Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
File: Lw47dY4ki4AfwfMNNF1giwevG_Y.mft (raw, json)
Hash identifier: 21nqLld7I5CALTaWsgsCXN0TsG5ocyHt4RFkWtHuNXU=
Subject key identifier: 3D:F9:15:BE:9D:F6:8E:1B:0F:8D:2F:86:9E:B3:F3:32:81:98:17:68
Authority key identifier: 2F:0E:3B:75:8E:24:8B:80:1F:C1:F3:0D:34:5D:60:8B:07:AF:1B:F6
Certificate issuer: /CN=2f0e3b758e248b801fc1f30d345d608b07af1bf6
Certificate serial: 0196767A1FDE107095F57D108233FB02326B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
Manifest number: 0535
Signing time: Sun 27 Apr 2025 09:00:36 +0000
Manifest this update: Sun 27 Apr 2025 09:00:36 +0000
Manifest next update: Mon 28 Apr 2025 09:00:36 +0000
Files and hashes: 1: Lw47dY4ki4AfwfMNNF1giwevG_Y.crl (hash: jHTLaGnvIekxG1adP954gT5KEUvbH1wO//JIgt/0DOA=)
2: MBtZdpS4ymxgginyDhvfCoGQ29s.roa (hash: Taga/JoIPOZ2TxBr6cVw0HmmUo2VGq5/DtsPjFffmvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:1f:de:10:70:95:f5:7d:10:82:33:fb:02:32:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f0e3b758e248b801fc1f30d345d608b07af1bf6
Validity
Not Before: Apr 27 09:00:36 2025 GMT
Not After : Apr 28 09:00:36 2025 GMT
Subject: CN=3df915be9df68e1b0f8d2f869eb3f33281981768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3a:81:e3:e4:51:e0:69:f8:b9:c6:fb:1a:b4:
f5:92:13:53:27:6f:34:ac:26:1d:c2:67:bf:ea:6d:
74:b7:5d:dc:a3:0d:59:8b:78:30:dc:e1:54:7d:ee:
bf:32:64:5c:e2:2d:07:6f:a3:58:c7:a0:24:cf:0a:
18:93:6f:a4:a9:f7:0e:56:10:f4:23:5d:95:2f:ca:
e2:87:9e:d4:b4:98:6c:2a:20:59:c0:d6:ea:48:48:
eb:e4:29:9d:83:fc:a3:ee:07:a3:16:e2:e3:a8:f1:
b7:6f:cc:76:44:9d:6c:b9:f4:48:2c:29:6a:d5:ca:
5b:e8:97:d3:f9:16:d8:f5:ab:4f:d0:81:ea:a5:75:
48:ec:b5:76:77:ac:33:ee:e1:e5:1b:50:ab:8b:c5:
93:bd:16:05:c1:8d:22:02:69:66:2d:ea:ba:42:98:
13:36:6b:51:1f:dd:40:0d:35:64:52:ca:e5:91:6b:
0c:37:db:1e:98:b6:02:60:dc:c0:df:1c:ed:96:ff:
9b:26:9a:08:1a:b9:1e:6f:91:63:f1:d6:15:e4:c8:
e7:de:9b:c8:c1:36:8f:26:eb:cf:98:9a:43:99:5f:
9c:68:c8:da:d1:5a:94:88:00:93:c7:fe:7c:cb:32:
b3:be:6c:de:a9:1f:65:e5:ef:7a:7f:0f:fe:27:02:
6f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:F9:15:BE:9D:F6:8E:1B:0F:8D:2F:86:9E:B3:F3:32:81:98:17:68
X509v3 Authority Key Identifier:
keyid:2F:0E:3B:75:8E:24:8B:80:1F:C1:F3:0D:34:5D:60:8B:07:AF:1B:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lw47dY4ki4AfwfMNNF1giwevG_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/7ded1f-c40d-47f2-a110-8456dce59ce0/1/Lw47dY4ki4AfwfMNNF1giwevG_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:b9:3a:f9:3f:d4:fd:6f:eb:9f:70:9d:88:e2:6a:69:ba:1b:
37:c9:ba:ec:5e:d8:5f:db:52:dd:60:e6:ec:30:09:90:0b:af:
b3:7e:f0:fa:88:37:6d:ea:18:34:4f:30:fb:b8:fc:01:a1:fb:
a8:13:45:e3:27:48:65:47:11:5c:1f:98:1b:da:b5:dc:a3:4d:
bc:37:4e:c1:ca:41:da:4a:41:7b:ed:df:44:73:59:91:0c:23:
f2:b3:94:d8:32:ec:ea:95:b9:26:e1:53:1d:cc:69:28:51:22:
72:62:e4:1a:9a:af:b4:71:51:74:b4:2a:0c:a1:9d:ba:73:fb:
ac:76:d4:59:00:1a:f2:dd:b8:4f:62:9c:58:c2:6a:23:c7:30:
27:b4:78:57:cc:0c:2f:b9:d7:29:08:6e:5f:37:99:58:71:39:
6e:74:7c:8c:b9:c6:fc:46:a7:cb:ac:47:5a:bf:74:81:6c:6f:
ba:24:84:4b:ea:8f:08:1f:12:15:ab:56:2f:37:fb:14:ff:52:
82:cb:42:40:a3:42:96:e3:24:7b:ed:47:66:24:53:25:97:37:
6e:38:4b:4d:a3:99:0c:dc:90:e3:4d:53:a8:56:ea:ad:a4:11:
9d:37:92:3e:e7:4f:34:22:8d:14:8f:03:06:ac:ee:81:4c:c5:
82:6e:5b:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:09:06 2025 by rpki-client