmkWW2BV9pp3DNGxavOTOThM.crl (hash: msb3TTwnK3+Dr/bwdbOD2d6cher5JN2URPhufjhja4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:82:40:b9:1e:e3:c5:d6:35:77:72:6f:1f:0e:63:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Validity
Not Before: May 12 08:00:15 2025 GMT
Not After : May 13 08:00:15 2025 GMT
Subject: CN=ae0616e039988d94b7bdbcc5e31723efd555e5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d8:2c:50:eb:34:78:5a:7e:5f:60:7b:00:7c:
b7:ef:91:69:64:3a:bd:79:a4:39:80:c5:a1:d5:bf:
b5:b6:6d:40:db:eb:10:e6:5b:6f:bd:21:44:c2:25:
23:61:a2:54:df:d3:89:bb:f0:32:4f:30:54:92:ea:
c6:73:c1:01:67:49:58:48:3b:80:47:2d:3d:c6:86:
4d:95:c9:cf:03:00:d9:cf:ba:2b:7f:db:08:1e:a2:
24:67:0e:f2:f5:28:3f:c7:f5:0f:a8:a7:cb:85:89:
a2:89:5c:28:39:37:4a:7b:65:cd:33:9c:51:04:a6:
b7:41:c0:57:2d:72:f5:22:f6:e9:3e:b6:16:a5:c4:
34:48:cf:0f:65:97:29:8c:f1:d9:3b:c2:e1:5a:dd:
0f:15:6c:35:20:79:34:a5:40:a9:9c:0d:22:97:01:
e1:2c:08:da:35:f9:33:f7:53:04:41:4d:fb:59:d1:
50:ef:af:ea:b9:a5:38:75:f1:92:3a:4e:48:9c:fd:
91:25:fc:af:a3:ff:44:8a:2e:90:aa:bc:dc:ce:99:
4e:fe:30:f4:21:15:6b:6b:94:43:c8:90:2b:69:b4:
6c:33:d6:66:00:53:56:b7:82:02:66:a7:7b:30:84:
77:c3:66:de:12:cf:53:0b:c2:48:af:b2:5c:ef:2d:
67:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:06:16:E0:39:98:8D:94:B7:BD:BC:C5:E3:17:23:EF:D5:55:E5:FF
X509v3 Authority Key Identifier:
keyid:95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:6a:2c:46:d4:77:8a:26:39:18:ed:0b:63:27:85:3b:a7:f0:
b7:84:8e:26:3b:5f:83:ab:6b:51:ef:24:e5:85:62:f6:6e:45:
0b:81:1c:07:d0:57:c6:6d:f7:33:33:ca:23:3e:67:b0:3b:c2:
e8:79:6a:ca:a1:09:37:d6:00:26:7f:da:34:48:50:79:b7:61:
21:f2:e8:2c:14:3d:88:c1:76:1b:27:c0:eb:a5:d6:50:69:b1:
b7:bf:d5:0f:ad:91:cd:c6:be:29:04:ce:d5:03:b6:e5:e5:18:
86:e2:7d:3e:eb:0b:35:1e:da:d5:b3:ec:1c:99:a9:04:52:9b:
b2:09:94:49:56:da:27:50:90:56:59:b8:39:f6:dc:e7:33:13:
f0:92:a3:50:02:cf:db:17:df:c2:46:d3:1d:c9:01:f1:6e:8b:
e0:d9:1a:1f:7e:22:fe:c3:d9:98:62:62:f5:06:a1:be:db:31:
d7:bf:a5:fa:5e:e7:10:cd:3a:2a:70:5a:0b:6e:d7:1e:03:de:
ce:d1:eb:ba:7c:97:d8:e7:ef:e9:8e:34:b8:5a:0d:0d:2e:da:
22:98:ee:89:a3:02:7f:23:e2:22:12:c5:9c:b8:bb:16:76:29:
7d:1c:24:5a:f9:27:22:80:cd:b1:6f:2c:4b:13:0e:e4:69:29:
10:b1:b1:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:02:39 2025 by rpki-client