Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
File: lkptHqRrxAuqMavE9ByQZn7-Nu0.mft (raw, json)
Hash identifier: t4xQ7SbCqBmrl4LCosZeFqulcYU3ToVN6mIFZtA4d2A=
Subject key identifier: 67:B3:2D:14:CD:49:80:D2:DB:E9:C8:29:CB:D0:3B:FD:7E:7E:84:6A
Authority key identifier: 96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
Certificate issuer: /CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Certificate serial: 019677FBAAE2C6F398198383C7C4A2BF7937
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
Manifest number: 05DC
Signing time: Sun 27 Apr 2025 16:01:44 +0000
Manifest this update: Sun 27 Apr 2025 16:01:44 +0000
Manifest next update: Mon 28 Apr 2025 16:01:44 +0000
Files and hashes: 1: lkptHqRrxAuqMavE9ByQZn7-Nu0.crl (hash: io0gpabOBbPh9+6kH0YsoE0dkpljWo4R9OZ+q3wqURM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fb:aa:e2:c6:f3:98:19:83:83:c7:c4:a2:bf:79:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Validity
Not Before: Apr 27 16:01:44 2025 GMT
Not After : Apr 28 16:01:44 2025 GMT
Subject: CN=67b32d14cd4980d2dbe9c829cbd03bfd7e7e846a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:32:23:ff:fa:9a:26:49:3b:d8:b2:65:13:6a:
96:95:c8:42:c8:42:fa:52:ff:60:26:6f:b3:ec:23:
89:64:83:ae:79:1a:94:7f:95:98:e8:dd:c1:b5:14:
5a:85:13:5f:ed:51:e2:6d:72:8b:9f:13:ef:fe:b6:
de:81:b6:bc:7e:55:98:09:aa:da:2f:1e:0a:ea:af:
74:d9:ad:f7:49:8d:15:ba:4a:61:0c:d6:79:34:2a:
ce:2b:78:df:6a:f7:76:6a:8f:7d:29:95:35:70:78:
de:6c:0e:3c:84:5b:6b:4f:3a:30:8c:fb:d6:81:fe:
58:dc:e2:38:99:08:da:ee:61:d0:4a:90:25:e9:ef:
25:89:05:42:b5:17:99:bb:c2:37:9c:83:06:7b:62:
2c:9e:d3:45:ac:96:75:4e:07:c1:8d:87:55:2e:33:
1f:a9:eb:60:b7:f0:0e:ca:ef:12:6f:2f:08:74:ac:
9d:34:4f:21:d6:4e:a5:cd:d5:e7:da:00:eb:14:93:
f1:8c:0d:f4:25:4f:0a:01:c9:d2:4b:f5:8a:1c:27:
13:d0:93:4a:12:56:98:a8:18:61:6f:a7:f1:7e:70:
f9:9f:5c:e8:40:aa:e5:6b:68:bb:51:15:38:3f:1b:
f9:92:fe:27:d9:3e:a1:cf:86:4e:b1:e9:38:cc:18:
50:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B3:2D:14:CD:49:80:D2:DB:E9:C8:29:CB:D0:3B:FD:7E:7E:84:6A
X509v3 Authority Key Identifier:
keyid:96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:32:3e:15:60:24:60:51:82:86:b3:4f:4c:c2:e7:7c:07:66:
e4:40:02:3e:26:9e:e5:8f:af:42:31:5c:f4:ee:c2:c8:e5:8e:
21:a8:c9:58:c7:d7:8a:75:0e:0d:59:02:74:b3:bf:bc:07:ac:
f6:29:c9:3b:4f:2b:b7:c9:86:80:df:57:11:e3:78:76:69:a2:
42:37:7a:f5:95:e6:7d:78:0a:62:13:56:d9:66:24:fc:a5:ca:
d7:fa:7d:a7:0b:a3:08:32:da:c6:40:b6:77:4f:5d:c6:5b:85:
d3:69:3b:a8:4e:b8:15:e0:24:35:af:2b:30:63:e2:95:58:60:
84:86:67:08:af:f7:4b:d0:00:c7:33:a8:85:d2:bf:99:3c:d3:
15:bc:9e:dc:b5:04:0f:a7:c8:d9:f7:f5:27:b4:94:ba:dc:57:
f3:40:51:ac:48:bf:7b:89:93:d9:f6:95:ac:71:64:d6:8c:1e:
b0:85:73:2f:23:99:b6:ee:4f:f1:99:1b:9e:f4:f4:72:a8:2c:
fb:ec:df:de:db:41:d2:3c:e3:ea:70:2e:bf:f7:e1:10:e9:a6:
cf:53:f4:29:e8:33:a9:0d:4d:bc:7c:78:6b:0a:0a:ce:a3:5d:
a6:1e:2d:7d:ab:da:b3:28:57:c9:fd:ad:35:38:df:e3:7e:99:
d9:be:bc:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:04:55 2025 by rpki-client