Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
File: lJQumzXZGQbREkXXO9WM3Y7KSdE.mft (raw, json)
Hash identifier: XH4DNMm6+xtsARqkiFusH/6FNZWMn9+zJ+P8Wh7MPZc=
Subject key identifier: 24:BF:36:D9:2C:60:4A:28:BB:1E:4D:60:3C:94:4D:49:9D:B1:AA:7A
Authority key identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
Certificate issuer: /CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Certificate serial: 0196760C67806606B78285EEB1A8EC61644C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
Manifest number: 1466
Signing time: Sun 27 Apr 2025 07:00:46 +0000
Manifest this update: Sun 27 Apr 2025 07:00:46 +0000
Manifest next update: Mon 28 Apr 2025 07:00:46 +0000
Files and hashes: 1: V6dzQYTukirsU-gqtCUSWtxmwyw.roa (hash: TAhPxTUSZwI4JsrpdkkvjRG18+wELOBapOWsonm/zpw=)
2: lJQumzXZGQbREkXXO9WM3Y7KSdE.crl (hash: Rh0kNI3Li5qBbzqlHfdV3Q6IeRBucGh4TA0XcgWIH3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:67:80:66:06:b7:82:85:ee:b1:a8:ec:61:64:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Validity
Not Before: Apr 27 07:00:46 2025 GMT
Not After : Apr 28 07:00:46 2025 GMT
Subject: CN=24bf36d92c604a28bb1e4d603c944d499db1aa7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:03:2e:27:86:03:cf:9a:24:b2:14:e3:8e:5a:
7b:20:91:a3:ef:90:c0:02:51:61:4a:c7:46:0c:a1:
df:be:35:83:94:d3:53:96:1a:bb:fe:0d:25:e2:13:
f7:27:e9:95:27:85:ac:f4:b0:5b:96:de:66:85:01:
2d:c7:38:55:16:6b:2f:20:53:13:0d:01:36:59:dc:
46:a3:e6:f4:05:f6:f6:a6:1b:fa:94:44:cb:f7:ce:
26:26:5e:c1:98:04:f1:32:60:11:84:64:27:e2:15:
e1:85:18:c4:97:84:db:57:56:e3:2c:d8:56:d4:53:
94:12:07:3c:37:52:02:ba:d0:46:a1:a4:3f:a8:4d:
e1:6b:17:b2:86:37:5f:70:28:7f:6f:65:8a:7c:b3:
9e:0d:eb:f5:84:d0:59:2a:5e:ae:e8:5b:1a:68:65:
d3:a0:e5:31:3e:d9:8f:2c:cb:4b:63:8b:37:dc:47:
0b:a2:1c:05:1c:9b:41:8d:7c:d1:15:41:2f:a5:77:
b0:a6:be:02:74:10:be:8b:24:b2:93:43:ae:a8:58:
c8:05:60:28:ae:6a:10:87:cd:13:39:d7:38:3f:bf:
1d:aa:10:ee:2c:77:3a:9b:88:7f:fd:be:19:c2:e4:
b8:d3:2f:43:be:b2:37:9a:92:ee:bd:6c:b6:8c:86:
40:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BF:36:D9:2C:60:4A:28:BB:1E:4D:60:3C:94:4D:49:9D:B1:AA:7A
X509v3 Authority Key Identifier:
keyid:94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:46:19:08:e9:a4:26:62:4c:6a:9e:c9:23:92:80:91:b7:46:
20:f9:ce:33:3f:e5:e9:53:27:12:02:87:df:cb:f7:27:62:4a:
