Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
File: lNmOj-xoB3WhVyZuDGt4sUGjT14.mft (raw, json)
Hash identifier: fQED8N9o2m/mUFCb+3RU2doOu6D+8O2EJQhsciyt3Kc=
Subject key identifier: 5B:0E:5E:6A:42:D4:3D:B5:8E:47:04:59:AB:B7:07:22:B2:9C:70:E1
Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Certificate serial: 019681D976751F841EB06AD1F1ED5AC389B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
Manifest number: 0DF2
Signing time: Tue 29 Apr 2025 14:00:34 +0000
Manifest this update: Tue 29 Apr 2025 14:00:34 +0000
Manifest next update: Wed 30 Apr 2025 14:00:34 +0000
Files and hashes: 1: 0YppZtvRSXBHB8NFrLn_rzdM4Wg.roa (hash: AIX2Owt5viXo6Wp2eQTWR2x2rHaX/2g8xn17pbf1zi4=)
2: EKnIHBjVrQVGKttI-rFo2gf2VFc.roa (hash: J3kh1NFjTixOap26aJDcz17JVV8gbZy6u7PZjGr/JnE=)
3: H0U-Km3rz_YtidSX7xAdJ-A_RzA.roa (hash: L4ck5kUvwk5NkXR5fk3e/8692feGx3cZZTXMDkDHo6o=)
4: LaP9yZWFLbz-vA6yy7WQjmvmnXk.roa (hash: dSsBDcLcDlWyNXwHKuTffodeoLPC9SNQ0Byy4wB2Z1w=)
5: LbH9hJaSL1GOYzLXqD3Awd_qjoA.roa (hash: 3C2M+kU6uA2Qd0GYC2WkAPgI2BlaHp4MqS4lT08EAiA=)
6: PbarvFD-DfboyTwmYNWYW4W2R9w.roa (hash: x10XcqhvaDHkUVsBFH7jM56sVdDbvr2ZFm9l+eYW+G4=)
7: lNmOj-xoB3WhVyZuDGt4sUGjT14.crl (hash: 9N2f18ihZHcREiejKUxY+eRZsdi58FXw4j22+hlaHpE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:d9:76:75:1f:84:1e:b0:6a:d1:f1:ed:5a:c3:89:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Validity
Not Before: Apr 29 14:00:34 2025 GMT
Not After : Apr 30 14:00:34 2025 GMT
Subject: CN=5b0e5e6a42d43db58e470459abb70722b29c70e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1f:69:63:c8:f0:ab:d3:e4:25:29:ad:7b:ff:
1b:65:8f:62:9f:24:98:04:a6:ab:68:67:b8:3e:c8:
84:19:3c:48:9e:a1:31:1e:75:07:c7:29:00:4d:ab:
32:34:c4:31:d8:a3:4c:e2:9e:19:b1:b9:bc:88:a1:
60:40:3d:b3:6a:f4:6c:47:6d:20:21:de:bc:54:58:
3c:18:cc:6f:fc:80:0f:dc:6c:6e:6e:2d:7d:62:17:
e7:21:5b:c0:90:b9:6d:08:df:b0:81:8a:85:18:91:
25:30:33:4b:2f:d6:60:81:f1:b1:d4:20:fd:a6:3e:
58:7b:54:b7:b1:fb:5e:39:6d:1e:ce:9d:46:13:13:
ed:95:0b:a1:32:41:c5:6a:af:93:da:26:20:ce:4c:
d8:2f:de:b7:34:2e:a4:1d:f0:ca:e9:e4:a9:cb:98:
19:09:2b:3b:11:ff:01:92:f0:14:04:5a:ba:72:c7:
4f:4f:c6:2b:fe:44:64:c5:82:55:b6:93:60:52:38:
e0:6e:e5:14:d3:5d:08:01:b6:4b:b2:c2:bb:41:33:
32:15:df:f9:95:02:21:91:d6:2c:e6:85:e9:f5:07:
82:30:3e:23:7e:07:0f:00:58:26:f8:8a:cc:99:d6:
3d:28:d5:01:2c:ff:36:82:55:76:7c:a7:5e:6d:ad:
06:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:0E:5E:6A:42:D4:3D:B5:8E:47:04:59:AB:B7:07:22:B2:9C:70:E1
X509v3 Authority Key Identifier:
keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:00:b5:0b:59:f3:f5:19:3a:d9:d5:c6:14:7e:29:4c:b6:98:
2d:19:1e:0e:9e:c6:7e:94:08:a4:0c:5b:3e:5e:09:9a:d7:b6:
a1:11:b5:d8:e9:d4:e3:b5:76:71:19:69:a6:bf:b9:7d:49:7b:
d5:1d:2a:f0:1a:1d:ee:87:c8:83:e3:be:00:11:0b:a2:68:1a:
f6:48:87:6a:7a:24:22:df:4d:cd:f2:69:ba:ed:ed:7a:67:8b:
9a:e2:4e:99:4a:c2:a5:ca:39:37:7f:9a:ea:c6:ab:c9:37:33:
99:1d:d1:fe:19:30:1b:ef:b6:07:28:4e:a1:17:04:7b:3d:7a:
5b:e6:8a:1c:09:e8:24:27:73:33:fd:94:ff:a5:84:e2:15:a6:
83:01:5d:94:d4:ad:1e:b8:c0:b3:f6:72:33:42:e8:6b:cf:e8:
c0:13:5f:50:85:85:94:22:2c:16:43:9f:1f:45:1d:a8:76:f9:
13:84:64:4c:cb:1e:0a:58:a4:2d:fe:d7:80:25:e4:81:7e:e0:
0c:7a:ec:b4:4c:36:e5:6e:9e:13:40:54:ce:0e:c0:a9:0c:d6:
83:55:7a:9a:59:5a:53:a2:ca:4d:ce:10:8c:5b:9b:f4:b5:ca:
1f:4d:2e:06:2f:33:bb:ba:03:13:a2:81:3e:72:61:6a:28:63:
31:f2:ed:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 20:49:49 2025 by rpki-client