Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
File: _lNCbiNhumZdjyW9PPrvwg69pIg.mft (raw, json)
Hash identifier: 6V7MF7yqmAtT2djG0qrqC2mnUOgAwYHLKnDiiL+XWA4=
Subject key identifier: 8D:BA:2E:83:B8:9E:80:56:30:D5:F0:97:BD:C1:FF:71:E1:C9:31:35
Authority key identifier: FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
Certificate issuer: /CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Certificate serial: 01968322B106C853CA13E294E244450608FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
Manifest number: 1228
Signing time: Tue 29 Apr 2025 20:00:10 +0000
Manifest this update: Tue 29 Apr 2025 20:00:10 +0000
Manifest next update: Wed 30 Apr 2025 20:00:10 +0000
Files and hashes: 1: _lNCbiNhumZdjyW9PPrvwg69pIg.crl (hash: 5M/GRy5REE0Qct6Mfp5RWwYmaPwdZPfum8GVfeSRTV0=)
2: haHKJrHUqbm5DebtyDYhDiGIt7A.roa (hash: Cz3j+Dv+gBqpFYF7WEnyvYZy+IRYW0vriwmXpF2DtvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:22:b1:06:c8:53:ca:13:e2:94:e2:44:45:06:08:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Validity
Not Before: Apr 29 20:00:10 2025 GMT
Not After : Apr 30 20:00:10 2025 GMT
Subject: CN=8dba2e83b89e805630d5f097bdc1ff71e1c93135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:31:54:08:f5:47:57:0b:ec:fa:e5:b3:89:2f:
73:b3:5b:7e:0d:3e:ed:fc:ef:ab:6f:db:53:af:94:
39:52:36:cc:fa:38:30:f2:ef:f7:50:c8:7f:8c:70:
84:0d:34:64:57:e4:60:60:61:34:f1:89:fb:37:43:
6e:e4:97:13:95:55:f9:d5:47:b8:ec:2a:e6:af:69:
7b:9d:c4:33:cf:36:d3:28:f1:09:95:cd:87:34:22:
52:7f:cd:5c:ec:3b:c7:a4:ab:c6:6a:54:d5:10:4b:
a5:44:67:e0:1d:ac:e8:ab:70:15:23:8b:b6:09:d7:
81:27:0a:09:11:39:ef:3b:d4:21:42:3b:63:d4:fd:
66:32:25:fb:8a:0f:78:fb:00:83:92:8c:83:fe:74:
80:6a:eb:01:28:c0:85:86:af:2d:06:11:2d:1c:38:
0c:98:d1:44:41:aa:ea:31:7a:93:4c:ee:86:8a:17:
ea:d1:75:b8:ce:80:64:6b:5b:8e:8f:d4:f5:2c:95:
9f:0c:f0:7c:6f:c4:af:52:a4:f2:1c:82:8f:bf:49:
6b:8a:d8:b0:c3:b4:7c:6b:a5:e9:25:06:c0:50:37:
3d:37:23:3c:a3:45:76:d9:e3:fc:84:95:e5:b0:3e:
35:85:b1:e4:23:27:fe:9b:cb:71:7a:7c:39:bf:7d:
c6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:BA:2E:83:B8:9E:80:56:30:D5:F0:97:BD:C1:FF:71:E1:C9:31:35
X509v3 Authority Key Identifier:
keyid:FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:19:b6:ec:7b:c4:fe:1e:ea:17:89:8a:f7:52:aa:0e:4b:21:
2f:76:4d:34:2e:47:17:48:53:34:5d:83:00:d1:d9:43:94:bc:
00:f6:1a:48:cd:d7:35:68:9a:25:15:ac:4a:5a:4f:42:ba:b2:
86:fc:73:09:42:43:65:4d:a6:77:e1:4a:a8:f5:1d:9c:d4:5d:
20:6f:6a:0a:cc:b9:a6:26:0a:ef:6d:9b:fd:bb:50:01:f5:39:
3e:ae:5c:05:7f:b1:00:7e:d4:ff:85:8b:4f:a3:ee:09:03:4b:
35:03:66:2d:21:2c:51:d3:de:bd:c0:2f:15:a9:6d:6a:5e:e1:
4b:7b:db:0b:e6:d3:af:b0:19:0a:4c:47:38:b3:42:37:0e:98:
33:fc:5b:30:30:c4:d3:e0:a7:79:3c:ec:88:e0:6f:f8:b1:ee:
4f:ba:ae:a0:e5:3c:1d:46:86:10:67:83:4a:ce:42:c5:b2:9d:
9f:a2:8b:3b:61:76:b4:0b:68:a2:2a:c9:67:79:74:b2:13:e4:
74:89:d3:c5:66:05:f9:20:33:f8:31:33:88:be:de:b1:13:e8:
8b:10:97:05:93:b0:c8:e6:7c:16:fb:9a:f1:6f:e3:f0:2d:86:
7c:7d:ea:62:3e:4c:b2:ac:59:c1:33:44:2b:d9:cd:32:c9:da:
33:e1:10:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 22:36:14 2025 by rpki-client