21:6e:d1:09:9f:58:6f:3d:b7:ee:5c:4e:a1:33:97:02:3b:b1:
26:23:c8:1e:43:fa:9e:92:a1:ed:d2:de:ac:5a:3b:aa:29:23:
95:32:3e:a6:e2:1d:8f:ed:58:4e:97:25:18:33:1e:4c:c4:95:
bc:98:85:dc:fa:71:80:54:31:16:5a:27:44:30:19:d9:34:f9:
fd:a2:9f:ca:5a:ce:4e:70:15:8d:2a:46:6d:5c:f9:c7:3d:6b:
74:0f:3c:90:92:83:f6:56:f5:67:25:99:fd:ac:fd:fa:1a:f5:
9c:fa:41:6a:4a:4c:68:46:c9:40:c5:d5:8b:8e:c4:d0:84:ee:
a9:fc:43:4f:29:80:e0:af:bf:64:4c:a0:68:ad:a1:fe:f8:7d:
42:f5:31:37:9c:20:c4:95:b2:12:0c:dd:e0:a9:3c:26:0a:fa:
04:2b:fc:4a:d5:8b:32:43:3b:29:c2:dd:72:dc:b1:49:5e:5a:
1f:c3:46:6d:3d:67:4e:68:81:c7:dc:50:00:2a:4c:3e:11:26:
f2:18:64:85:18:9e:be:24:0b:8b:79:41:80:0f:44:88:5d:ac:
2c:e9:08:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2DGeAZga3goXusajsYWRMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0OTQyZTliMzVkOTE5MDZkMTEyNDVkNzNiZDU4Y2RkOGVj
YTQ5ZDEwHhcNMjUwNDI3MDcwMDQ2WhcNMjUwNDI4MDcwMDQ2WjAzMTEwLwYDVQQD
EygyNGJmMzZkOTJjNjA0YTI4YmIxZTRkNjAzYzk0NGQ0OTlkYjFhYTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkAMuJ4YDz5okshTjjlp7IJGj75DA
AlFhSsdGDKHfvjWDlNNTlhq7/g0l4hP3J+mVJ4Ws9LBblt5mhQEtxzhVFmsvIFMT
DQE2WdxGo+b0Bfb2phv6lETL984mJl7BmATxMmARhGQn4hXhhRjEl4TbV1bjLNhW
1FOUEgc8N1ICutBGoaQ/qE3haxeyhjdfcCh/b2WKfLOeDev1hNBZKl6u6FsaaGXT
oOUxPtmPLMtLY4s33EcLohwFHJtBjXzRFUEvpXewpr4CdBC+iySyk0OuqFjIBWAo
rmoQh80TOdc4P78dqhDuLHc6m4h//b4ZwuS40y9DvrI3mpLuvWy2jIZAzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCS/NtksYEooux5NYDyUTUmdsap6MB8GA1UdIwQY
MBaAFJSULps12RkG0RJF1zvVjN2OyknRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEpRdW16WFpHUWJSRWtYWE85V00zWTdLU2RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jNjA5ODAtYTFkZS00MzkwLWEwYTMt
MzJjMjBjYWYwOGVkLzEvbEpRdW16WFpHUWJSRWtYWE85V00zWTdLU2RFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9jNjA5ODAtYTFkZS00MzkwLWEwYTMtMzJjMjBjYWYwOGVk
LzEvbEpRdW16WFpHUWJSRWtYWE85V00zWTdLU2RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUkYZCOmk
JmJMap7JI5KAkbdGIPnOMz/l6VMnEgKH38v3J2JKIW7RCZ9Ybz237lxOoTOXAjux
JiPIHkP6npKh7dLerFo7qikjlTI+puIdj+1YTpclGDMeTMSVvJiF3PpxgFQxFlon
RDAZ2TT5/aKfylrOTnAVjSpGbVz5xz1rdA88kJKD9lb1ZyWZ/az9+hr1nPpBakpM
aEbJQMXVi47E0ITuqfxDTymA4K+/ZEygaK2h/vh9QvUxN5wgxJWyEgzd4Kk8Jgr6
BCv8StWLMkM7KcLdctyxSV5aH8NGbT1nTmiBx9xQACpMPhEm8hhkhRieviQLi3lB
gA9EiF2sLOkIFg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 12:56:39 2025 by rpki-client