Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
File: lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft (raw, json)
Hash identifier: 9ZBDaiJSHtnO9ro4bgJlotdMjS9tscLHbodIlV0NCko=
Subject key identifier: 95:EA:C8:C6:7C:BC:71:74:BB:87:8E:E9:41:A2:7B:9E:A2:59:54:3B
Authority key identifier: 95:46:46:5C:A5:B8:6C:25:A0:2E:52:EC:BF:04:C4:CF:BC:07:65:4D
Certificate issuer: /CN=9546465ca5b86c25a02e52ecbf04c4cfbc07654d
Certificate serial: 0196CA60733EC2780BCB91E85A9C04C63C17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
Manifest number: 0385
Signing time: Tue 13 May 2025 16:00:40 +0000
Manifest this update: Tue 13 May 2025 16:00:40 +0000
Manifest next update: Wed 14 May 2025 16:00:40 +0000
Files and hashes: 1: NWUftztBrG96_y2EzypECwRaWiE.roa (hash: iB3abFntFNLTwV5YoQUMjYIpTV58Rd0ggjc38BexLcc=)
2: lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl (hash: nHF3HU6vpseE+x8my3WMQfvGPPZvJrqfmC38WEN4uTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:60:73:3e:c2:78:0b:cb:91:e8:5a:9c:04:c6:3c:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9546465ca5b86c25a02e52ecbf04c4cfbc07654d
Validity
Not Before: May 13 16:00:40 2025 GMT
Not After : May 14 16:00:40 2025 GMT
Subject: CN=95eac8c67cbc7174bb878ee941a27b9ea259543b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:58:9a:7b:ec:bb:03:a2:db:63:e5:c8:d8:2e:
28:85:e8:87:37:22:0d:73:f7:ee:0f:b8:ad:16:6d:
09:a8:f3:fd:d5:a3:87:e9:ad:6e:cb:a8:43:fb:8e:
10:e1:49:0f:c4:53:12:c3:67:c6:3b:c9:15:35:a0:
df:ff:af:55:3b:da:b6:86:e5:04:2f:9c:a1:5d:ff:
3c:1c:a4:3b:cd:c0:61:4d:05:76:db:96:5a:44:3c:
6f:f8:48:29:23:39:f2:3e:53:ae:79:63:90:07:11:
d8:96:f0:f3:7d:bc:53:03:fd:55:eb:5f:eb:5b:7b:
4b:f0:dc:5e:cc:02:89:cb:2b:82:8f:ce:55:af:50:
9d:a5:b5:3f:fb:47:56:f4:43:9a:f5:43:b2:f1:df:
59:45:0c:30:55:4b:6a:79:e3:2a:48:d3:d1:bd:e2:
5f:43:a3:7f:c2:84:7f:d8:02:2c:56:b0:80:f1:a5:
c2:31:6c:17:03:08:93:2d:6a:85:87:38:16:08:43:
59:03:36:69:85:56:d3:73:03:98:2d:61:11:2b:52:
41:67:f7:ea:0c:5a:97:b4:12:a6:d3:98:00:10:a6:
cd:e5:79:e1:0a:fc:b4:ea:fb:89:34:c4:9d:1a:7a:
07:bb:75:0f:db:12:56:30:dc:3b:2f:cb:11:7b:d2:
e2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:EA:C8:C6:7C:BC:71:74:BB:87:8E:E9:41:A2:7B:9E:A2:59:54:3B
X509v3 Authority Key Identifier:
keyid:95:46:46:5C:A5:B8:6C:25:A0:2E:52:EC:BF:04:C4:CF:BC:07:65:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:fe:1b:38:c6:86:fb:97:3e:be:34:2c:f8:80:fd:82:ac:1d:
34:36:cb:91:73:8d:fc:5d:a3:e7:dc:4a:33:57:53:a0:16:24:
1c:ec:e0:b6:16:2b:7f:51:be:79:b0:a7:23:09:9f:8e:57:34:
0e:f0:95:9b:89:ff:c3:a3:29:72:15:b6:de:0b:cc:15:88:2d:
c0:6f:6b:a6:cd:82:36:87:5c:9c:8c:3c:fd:fc:f4:c6:e8:4c:
33:75:48:4b:26:81:19:dd:75:96:f1:f7:6a:dd:cb:d3:b1:8c:
1e:d0:f3:6a:96:8c:2e:d7:52:cf:5c:eb:cd:1f:be:2a:3f:27:
12:44:a8:ad:ed:23:67:93:9b:35:9d:40:a7:0a:b1:07:9f:86:
cf:72:ae:cf:dc:dd:03:fb:1d:69:f7:83:68:8e:bd:aa:56:14:
15:dc:8a:91:cf:5e:59:95:e7:02:bd:9b:b2:8d:60:59:23:26:
e0:da:ca:82:73:99:18:d0:e5:13:90:05:08:66:99:db:39:49:
f2:b1:0e:c4:32:d5:69:1e:0b:b1:46:2c:41:0f:e7:62:b4:44:
c4:86:09:5b:d5:e8:0d:48:24:b6:9d:81:a8:56:68:f7:4a:e2:
7a:a5:f6:13:90:12:9b:5e:02:c8:2d:04:ca:47:70:c2:d7:4d:
ba:00:52:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:21:20 2025 by rpki-client