Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
File: lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft (raw, json)
Hash identifier: 4OlWw/zDk+yxFyU7tUJFwMRsaAgu0ZviVbxrqXKzjZU=
Subject key identifier: 32:CF:0B:10:AD:E5:EA:E3:BA:23:F9:DB:F5:5C:44:31:8E:81:D4:EC
Authority key identifier: 96:44:8E:84:0D:27:2A:3E:31:59:19:2D:1D:F1:1F:10:0E:50:6F:6A
Certificate issuer: /CN=96448e840d272a3e3159192d1df11f100e506f6a
Certificate serial: 019679444D60DDCBEA1E41CAC1A32F57DC89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
Manifest number: 073A
Signing time: Sun 27 Apr 2025 22:00:41 +0000
Manifest this update: Sun 27 Apr 2025 22:00:41 +0000
Manifest next update: Mon 28 Apr 2025 22:00:41 +0000
Files and hashes: 1: HRJaIehlqdUQOZwaPo6dI6mb5MQ.roa (hash: NAZLCo/vu2u7I92Xt0rJZZjC+drQdPYyxSFtuqS2OpE=)
2: lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl (hash: CsjaRhGrdyBy0YuQePZH1j+cIPYZ8ByA600tnGt2a+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:44:4d:60:dd:cb:ea:1e:41:ca:c1:a3:2f:57:dc:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96448e840d272a3e3159192d1df11f100e506f6a
Validity
Not Before: Apr 27 22:00:41 2025 GMT
Not After : Apr 28 22:00:41 2025 GMT
Subject: CN=32cf0b10ade5eae3ba23f9dbf55c44318e81d4ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2e:f2:f3:7c:ec:f0:9a:e5:5f:84:33:29:91:
9c:06:b0:7f:26:46:df:63:fd:89:4c:99:4a:d1:26:
e7:21:f8:42:6d:95:f0:64:58:0c:ae:73:0e:31:2d:
0f:e9:13:b5:75:47:5b:a9:f4:78:b5:8b:13:0b:bf:
c8:8f:ea:c0:6f:8a:00:28:53:6d:e9:bf:7e:fa:b8:
f9:60:7f:9c:2a:6d:7a:5a:55:9f:3e:25:ed:a5:df:
ea:18:b3:f2:78:db:83:c7:c1:01:77:d4:5b:06:a1:
e1:49:1f:af:30:e1:ca:8b:9f:45:1b:da:49:af:d8:
aa:b8:ec:ed:9f:cc:41:c4:8f:28:ee:5e:e4:77:64:
01:d1:23:0b:8a:e0:12:ff:62:0f:14:e2:11:24:d3:
2d:65:fe:07:f1:66:4f:64:3b:1e:22:72:85:ab:50:
45:f5:1d:ab:07:6a:99:06:22:2d:41:69:3f:eb:cb:
a9:3a:f1:20:9d:04:0a:d3:7c:f9:71:6c:26:45:49:
a1:80:5b:82:c3:8b:69:e3:82:e2:ca:c6:d2:21:70:
c5:f4:da:67:98:8a:47:94:4c:d7:0b:48:dd:c1:2c:
29:e9:f7:40:36:69:3c:83:f4:89:23:8e:ad:bd:87:
ef:00:21:55:4a:6c:56:3f:33:90:35:97:0e:e8:c0:
a3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:CF:0B:10:AD:E5:EA:E3:BA:23:F9:DB:F5:5C:44:31:8E:81:D4:EC
X509v3 Authority Key Identifier:
keyid:96:44:8E:84:0D:27:2A:3E:31:59:19:2D:1D:F1:1F:10:0E:50:6F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:92:36:63:86:13:71:8b:05:b6:2a:48:0f:3f:16:fa:13:e2:
