Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
File: lefcaIWMBglOD0Moi0hlibSD4_M.mft (raw, json)
Hash identifier: qKlig1HnhmO50FgL20ypFOs5feDRgWtl9lK4aL67oxU=
Subject key identifier: 06:D8:17:BF:5C:B4:20:99:65:0D:A4:07:29:40:4C:7E:01:FB:81:98
Authority key identifier: 95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
Certificate issuer: /CN=95e7dc68858c06094e0f43288b486589b483e3f3
Certificate serial: 01967DC61149E0DDCABF0E72925E5872D8DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
Manifest number: 0C2E
Signing time: Mon 28 Apr 2025 19:00:54 +0000
Manifest this update: Mon 28 Apr 2025 19:00:54 +0000
Manifest next update: Tue 29 Apr 2025 19:00:54 +0000
Files and hashes: 1: lefcaIWMBglOD0Moi0hlibSD4_M.crl (hash: nKd5dPc3vkwlqcr/tJ+8kElIRT+4DZdUqFwgMZnCjJs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:c6:11:49:e0:dd:ca:bf:0e:72:92:5e:58:72:d8:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e7dc68858c06094e0f43288b486589b483e3f3
Validity
Not Before: Apr 28 19:00:54 2025 GMT
Not After : Apr 29 19:00:54 2025 GMT
Subject: CN=06d817bf5cb42099650da40729404c7e01fb8198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:49:71:2b:95:0c:a0:44:84:82:ab:0c:47:80:
42:5c:02:84:96:14:86:38:04:c5:8a:35:33:77:3e:
1e:92:cc:6c:d0:c0:82:93:81:21:b7:3d:c5:71:1e:
d9:d8:91:c0:07:dd:99:cb:a3:2d:e6:a9:e9:bf:2a:
f3:07:a3:f0:cf:7d:85:bf:15:3b:d9:a7:f4:ab:e4:
d2:5c:60:35:8a:94:41:30:2a:55:ae:6e:a2:21:81:
74:c8:06:68:15:2d:44:e8:29:8c:50:e8:40:0d:ba:
6d:62:54:ca:fd:5a:f1:1d:41:a4:bb:0c:66:48:b0:
fe:b2:34:22:28:60:09:c1:13:75:68:4d:53:90:2f:
e8:db:57:1e:3d:9a:f0:e5:a3:8d:c0:66:5e:82:10:
ad:58:a7:71:2f:06:be:9f:6d:d0:76:02:52:ce:6c:
f2:7e:5d:57:7b:14:dd:e1:a7:04:51:4c:5d:be:46:
ee:85:09:a6:42:e2:6f:d7:74:d2:81:1d:19:c9:24:
05:de:f9:9b:85:47:3b:ee:4c:9e:d9:b2:ea:f5:df:
c0:db:48:16:65:6e:ff:dc:8a:91:42:c3:9d:9b:b1:
d6:32:e1:c4:8b:8a:60:4d:b6:90:3f:17:08:04:81:
4d:c2:ac:05:7a:13:be:55:8b:40:7f:e4:ed:20:5f:
e4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D8:17:BF:5C:B4:20:99:65:0D:A4:07:29:40:4C:7E:01:FB:81:98
X509v3 Authority Key Identifier:
keyid:95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:f6:16:d2:c7:f4:35:4b:4f:c9:fc:11:92:48:d1:d7:0b:d0:
cb:d8:f3:52:26:14:59:24:4c:da:46:96:44:ee:f7:63:be:9f:
3a:ef:4a:d3:ba:3a:54:21:75:53:8e:16:93:44:53:6a:b4:1a:
8d:20:7b:fc:d5:9f:69:20:77:5f:db:bd:1d:d3:dd:b2:6e:6a:
e8:a9:5d:27:7b:95:0b:ba:70:90:c0:dd:f8:06:c7:4b:83:12:
a0:c6:25:3d:03:23:f1:4f:b4:4c:bf:66:3b:7f:a3:32:45:1a:
88:42:cc:7f:c9:55:fe:92:8e:02:58:1b:4b:f1:49:24:d3:70:
0d:25:76:62:37:8e:1c:91:0d:cc:16:a4:d9:8c:f7:de:3c:e6:
99:69:ce:c0:49:09:11:e4:69:e5:81:65:13:3f:55:82:1c:ad:
60:84:17:3e:67:5d:4d:74:db:df:52:9a:a1:df:f6:8c:4e:a2:
fd:67:90:8a:b7:9e:67:be:71:17:60:95:e7:41:5f:34:ba:fe:
6b:54:29:50:ae:00:0a:3b:4f:2c:71:0d:6d:23:37:e9:de:52:
29:c8:f0:14:47:e4:7e:80:19:ec:98:71:65:47:6a:b8:5b:c7:
cd:ea:74:74:24:b8:db:24:9e:db:a4:cb:3a:0c:9b:ac:41:9a:
ac:00:ea:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:40:26 2025 by rpki-client