Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
File: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft (raw, json)
Hash identifier: wW781DWVMP8NJeEdWGdAZ7gXsTgEiDMJ8scP5/vqiXA=
Subject key identifier: 01:4F:73:81:22:B6:59:5E:D8:7B:2B:05:69:8D:6E:06:D7:14:79:5D
Authority key identifier: 94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8
Certificate issuer: /CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8
Certificate serial: 0196756759237D6C6B9B7C44D5677560FE2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
Manifest number: 150F
Signing time: Sun 27 Apr 2025 04:00:29 +0000
Manifest this update: Sun 27 Apr 2025 04:00:29 +0000
Manifest next update: Mon 28 Apr 2025 04:00:29 +0000
Files and hashes: 1: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl (hash: tHVZF99CroQY//ypVlusCkzb8CjA7XYmOYFXqSvMQHo=)
2: q0ApgfDR6MUFo5SmPdczTTS0Xsc.roa (hash: scfCeq11ilCac8clsFq/zmbEUDIqGanHD8OiJk8YEiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 04:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:67:59:23:7d:6c:6b:9b:7c:44:d5:67:75:60:fe:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8
Validity
Not Before: Apr 27 04:00:29 2025 GMT
Not After : Apr 28 04:00:29 2025 GMT
Subject: CN=014f738122b6595ed87b2b05698d6e06d714795d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fb:98:a4:6a:b7:cf:27:7d:da:7a:17:fa:9e:
d8:6f:0d:57:65:12:cc:04:16:7b:86:38:53:2f:50:
34:88:bb:4e:ac:53:9a:b8:e1:b8:4f:34:c3:21:bb:
e5:4f:6b:26:02:76:be:89:94:57:a1:03:c5:6e:72:
8e:0d:e5:1a:99:5c:d6:38:e2:0e:0f:dc:22:75:83:
2c:1a:5f:49:ea:44:a2:23:fc:dc:41:36:43:8e:2c:
43:bd:03:db:26:b1:16:1e:bd:d9:f7:7d:39:ea:19:
8c:43:03:03:57:36:0e:bb:85:7a:ff:96:1d:9a:d8:
4f:8c:3e:d4:f2:cc:32:5d:cc:9e:d8:32:7d:8d:c4:
f4:8d:5d:0e:55:b0:c5:bb:b6:10:59:f5:f2:9b:92:
43:c2:be:66:c0:f5:4f:84:cc:19:2b:e8:d3:be:9a:
e7:c7:db:64:3d:bb:57:44:b5:ea:a4:b9:d2:9c:04:
cb:a7:a1:57:de:d6:15:8a:6f:04:ef:aa:49:29:f3:
1b:42:b1:e8:be:d4:af:3e:c8:af:ec:b9:17:aa:6c:
1b:ed:bd:04:31:7b:e8:30:19:b0:d3:56:8c:79:4b:
a7:38:e1:83:b4:de:9e:ce:bb:43:e3:af:d8:06:da:
6a:f1:84:de:e6:3f:55:25:6c:1a:b4:4e:42:a0:ed:
b5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:4F:73:81:22:B6:59:5E:D8:7B:2B:05:69:8D:6E:06:D7:14:79:5D
X509v3 Authority Key Identifier:
keyid:94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:ca:44:53:fc:43:49:a7:f4:c1:26:18:7a:31:72:db:3b:67:
3f:f2:81:df:93:43:a3:73:18:87:44:8e:6d:a4:1a:c4:f9:d0:
2e:bd:c2:3a:71:42:57:71:61:55:14:92:96:a4:06:e3:c7:6d:
6e:19:a5:bd:d6:12:98:e7:38:d4:7c:c7:bb:b5:e3:62:45:98:
b2:a6:79:d7:b3:0e:67:e5:89:ee:32:ea:c8:a7:20:4b:16:36:
46:4f:0e:97:fe:71:ca:e9:bb:a0:df:0d:96:96:23:63:de:5e:
58:68:83:3d:03:d9:83:b9:0b:6d:a1:e6:b2:f9:d9:f8:7d:fb:
c0:b7:cd:f5:06:70:42:de:b3:e6:f5:5f:ba:d5:2d:85:24:4d:
75:5b:6a:41:05:37:63:a2:cb:35:00:5c:ee:c9:b1:91:6b:6c:
b1:4d:3e:93:47:b9:74:bb:fb:f3:7f:55:24:aa:86:45:30:89:
6c:03:e9:9f:4b:45:37:c7:b3:3a:d6:e7:62:b6:2b:de:22:99:
97:8c:7a:0c:90:d8:6b:fa:37:93:6d:68:e1:21:2a:81:85:af:
b8:d3:c8:eb:3e:c5:24:88:ca:31:5f:65:4e:9c:c6:b9:07:33:
87:73:19:e2:ec:90:ac:41:e5:5a:24:ec:3d:0b:b3:f7:ac:48:
55:cb:2d:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:55:08 2025 by rpki-client