1c:13:0b:b9:44:00:65:54:ee:d2:44:d0:99:6d:c6:ff:92:4d:
9d:96:c2:e6:bb:9b:6c:8f:cb:4c:7b:8f:4a:57:a4:92:09:7d:
d4:b0:fa:b0:aa:d6:f9:05:03:56:6a:6f:03:d2:fb:79:52:0c:
23:75:fd:0e:97:43:e9:75:fd:a9:f0:18:21:67:d4:0f:0c:8c:
65:ba:7c:97:34:ad:5d:c5:a4:ee:b4:68:0b:96:6b:71:2f:d5:
6d:d2:76:1b:d5:48:55:a1:59:9f:a2:a2:e3:49:e9:af:0d:66:
2c:c6:a2:cb:67:8e:5b:a1:ff:37:cd:48:e4:80:d2:cf:9d:96:
93:5e:f7:57:6b:7a:45:70:49:87:9f:89:0d:8e:a0:bc:2d:f7:
01:62:af:9c:9a:24:f6:ca:98:cc:5b:cf:bc:25:4b:cd:ea:ac:
14:e7:eb:7a:1c:05:88:b5:c2:84:3f:b5:43:11:e3:33:df:31:
b6:b9:d7:af:f5:7c:ab:d9:e6:30:65:93:b6:b7:36:24:a6:0c:
b4:db:54:af:27:01:a0:e4:b5:ef:0a:6f:f8:01:b3:6f:3d:db:
36:e1:6b:c0:bb:38:52:3b:d7:2f:20:0f:30:13:66:16:81:96:
71:df:b4:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ5RE1g3cvqHkHKwaMvV9yJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2NDQ4ZTg0MGQyNzJhM2UzMTU5MTkyZDFkZjExZjEwMGU1
MDZmNmEwHhcNMjUwNDI3MjIwMDQxWhcNMjUwNDI4MjIwMDQxWjAzMTEwLwYDVQQD
EygzMmNmMGIxMGFkZTVlYWUzYmEyM2Y5ZGJmNTVjNDQzMThlODFkNGVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyC7y83zs8JrlX4QzKZGcBrB/Jkbf
Y/2JTJlK0SbnIfhCbZXwZFgMrnMOMS0P6RO1dUdbqfR4tYsTC7/Ij+rAb4oAKFNt
6b9++rj5YH+cKm16WlWfPiXtpd/qGLPyeNuDx8EBd9RbBqHhSR+vMOHKi59FG9pJ
r9iquOztn8xBxI8o7l7kd2QB0SMLiuAS/2IPFOIRJNMtZf4H8WZPZDseInKFq1BF
9R2rB2qZBiItQWk/68upOvEgnQQK03z5cWwmRUmhgFuCw4tp44LiysbSIXDF9Npn
mIpHlEzXC0jdwSwp6fdANmk8g/SJI46tvYfvACFVSmxWPzOQNZcO6MCjpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDLPCxCt5erjuiP52/VcRDGOgdTsMB8GA1UdIwQY
MBaAFJZEjoQNJyo+MVkZLR3xHxAOUG9qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGtTT2hBMG5LajR4V1JrdEhmRWZFQTVRYjJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy80ZWU3MzQtZWZlOC00MWExLTgwZGYt
MTZhZmJhOTg3YjA2LzEvbGtTT2hBMG5LajR4V1JrdEhmRWZFQTVRYjJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy80ZWU3MzQtZWZlOC00MWExLTgwZGYtMTZhZmJhOTg3YjA2
LzEvbGtTT2hBMG5LajR4V1JrdEhmRWZFQTVRYjJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU5I2Y4YT
cYsFtipIDz8W+hPiHBMLuUQAZVTu0kTQmW3G/5JNnZbC5rubbI/LTHuPSlekkgl9
1LD6sKrW+QUDVmpvA9L7eVIMI3X9DpdD6XX9qfAYIWfUDwyMZbp8lzStXcWk7rRo
C5ZrcS/VbdJ2G9VIVaFZn6Ki40nprw1mLMaiy2eOW6H/N81I5IDSz52Wk173V2t6
RXBJh5+JDY6gvC33AWKvnJok9sqYzFvPvCVLzeqsFOfrehwFiLXChD+1QxHjM98x
trnXr/V8q9nmMGWTtrc2JKYMtNtUrycBoOS17wpv+AGzbz3bNuFrwLs4UjvXLyAP
MBNmFoGWcd+0xw==
-----END CERTIFICATE-----
Generated at Mon Apr 28 02:11:09 2025 by rpki-client