Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File: L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier: iDlNReIyk4IMn2Bgfq+9Vp6167d2ww5GWgajsaBu3wk=
Subject key identifier: 63:99:34:BF:66:BE:A4:19:C6:E5:84:11:5C:D4:8B:E3:C2:7A:21:7E
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 01968E151D7831489369F7FB4BE3160431FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number: 1009
Signing time: Thu 01 May 2025 23:01:10 +0000
Manifest this update: Thu 01 May 2025 23:01:10 +0000
Manifest next update: Fri 02 May 2025 23:01:10 +0000
Files and hashes: 1: 8PzBSdujNIrE9ZxwXkq7Jh0bBAs.roa (hash: 4Awpnumk+tPfHQxPVq+VsOA860hCJdP+GfTQ/2K+zcA=)
2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: zfDhz0T93WMK2jYSvFRzbOtdeo13Ne2jgkFWf55UjME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8e:15:1d:78:31:48:93:69:f7:fb:4b:e3:16:04:31:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: May 1 23:01:10 2025 GMT
Not After : May 2 23:01:10 2025 GMT
Subject: CN=639934bf66bea419c6e584115cd48be3c27a217e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:c6:5b:20:c8:ad:d2:9a:0d:89:96:09:21:5c:
94:9b:a2:a9:ce:04:4c:87:8a:79:89:ff:e5:36:07:
95:bd:f1:b6:d0:25:94:48:bb:9b:54:b5:24:b9:45:
bc:9f:b4:8e:31:79:dc:fb:18:8d:66:bd:78:17:3b:
02:87:5e:1b:4f:6f:7e:84:04:5e:62:5f:f2:30:70:
5c:11:5c:67:4c:e2:d1:90:f7:58:13:08:c2:35:a1:
99:19:2c:2b:e1:9a:49:3b:d7:9a:69:20:2b:cf:b9:
89:be:bb:3b:69:6f:a9:e0:b7:fe:b4:fe:f1:a6:1d:
c4:84:99:23:7b:1f:a8:88:68:f5:24:33:71:dc:07:
ec:3e:38:50:1b:66:c0:cf:d9:9f:55:be:d7:48:6e:
5b:f2:d6:e6:80:21:94:a6:df:04:eb:f5:49:49:8d:
6d:42:30:0a:f0:70:c4:ab:30:c7:15:70:74:42:02:
0a:22:56:fb:9a:1a:68:d2:33:b6:fc:0a:ff:36:b1:
8e:84:13:0f:9d:8c:82:02:df:fe:a3:9c:6a:70:e5:
75:5a:a1:d4:f6:98:f2:49:4e:2e:6a:77:b2:e8:8a:
0a:5e:8d:9d:6b:ae:6d:b7:77:56:79:82:3f:0b:de:
13:a6:3c:27:e0:76:41:95:41:00:96:f1:65:c3:07:
d5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:99:34:BF:66:BE:A4:19:C6:E5:84:11:5C:D4:8B:E3:C2:7A:21:7E
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:0f:c2:68:f3:07:5e:c4:76:08:d2:c6:00:80:75:2c:0c:68:
66:ca:fe:2b:1d:8b:00:4b:3a:80:a1:19:69:73:2f:d5:4a:90:
5a:48:ca:df:3b:93:c7:35:9d:23:b2:c3:81:4a:14:db:07:43:
e8:20:50:e6:1a:b7:4c:a6:57:d8:95:33:e4:6b:26:6a:4e:e0:
8b:61:71:95:1e:27:fb:0d:46:e8:77:20:eb:87:cc:69:f7:57:
1e:ce:67:b3:52:c3:f7:9f:cd:d0:33:a9:5e:ea:59:f4:a6:b4:
e4:39:52:eb:71:5a:24:00:6e:07:1a:1d:e4:9e:f6:fc:7f:9a:
36:ed:0f:4a:c9:cd:f3:2b:c0:5a:4a:57:57:e5:c3:68:dc:1c:
78:80:01:4c:8f:c8:48:1f:92:8f:54:d0:79:92:de:d5:89:21:
4f:89:f7:30:ba:73:94:26:c9:fb:59:89:39:11:a2:7c:6f:6c:
05:cd:fe:c2:e7:a1:e8:8a:1e:d1:02:2a:a7:38:d6:38:5c:f3:
8e:60:fa:26:bf:34:85:fa:63:cf:c7:92:c6:a3:48:ca:1f:ef:
d7:ba:58:a2:fa:c4:fa:a7:b7:ce:56:e4:82:f2:c3:49:4a:ca:
76:2f:71:6f:30:07:c2:ad:56:5e:e4:49:87:3b:68:b5:09:f7:
97:6e:bc:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 02:21:08 2025 by rpki-client