Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json)
Hash identifier: EqMV9aGdPW9t/4TT/RiippASLLgPlN1BZu+N1Ap8K08=
Subject key identifier: 32:A3:44:CE:1E:72:D3:F6:11:2D:D9:92:60:46:7F:28:0D:CE:B7:93
Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Certificate serial: 019678D66DBC5CFE7778B45CF5E597185C34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
Manifest number: 09B5
Signing time: Sun 27 Apr 2025 20:00:40 +0000
Manifest this update: Sun 27 Apr 2025 20:00:40 +0000
Manifest next update: Mon 28 Apr 2025 20:00:40 +0000
Files and hashes: 1: BlSKEWV8a0Pu0DQWSBEZ8E6j6Ig.roa (hash: E+fl2IDftOEsy56bvfa1HOBzyBMqnDbK6GEdF9F9KeI=)
2: amBacDdU6Mjk1rJegCvOmhPZCuI.roa (hash: QFuN87Ca0aIv1BOf1cf5zbuSpQPxJlnZXFNDEW5Ik9U=)
3: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: 94FDdtMzxx9OJRw/Qm+VCGAmDt5hKhfh6oEEc+J5+90=)
4: oQUx3CaetTGOoOfH7R_GIuQC9ZM.roa (hash: QXtVeIAnBIaJbBWzjL0HKxzProdKFi/c2re+3CNcveM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:d6:6d:bc:5c:fe:77:78:b4:5c:f5:e5:97:18:5c:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Validity
Not Before: Apr 27 20:00:40 2025 GMT
Not After : Apr 28 20:00:40 2025 GMT
Subject: CN=32a344ce1e72d3f6112dd99260467f280dceb793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8d:f8:fd:7d:8d:c0:c9:39:48:31:ec:d1:39:
ae:d3:01:54:77:b9:79:e6:da:91:0b:79:27:22:ca:
6e:7b:df:bd:e1:0c:ed:c3:3d:0d:a2:fb:ca:9e:1a:
69:6c:b6:ea:4a:c4:86:42:7d:9d:82:2c:7f:5e:97:
e3:9b:47:7d:f8:5c:08:d4:43:05:a8:0f:bd:be:86:
2d:99:d3:6a:cd:99:61:58:55:d8:1a:56:29:ef:00:
a3:00:7a:27:70:93:2b:d3:bb:06:cd:de:85:d2:cb:
48:bd:a5:0c:91:3c:af:42:2e:84:f1:de:66:6c:3f:
53:71:11:36:c0:94:9a:b5:b5:35:56:1a:cb:d2:e1:
ce:f6:83:67:7f:3f:7e:36:65:aa:18:b2:61:bf:d1:
72:e7:bc:95:a1:9d:4a:92:71:1a:7f:8e:3b:21:7f:
26:a6:97:66:09:17:d8:df:ef:a9:20:1c:78:f8:7d:
d5:2a:3f:b2:32:93:78:74:70:f3:54:6c:99:fe:1c:
68:16:fd:3a:7c:19:5d:ba:87:e0:34:a5:37:33:68:
bf:a9:51:3a:61:e1:fb:a1:6f:12:bc:9c:05:f9:5f:
8d:b8:3c:0f:98:02:51:6b:fc:c2:f5:cf:99:40:39:
67:e9:e3:45:73:45:b5:55:e3:d5:39:11:b6:3d:82:
4b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A3:44:CE:1E:72:D3:F6:11:2D:D9:92:60:46:7F:28:0D:CE:B7:93
X509v3 Authority Key Identifier:
keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:32:81:49:c2:b5:44:d7:07:ba:f2:e8:57:33:36:27:2c:45:
d8:0c:aa:ce:b3:9b:82:fa:ab:ce:a8:6c:ad:57:aa:2b:88:2f:
74:89:6f:a8:70:58:32:e1:8f:fe:3d:dc:4c:cd:20:8e:df:eb:
0a:f7:8f:86:19:87:0d:59:56:5f:14:13:d3:cb:3c:7b:f3:e5:
32:8f:a6:ba:7f:0b:85:60:3c:8a:3c:54:a2:43:1b:61:00:43:
b2:ed:65:36:fb:ee:86:4f:59:80:bc:12:ab:8e:e2:4b:10:73:
ef:d5:c6:09:60:77:a4:fb:87:cc:fc:25:5e:33:56:59:e7:4a:
ef:3e:57:21:a1:82:74:f4:e5:bf:19:52:64:30:72:c2:a2:dd:
95:dd:9d:de:cc:f5:e9:b4:38:c8:a6:34:b2:bf:e0:2a:96:0a:
99:9a:33:6c:49:b5:3b:fe:97:b4:95:31:de:f1:1c:c0:54:e8:
87:dc:14:11:74:8b:e5:0b:b4:59:fa:72:a2:04:d2:fb:6b:ff:
f7:33:c4:ba:c6:52:8b:98:ba:f8:a3:00:86:0f:08:c2:9b:7c:
84:f1:36:9a:f5:f7:c5:80:56:0d:31:83:39:42:ac:58:05:2a:
9f:d0:7a:55:1a:bc:89:0b:63:e9:69:fc:2a:8b:fd:46:1e:f0:
a3:db:05:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:07:59 2025 by rpki-client