Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.mft
File: lkyqlAOgjTc7kLcQpW0-roE5T_A.mft (raw, json)
Hash identifier: dwDINlE3rJwfUGE3tufSw6EMxNz9vS80spkFuRqnmEk=
Subject key identifier: 6D:A8:27:BA:EC:37:64:A7:52:04:CC:D5:6D:BC:20:56:DB:DA:FE:1A
Authority key identifier: 96:4C:AA:94:03:A0:8D:37:3B:90:B7:10:A5:6D:3E:AE:81:39:4F:F0
Certificate issuer: /CN=964caa9403a08d373b90b710a56d3eae81394ff0
Certificate serial: 01968021ADED4D802E6D9C91D6D9E396A104
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkyqlAOgjTc7kLcQpW0-roE5T_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.mft
Manifest number: 14A1
Signing time: Tue 29 Apr 2025 06:00:12 +0000
Manifest this update: Tue 29 Apr 2025 06:00:12 +0000
Manifest next update: Wed 30 Apr 2025 06:00:12 +0000
Files and hashes: 1: lkyqlAOgjTc7kLcQpW0-roE5T_A.crl (hash: El6N+9Z/gdPVzrcogSmrTQX4/jl/zKHTih2TfVndN7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkyqlAOgjTc7kLcQpW0-roE5T_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 06:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:21:ad:ed:4d:80:2e:6d:9c:91:d6:d9:e3:96:a1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=964caa9403a08d373b90b710a56d3eae81394ff0
Validity
Not Before: Apr 29 06:00:12 2025 GMT
Not After : Apr 30 06:00:12 2025 GMT
Subject: CN=6da827baec3764a75204ccd56dbc2056dbdafe1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:6c:1d:22:da:ba:5a:83:b1:66:4c:72:9c:03:
3f:c0:31:e8:6d:60:c7:71:0c:19:08:63:47:4e:9a:
87:ae:59:2b:45:84:f7:14:ec:6b:88:3d:71:4f:77:
65:1a:71:ea:53:b6:03:37:e2:c7:7d:0d:08:79:54:
d7:e1:fd:1a:6a:3d:aa:37:41:a2:d0:25:78:51:a3:
1d:cc:57:c3:45:3f:91:b7:e2:af:99:91:1c:a5:ff:
3b:13:75:fd:bc:40:ce:1f:e1:4f:d1:81:9a:0b:76:
8e:af:22:b0:5c:33:e6:f7:21:c4:1c:3a:d9:af:67:
82:00:d5:ad:32:51:f2:f5:36:07:c7:00:7d:62:c5:
7c:42:e4:6b:9b:a3:46:14:a9:34:b7:6f:f1:63:32:
70:4d:ed:0a:1d:37:10:27:75:44:8c:ea:05:b9:29:
d8:83:25:b7:de:b3:b6:3e:f0:1f:5f:16:ee:17:79:
7c:21:a2:5c:b5:d6:1a:94:62:7b:b3:45:eb:7a:bb:
76:e9:93:ac:9c:3f:75:c4:c3:02:c9:8c:2b:d6:ff:
80:2f:8f:32:97:60:3d:f2:b5:84:f8:e3:a9:86:7f:
f7:75:40:9d:ab:ae:0b:5b:6b:fe:19:21:de:86:95:
3f:62:96:f0:a8:26:39:8a:f4:51:2a:a6:1c:4b:c3:
3c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A8:27:BA:EC:37:64:A7:52:04:CC:D5:6D:BC:20:56:DB:DA:FE:1A
X509v3 Authority Key Identifier:
keyid:96:4C:AA:94:03:A0:8D:37:3B:90:B7:10:A5:6D:3E:AE:81:39:4F:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkyqlAOgjTc7kLcQpW0-roE5T_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6b0dc9-c1b9-4fae-acd9-6bff1c0e68ae/1/lkyqlAOgjTc7kLcQpW0-roE5T_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:3e:1d:a6:3f:13:0f:20:95:aa:5d:0f:00:d8:d1:39:7e:38:
ea:c4:15:ba:00:ef:03:76:64:a7:a2:81:94:9f:02:8e:0e:75:
6e:4b:cf:e4:38:4a:30:9b:34:35:b2:4b:01:9e:16:83:46:5f:
f3:88:b9:2d:4d:c2:d7:3d:93:e4:42:da:3a:54:4e:eb:a6:92:
8b:3b:2e:38:07:fc:2f:f1:da:69:70:4c:c2:5a:41:c2:44:44:
4d:97:e2:41:59:45:e5:d2:db:ac:22:e9:6c:2e:5b:49:81:62:
e5:e4:ec:0c:15:1b:8a:c8:d2:f5:e9:e0:fc:15:e5:cd:91:a4:
06:13:7b:50:a0:ed:0f:c2:54:0b:58:b4:48:74:c3:e8:af:65:
eb:87:25:d1:a5:32:61:d1:df:6b:b8:01:94:25:4c:09:02:d0:
57:89:92:99:86:34:73:44:dd:2e:8d:9c:b4:aa:57:03:79:96:
f1:71:e0:24:7e:37:d4:ff:e3:16:8a:6a:26:72:b0:16:0c:b3:
93:4a:4b:76:4d:20:bf:70:da:d2:82:04:73:bf:56:ef:01:59:
73:61:39:52:f9:45:0c:ef:9c:24:6d:80:ef:9f:17:ab:99:47:
dc:52:99:41:c6:a1:94:22:0d:00:37:bd:4e:e9:f8:0f:90:df:
41:bf:07:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 11:25:33 2025 by rpki-client