Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
File: ltTArxW-ONL8XjD-NFdHXTS3g5o.mft (raw, json)
Hash identifier: Cfa25NEhQuRKQseLRIfqrJIPAxg9OIxUUCfGpCGEgm0=
Subject key identifier: B2:63:15:5A:A7:1A:FA:93:AC:F9:28:40:07:F5:A1:DF:0A:1D:61:4E
Authority key identifier: 96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A
Certificate issuer: /CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a
Certificate serial: 0197711A914CCB8E1B043DC7C86D815304C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
Manifest number: 1201
Signing time: Sun 15 Jun 2025 01:00:55 +0000
Manifest this update: Sun 15 Jun 2025 01:00:55 +0000
Manifest next update: Mon 16 Jun 2025 01:00:55 +0000
Files and hashes: 1: ltTArxW-ONL8XjD-NFdHXTS3g5o.crl (hash: RJVVF2lAixxvYy7/FoOrBiMFpC7Nk/mMOUEB2J2Gn3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1a:91:4c:cb:8e:1b:04:3d:c7:c8:6d:81:53:04:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a
Validity
Not Before: Jun 15 01:00:55 2025 GMT
Not After : Jun 16 01:00:55 2025 GMT
Subject: CN=b263155aa71afa93acf9284007f5a1df0a1d614e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fc:eb:50:0a:e5:1f:0d:b2:df:b4:22:9f:da:
80:29:62:68:f0:5f:6c:89:2f:f4:cd:8e:49:2f:70:
61:48:99:e6:0a:4e:20:0b:50:fd:f2:5f:c9:cd:f7:
d6:0c:f7:e7:59:82:90:20:8c:25:7f:65:20:06:4c:
15:aa:5e:dd:2c:69:44:93:4a:03:8d:0b:7f:52:09:
62:fe:2f:04:e4:47:e8:2f:31:06:0d:a0:40:93:a9:
b7:e7:be:4b:22:20:8b:23:c3:c0:bd:12:f2:eb:c2:
89:de:a2:a8:86:5c:f3:3b:f6:a4:7b:d3:f0:93:b0:
e6:5d:c5:e4:91:98:08:ce:f9:f2:b0:0d:f5:ff:f1:
72:ef:2b:bc:f5:97:df:b4:80:5f:f7:1d:e1:94:7b:
06:91:0b:0d:a2:45:3e:e9:57:4b:6b:e5:51:38:f7:
90:d9:00:be:3f:76:b3:01:8f:2c:91:da:08:08:a7:
81:c0:c5:be:63:0e:73:c2:c4:bc:da:0f:9f:21:02:
29:d3:6b:cb:bc:e9:f6:71:ef:25:07:10:42:68:e3:
48:dc:15:15:2e:85:c6:af:83:05:4c:82:ea:9a:88:
25:1e:80:76:7e:c6:2f:8f:f9:de:55:c8:7e:5f:a8:
5a:7b:30:47:5e:ac:0f:ff:e0:80:ba:f9:25:ca:09:
76:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:63:15:5A:A7:1A:FA:93:AC:F9:28:40:07:F5:A1:DF:0A:1D:61:4E
X509v3 Authority Key Identifier:
keyid:96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:5b:70:2f:04:1f:52:6b:13:53:f8:29:2a:5d:dc:fc:9e:b8:
84:5a:9d:53:51:38:da:a5:46:04:1d:26:1e:56:82:09:d7:2e:
ea:85:9e:18:4b:d9:e5:88:67:59:aa:7a:93:9a:aa:94:1f:ec:
7e:7c:d0:1e:90:47:49:c0:2e:c4:22:c7:47:cd:4e:93:e1:8e:
9b:83:25:e4:b4:d1:5e:62:07:48:99:5a:2c:e5:46:53:1f:e9:
9d:fd:8c:29:07:53:6c:56:a3:e3:ad:1b:7a:75:77:17:3b:ee:
40:41:54:e7:ef:33:1a:9e:f9:6a:da:13:bd:e3:51:5c:17:e9:
81:e4:c9:2b:ab:e4:63:39:8f:3d:7b:67:a1:10:a4:41:d3:ac:
45:f5:81:06:60:b5:e4:48:09:bc:78:2b:db:61:00:7d:12:f8:
88:82:6a:b3:eb:d1:b3:f3:6c:6b:15:aa:e9:96:ad:b9:22:58:
92:ae:65:a9:60:1b:c0:79:7f:08:ca:ae:55:7a:11:2f:95:61:
88:84:aa:9c:3c:5c:91:85:b5:80:6a:71:a3:2b:48:d7:9f:a1:
59:9c:ba:4b:10:55:fc:01:5d:7a:8f:5a:36:b7:c8:0c:2c:62:
73:8a:20:8b:90:8e:cd:a7:7b:f7:30:64:98:60:f1:04:82:41:
34:84:6a:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:56:35 2025 by rpki-client