Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier: JzdbaexU3xKVHwK5H2lSngoFvQQpaRoh+Tsx9PfiImk=
Subject key identifier: C9:FC:64:66:B7:69:14:DD:FE:F4:1A:2D:B6:2A:B5:2F:B8:BF:2E:0C
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial: 01901DEB31E1090C07FE3A813A40B062D47B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number: 0F2E
Signing time: Sat 15 Jun 2024 22:01:11 +0000
Manifest this update: Sat 15 Jun 2024 22:01:11 +0000
Manifest next update: Sun 16 Jun 2024 22:01:11 +0000
Files and hashes: 1: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: s1yCmnCrHhi6/YcuTImNt9tYf23wa2uttwDFcbZiUhQ=)
2: uezppMtx20TJ9hSLNKf7oDMfj7I.roa (hash: pjoCbWNfCMy3URyM7PkgUwc2dHIRgW5Ux6bAVtpfczc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:eb:31:e1:09:0c:07:fe:3a:81:3a:40:b0:62:d4:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
Validity
Not Before: Jun 15 22:01:11 2024 GMT
Not After : Jun 16 22:01:11 2024 GMT
Subject: CN=c9fc6466b76914ddfef41a2db62ab52fb8bf2e0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:66:2b:5d:a4:0d:ec:2b:24:7b:cb:df:87:58:
e9:a5:ce:4e:d3:8c:d3:9b:1c:9d:f1:a5:e5:2e:4b:
1a:4e:df:1d:8b:5a:e0:bf:3c:77:db:9f:44:0d:7b:
ef:f2:2a:89:ec:2b:55:1d:8c:fa:bb:19:19:53:43:
ce:30:ea:e8:37:f1:34:59:af:03:22:a7:4a:82:78:
e3:81:04:d9:e9:91:60:95:9b:3e:c2:34:2c:40:eb:
90:1f:b4:cc:89:15:78:51:2a:1c:88:60:7f:10:2d:
6c:cc:19:68:26:86:75:3a:08:ab:02:d8:a5:59:cf:
b4:60:da:67:e7:03:c2:86:53:c6:81:fb:3a:18:ce:
0a:89:78:0c:3a:a3:67:aa:2d:f9:83:78:df:d4:4f:
98:d3:42:c1:db:38:07:39:17:6e:c9:4f:66:b4:c6:
98:b4:1d:3c:a2:a7:87:89:77:0e:c7:ee:6a:d0:98:
4a:ab:bc:10:9b:ef:da:69:f6:ab:f7:bd:1c:79:ca:
4f:41:f3:54:e8:a6:92:8f:c3:6c:0a:83:de:02:15:
e2:c7:a9:da:33:ba:20:d9:f0:bf:d5:45:cb:31:aa:
f0:5b:35:da:8b:3a:65:3b:f1:8c:85:a2:64:ea:ef:
61:93:e7:f0:0a:51:54:08:90:29:01:e2:62:b3:02:
98:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:FC:64:66:B7:69:14:DD:FE:F4:1A:2D:B6:2A:B5:2F:B8:BF:2E:0C
X509v3 Authority Key Identifier:
keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:52:0d:cb:c2:24:36:64:2c:f9:eb:0e:c3:45:62:49:16:79:
47:c7:69:03:63:60:8e:cd:d7:aa:09:30:b6:7d:12:b7:83:b2:
0b:5a:1e:4b:6c:ce:43:09:b5:4b:1d:52:77:ac:64:00:2b:c7:
33:f3:3a:cd:1f:ca:de:05:8d:91:2c:2e:21:f1:49:ac:2d:98:
7e:c0:61:fd:41:e8:a8:56:33:42:a2:76:d4:9f:a4:65:4c:3f:
50:97:8c:cd:da:db:13:6e:7c:64:4c:a3:cd:0b:8b:83:02:f0:
b1:82:23:32:14:c9:ad:1d:1b:15:4f:57:e2:21:51:b4:b3:b0:
29:44:1d:48:4c:3f:71:c6:45:a4:3d:b2:f3:3e:41:84:a1:d7:
83:3a:14:ed:55:39:2d:19:f5:4c:b0:c2:ac:02:f4:09:66:1b:
e9:31:a8:81:e0:84:54:0b:6e:da:0a:0a:9d:59:b6:a1:92:ad:
47:c8:0d:3c:db:5b:c2:58:24:50:19:23:15:03:8d:7c:a1:f2:
ac:1b:ff:5b:c2:f9:23:19:7f:10:3d:73:fb:a2:89:fb:da:8d:
8e:4d:da:13:d5:f6:ea:c9:eb:d5:c3:8f:ee:e2:a3:4c:46:1e:
f7:b0:6d:70:e8:34:57:42:cc:54:ac:73:24:a0:cc:85:c0:61:
68:48:1b:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 23:32:05 2024 by rpki-client on console-ams.rpki-client.org