Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
File: 3LZakO089K4EUlVO40uSqEdtzxA.mft (raw, json)
Hash identifier: rzZjGIKMGhWMIi6uTuHxIy3Be7ZEjAjQUITwspdWSAw=
Subject key identifier: 74:74:44:65:6A:50:98:BE:E5:5E:E3:A9:DC:D6:0B:B9:66:DC:C3:BE
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 019678D61ECD478D5D1F0B85AA9BACC4C9CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
Manifest number: 1521
Signing time: Sun 27 Apr 2025 20:00:20 +0000
Manifest this update: Sun 27 Apr 2025 20:00:20 +0000
Manifest next update: Mon 28 Apr 2025 20:00:20 +0000
Files and hashes: 1: 3LZakO089K4EUlVO40uSqEdtzxA.crl (hash: LDa+vH7leqY3pEHvGpTLUDE3rMPF0eSmfkAcO68CWbk=)
2: 4TacCA5fNMvJzrQKHYvZp1FsTCY.roa (hash: PoM3PiM+eiQs0IrTl3gGzaDWCG/B3yTTKS+dLnu4Yd0=)
3: 7NaNhfKzkHk-4U6P-rr5I2f5Dns.roa (hash: ho2GvZ21Aa+NkGp3FzrcTvxIRbuhiRhcV51nfQsaRvI=)
4: RMqD4QZBwk_wzHsp1loeMRU2jMk.roa (hash: nCQ5Eq/Er1do1Gz84LWpqzugPw71HtroPiJZlZhFk8k=)
5: naw_j5gKrLLjpLmDjj2VeLVHcW0.roa (hash: 9rsCrKDYxMlNCKWks8aC7H+vNumWPUdz18CO2dwuUHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 20:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:d6:1e:cd:47:8d:5d:1f:0b:85:aa:9b:ac:c4:c9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Apr 27 20:00:20 2025 GMT
Not After : Apr 28 20:00:20 2025 GMT
Subject: CN=747444656a5098bee55ee3a9dcd60bb966dcc3be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9c:6b:b8:77:5b:a0:f1:7b:fd:22:bb:5d:88:
72:ea:56:36:dc:81:36:4a:a0:06:5f:06:39:ed:e6:
eb:2d:ff:c6:d7:b5:dd:06:25:10:84:06:05:d0:c5:
35:32:33:2f:36:b8:d7:70:75:91:66:00:f4:03:7c:
e8:49:f1:db:62:c6:39:54:0e:9f:0f:b5:6f:ff:8d:
44:17:5d:1a:2f:5a:08:2a:41:d4:47:90:86:5e:5f:
97:8f:44:9b:01:42:e3:50:a2:50:59:17:c3:b9:4a:
e1:94:3c:47:02:55:fd:15:df:8f:84:3c:d6:17:43:
a3:2a:7d:fa:4a:b8:90:b2:af:39:be:07:81:88:03:
a2:7a:97:98:03:55:8e:2e:68:54:db:f5:f7:8b:24:
66:b1:6c:fc:8e:23:25:47:d1:34:f0:18:f0:c1:8d:
66:8f:36:f2:90:ac:21:9e:a4:51:4d:b4:ee:c6:ac:
cd:89:d0:71:a7:38:ce:b0:3e:8f:47:9c:58:70:3b:
49:2f:cc:4d:a3:60:ec:0c:da:ab:fa:14:07:ce:1b:
ff:a5:30:97:d2:41:0d:6c:fc:b5:83:7a:b6:0f:22:
c3:82:b6:c9:c8:91:45:0c:ef:52:e3:0d:86:17:c7:
9b:71:e4:58:71:42:b6:2b:c7:3e:8a:5e:28:37:17:
08:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:74:44:65:6A:50:98:BE:E5:5E:E3:A9:DC:D6:0B:B9:66:DC:C3:BE
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:07:66:a3:7f:c3:63:80:0d:b3:ef:0a:20:08:93:28:91:61:
d9:cf:83:ac:fb:6c:a1:d0:45:59:2c:95:98:a5:45:d6:4f:6e:
5a:8a:12:a6:df:24:99:b8:a7:bd:91:12:ba:86:8c:1d:d8:89:
44:83:88:4d:be:1b:ff:b4:0d:fe:5b:90:09:b1:32:75:36:6d:
d0:36:ba:7f:57:d1:a7:58:fa:4e:16:69:24:11:5e:01:54:0a:
90:85:a2:83:1f:ce:38:a6:bb:e1:50:b0:b6:9e:46:8f:2d:c8:
ae:99:11:57:e5:20:67:2c:d6:e4:23:0a:c0:85:c5:91:82:1d:
fd:2d:70:5d:59:ff:30:92:72:72:0f:fb:3f:fa:56:8d:24:f5:
51:3e:0d:cf:51:f4:dd:13:d2:ac:0f:e9:80:01:3f:36:3f:e5:
67:08:f8:92:e9:ff:f6:c7:b0:46:4d:80:75:ac:00:05:d0:fe:
35:6d:74:03:9c:a7:3a:fd:82:b5:3b:d1:3c:8f:75:7f:a4:6c:
b3:3e:66:20:a6:43:b7:5c:67:19:39:16:83:8c:0d:c7:be:3c:
db:d4:96:ef:a1:09:07:7a:a4:6d:8c:86:ae:06:2a:e1:f7:44:
df:aa:15:4e:7e:f4:7f:1a:d5:0e:9e:36:f5:56:58:f9:e8:c7:
81:6a:5f:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 03:25:37 2025 by rpki-client