Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
File: PtWjaKny40iTSpFIiEVZQ2I_lus.mft (raw, json)
Hash identifier: bPQQ8ieq25ilU/P04lVz9ocf+82YYBU7Qgs885yofCQ=
Subject key identifier: 86:A5:67:77:A3:C7:C4:E2:7F:9C:D2:86:6D:0B:D5:91:FC:86:D6:6E
Authority key identifier: 3E:D5:A3:68:A9:F2:E3:48:93:4A:91:48:88:45:59:43:62:3F:96:EB
Certificate issuer: /CN=3ed5a368a9f2e348934a914888455943623f96eb
Certificate serial: 01969116112324D40EF958AA735957651D51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
Manifest number: 1100
Signing time: Fri 02 May 2025 13:01:04 +0000
Manifest this update: Fri 02 May 2025 13:01:04 +0000
Manifest next update: Sat 03 May 2025 13:01:04 +0000
Files and hashes: 1: PtWjaKny40iTSpFIiEVZQ2I_lus.crl (hash: /lOyZPQNY2b+b5hbRqZJiPg4xW9rwxo8/DnHa/Urm1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:91:16:11:23:24:d4:0e:f9:58:aa:73:59:57:65:1d:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ed5a368a9f2e348934a914888455943623f96eb
Validity
Not Before: May 2 13:01:04 2025 GMT
Not After : May 3 13:01:04 2025 GMT
Subject: CN=86a56777a3c7c4e27f9cd2866d0bd591fc86d66e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1b:19:26:80:71:21:a3:fe:eb:37:7b:29:94:
4a:4b:b8:41:12:54:60:d2:32:f1:d0:9c:85:bc:93:
14:2c:03:94:41:9a:19:ee:3e:94:53:dc:6e:40:0a:
46:36:38:82:e1:c2:62:75:0f:48:6f:b2:4b:55:c1:
3e:eb:27:67:44:23:85:98:43:ed:89:fd:1f:9b:1d:
a3:4c:05:42:7b:01:77:fe:23:0c:3b:ce:30:37:f5:
29:a7:18:fa:ea:5c:92:dd:93:51:79:e0:59:63:a5:
24:6d:3d:80:44:fb:ca:7d:d7:f0:db:d1:75:1a:c8:
43:f7:46:dc:d7:4f:18:e5:c1:d1:57:60:bf:50:a1:
85:4e:73:9b:5c:cc:ff:8e:65:8b:2a:38:30:8d:cb:
a8:9e:6a:a7:ac:ea:cf:11:10:cd:ec:a2:83:12:5a:
1e:28:85:65:40:2a:74:5c:06:7d:9b:a9:b7:45:be:
27:7e:e9:38:84:bf:19:c7:aa:ad:04:04:c1:08:69:
5f:38:65:f2:eb:7b:20:d9:d6:55:4d:5e:64:f4:a0:
69:a9:13:87:25:46:b2:e8:fa:2d:a6:fd:ee:00:1a:
85:11:ee:5e:7a:8f:95:99:b7:0d:12:1b:c6:90:e8:
cf:0d:3d:08:91:8b:72:3d:9b:a0:4f:84:4d:76:99:
59:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A5:67:77:A3:C7:C4:E2:7F:9C:D2:86:6D:0B:D5:91:FC:86:D6:6E
X509v3 Authority Key Identifier:
keyid:3E:D5:A3:68:A9:F2:E3:48:93:4A:91:48:88:45:59:43:62:3F:96:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PtWjaKny40iTSpFIiEVZQ2I_lus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c70c4-9060-4ffc-8ad3-6f017e1f1eed/1/PtWjaKny40iTSpFIiEVZQ2I_lus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:85:ed:ac:59:b5:56:78:a0:20:48:05:28:8b:68:92:56:69:
dd:31:21:26:5a:ad:42:0b:ef:10:28:54:25:5c:ab:d8:97:cc:
07:ee:f8:d2:1e:6f:46:2f:dc:00:bc:7c:0e:6b:9f:0a:bf:02:
06:92:5d:79:69:c4:55:fd:fd:8a:80:c1:84:27:d7:08:96:18:
8a:8c:f1:78:28:88:10:fb:b9:7e:7b:70:e1:2d:d8:88:4a:a2:
67:a8:88:b8:1e:fb:5e:ee:80:4d:75:b0:93:f2:16:01:e6:cb:
c9:69:ae:4c:6f:11:43:df:99:6c:c4:7b:cf:b7:36:d5:a2:7c:
e5:5b:93:fc:85:67:79:09:a3:21:cb:75:3a:95:ca:ac:4a:66:
85:71:47:f3:0e:70:31:aa:26:f5:09:67:a4:9d:24:0b:19:44:
38:da:29:68:a5:b3:c1:44:19:f4:5f:68:37:f8:62:de:1f:41:
4a:df:df:92:ff:d7:89:fd:77:65:a4:c8:40:45:11:e0:94:0d:
b9:77:12:a6:8a:1e:78:ce:30:20:05:71:9c:94:88:1a:19:21:
be:e3:8f:f0:7c:93:34:2e:be:02:ec:5e:70:b2:f1:06:c3:01:
73:d5:b7:48:e7:1e:72:00:53:0f:36:1b:94:ae:80:23:25:76:
fb:2c:a3:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 19:25:08 2025 by rpki-client