Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
File: lKpBiudwvajvBRax0cYzpn6R84s.mft (raw, json)
Hash identifier: swwAIZa1zIQSmBClKK/yDyFLYYnKua+8ZHTG6bxdEYE=
Subject key identifier: CB:9A:1E:77:2C:3B:7D:9D:49:6C:E6:99:29:47:52:1D:12:9C:9E:D7
Authority key identifier: 94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
Certificate issuer: /CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Certificate serial: 0196760C76EC91972A050739478E16CA0279
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
Manifest number: 0ED7
Signing time: Sun 27 Apr 2025 07:00:50 +0000
Manifest this update: Sun 27 Apr 2025 07:00:50 +0000
Manifest next update: Mon 28 Apr 2025 07:00:50 +0000
Files and hashes: 1: JDbsNRiv_WMTlViBQXQ3g59gK5M.roa (hash: 5BHapuXzcbpJhpfOa/evo44J0f0F6BTnvXfMcpPhdEU=)
2: lKpBiudwvajvBRax0cYzpn6R84s.crl (hash: FkumeQscUiT6EWe7NZgEGMGxtblYNEdaYxiNomTqC/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:76:ec:91:97:2a:05:07:39:47:8e:16:ca:02:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Validity
Not Before: Apr 27 07:00:50 2025 GMT
Not After : Apr 28 07:00:50 2025 GMT
Subject: CN=cb9a1e772c3b7d9d496ce6992947521d129c9ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ff:e2:fa:9b:11:73:c5:04:ea:b1:26:a4:15:
4d:26:d7:35:99:a0:c2:b3:2f:5b:70:23:a5:d6:e1:
e6:79:55:37:d2:18:66:c4:e3:91:26:8b:19:52:19:
37:bf:d1:80:72:c1:96:fd:f0:2b:a3:ec:e5:87:83:
38:5f:76:c2:68:47:19:19:1e:68:e6:e3:3d:f7:5d:
7d:6f:50:d0:c7:25:7d:73:3b:33:17:cd:ac:6e:dc:
3a:cd:03:95:ee:e2:cc:24:c1:d1:a2:10:72:ac:81:
81:2e:c6:ac:1e:d7:5c:d5:35:d2:68:13:12:18:d3:
d8:d5:85:96:b3:12:81:43:44:3c:56:17:af:70:4e:
20:19:bd:7d:81:b6:1d:77:98:05:62:a6:a7:23:7a:
4d:84:6f:1d:68:e2:5d:45:1a:b8:75:eb:c8:38:ba:
40:1b:fc:69:fe:36:33:2a:88:bb:85:6d:9f:dc:c4:
58:96:77:0d:a5:d8:88:d5:be:81:03:4b:e0:08:83:
d5:a1:75:50:3e:53:a9:1c:b4:ad:15:a4:76:06:12:
22:3a:85:61:47:af:21:30:21:80:36:48:10:d9:99:
dd:5f:63:cb:00:35:ab:e7:cf:1f:3b:78:bf:c8:e5:
b8:e7:90:11:e6:3d:bb:7b:43:5a:38:36:f3:89:42:
64:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:9A:1E:77:2C:3B:7D:9D:49:6C:E6:99:29:47:52:1D:12:9C:9E:D7
X509v3 Authority Key Identifier:
keyid:94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:52:dc:b4:88:81:f6:d9:ba:93:b7:05:f1:a3:f8:96:b7:0f:
db:f6:9a:ea:c5:a7:17:cb:e7:65:6f:c0:58:bb:c7:39:5b:b8:
0b:91:f5:27:01:85:db:09:43:12:c2:fd:1f:ec:f5:6b:f0:ef:
12:b5:2c:e0:3b:a8:de:db:62:81:fb:44:87:d1:38:55:5d:58:
90:a7:89:7d:dd:66:10:f9:c7:c6:18:c8:1f:ea:95:ec:96:f5:
b8:ca:0e:5b:9f:dd:90:d8:b3:56:64:3c:62:17:1d:0b:89:ee:
5f:03:e9:d9:9e:7a:e0:34:f2:b6:63:6a:2c:a0:5a:46:72:08:
67:1c:24:a8:bd:a5:63:af:aa:55:30:18:a0:7b:a3:53:ae:a6:
74:a1:7e:3e:c7:0a:78:25:0c:6f:2e:a9:98:87:93:d4:bd:7c:
54:29:04:06:37:9b:78:75:dd:77:fb:c7:07:f8:5d:4c:40:61:
e0:dd:ab:73:f2:4d:60:67:7e:ba:bd:e6:1c:1e:25:56:f8:8d:
dd:e6:44:07:7a:2f:6e:0e:af:25:e4:36:ba:dc:58:32:4b:82:
df:59:e0:47:d0:f0:0d:23:61:46:96:68:a3:a2:63:bc:ba:71:
29:6c:11:d2:a4:f9:1a:36:6f:9b:c2:d5:18:a3:a6:42:40:7c:
2d:b8:11:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:54:47 2025 by rpki-client