Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
File: LofD1fRf7zjBBbk91E3ST1vuYOc.mft (raw, json)
Hash identifier: oQBLRmpus4DnHhwdbi+akAYZlKWdMqNWdiE4Tg6uHts=
Subject key identifier: C6:E7:9F:30:D9:D9:36:1A:AF:58:CC:83:A6:B7:41:8E:6E:E9:65:13
Authority key identifier: 2E:87:C3:D5:F4:5F:EF:38:C1:05:B9:3D:D4:4D:D2:4F:5B:EE:60:E7
Certificate issuer: /CN=2e87c3d5f45fef38c105b93dd44dd24f5bee60e7
Certificate serial: 019677C36C3A6BD5D16C4999CB0A9E56FE11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
Manifest number: 0D60
Signing time: Sun 27 Apr 2025 15:00:17 +0000
Manifest this update: Sun 27 Apr 2025 15:00:17 +0000
Manifest next update: Mon 28 Apr 2025 15:00:17 +0000
Files and hashes: 1: LofD1fRf7zjBBbk91E3ST1vuYOc.crl (hash: EdGykpjPTwqdHvHF5xIBmeslicmtE3pfieuzjkDyKbk=)
2: QDqzI6mtk0OSKHPd6aEPhi6zaB8.roa (hash: EsH+qC6DrpZNrpMwjRlDLqXBAg493TRAVaOfxpJfUMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:c3:6c:3a:6b:d5:d1:6c:49:99:cb:0a:9e:56:fe:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e87c3d5f45fef38c105b93dd44dd24f5bee60e7
Validity
Not Before: Apr 27 15:00:17 2025 GMT
Not After : Apr 28 15:00:17 2025 GMT
Subject: CN=c6e79f30d9d9361aaf58cc83a6b7418e6ee96513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:03:dc:3f:69:c6:7e:a8:c3:ec:5a:9a:62:0b:
c0:b9:7d:a0:a6:b8:e0:bf:55:97:aa:d7:ba:46:42:
c8:e9:ed:b4:3e:12:b6:9f:2e:e1:08:cc:b2:76:30:
5f:c0:7d:0f:b3:4a:0a:05:04:15:16:7a:e7:5b:74:
f8:77:d7:84:2c:4d:ce:36:ba:1e:22:f9:1f:5b:cf:
1f:b0:83:e9:4c:f4:09:e3:dc:1c:7f:7e:f7:59:08:
54:cf:a8:09:d5:4d:bd:da:ee:3f:6c:7c:b9:5f:5b:
e4:0a:e1:ea:19:c1:cb:65:84:df:b9:57:00:96:a4:
0d:70:c5:f1:82:27:ac:f7:56:3e:12:a6:f1:6a:c9:
e4:aa:81:29:86:e3:0c:3c:f1:cf:d9:1d:60:20:06:
d9:16:74:06:ed:46:1c:44:32:c3:1a:47:d1:61:ca:
2d:df:54:16:04:7a:cc:76:63:8e:70:1e:26:1a:81:
88:b3:fb:1d:78:79:73:ac:99:b1:d2:52:c3:ab:df:
a2:76:8c:db:f7:bd:6f:69:b6:04:78:f8:67:41:6f:
11:03:bb:55:92:58:27:46:e5:85:6e:ba:d1:3e:c9:
79:3a:9a:d6:12:ef:79:35:fa:fc:8a:58:d3:41:c4:
92:6a:07:41:3b:8c:c1:ef:c4:fd:18:1f:14:9c:44:
24:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:E7:9F:30:D9:D9:36:1A:AF:58:CC:83:A6:B7:41:8E:6E:E9:65:13
X509v3 Authority Key Identifier:
keyid:2E:87:C3:D5:F4:5F:EF:38:C1:05:B9:3D:D4:4D:D2:4F:5B:EE:60:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:e3:2f:02:01:c1:3a:3f:67:e0:a0:b2:8b:9f:32:58:6f:1d:
32:78:4d:e4:e9:7a:24:41:ac:a0:5a:a0:23:29:f7:42:ab:b8:
e8:3c:fd:82:d6:63:48:90:49:61:71:d4:ec:fd:95:57:92:68:
b4:1e:92:1e:d8:66:8c:15:3c:50:97:d8:63:6d:7c:c5:06:a4:
0a:f4:8f:f9:07:8a:08:9c:e2:54:53:19:68:90:68:da:09:d6:
fc:f4:5a:f6:c5:6f:81:69:d3:f3:32:37:1f:cf:74:af:4b:f1:
4b:58:1b:fc:39:52:f3:c9:51:1b:25:c0:9a:11:bc:ef:ae:5f:
92:2c:32:cc:ed:6a:88:86:4e:d8:07:f9:b8:ac:49:75:c8:d0:
a6:61:b8:49:8a:b5:1a:ca:97:4f:9d:91:f9:79:b3:82:8f:ad:
44:08:4a:35:e0:1e:4f:35:e1:f9:13:a9:91:e0:55:09:98:00:
29:e6:b3:cf:ce:d0:e8:6a:df:d7:64:99:ee:3c:d5:9d:87:a2:
cf:ff:61:8a:e3:be:96:2d:ed:c0:6c:a1:96:ac:83:e7:0f:da:
71:ea:bc:68:da:d1:48:65:f2:c7:4c:cc:a8:69:a5:4e:5e:c5:
5c:cc:66:32:b4:61:37:3f:1d:ef:84:70:cb:ce:b0:ce:7d:49:
8a:3e:cd:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 00:03:44 2025 by rpki-client