Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: Pv1au4X6msWGu2DX9UJvrgGE0a2DZVMRItz3jsngAKs=
Subject key identifier: AB:32:07:1D:83:82:3B:24:D6:76:36:F4:BF:7C:60:14:CB:47:4C:23
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 0196556E6715CBD042414FC2AD40687C7480
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 23:00:20 +0000
Manifest this update: Sun 20 Apr 2025 23:00:20 +0000
Manifest next update: Mon 21 Apr 2025 23:00:20 +0000
Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=)
2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: Bx+l5uLo6wccqiGlR4XzcjrzZ4l4YgfYhliP6UJwQqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 23:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:6e:67:15:cb:d0:42:41:4f:c2:ad:40:68:7c:74:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Apr 20 23:00:20 2025 GMT
Not After : Apr 21 23:00:20 2025 GMT
Subject: CN=ab32071d83823b24d67636f4bf7c6014cb474c23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a9:96:3a:7f:b5:ed:4f:97:b9:da:cc:16:40:
7b:58:cb:13:c1:18:be:88:51:cb:7d:fd:44:66:be:
64:9a:93:db:55:b8:12:2e:8e:3d:26:6c:ae:68:72:
6d:61:73:2c:85:11:8b:2d:8e:e6:00:22:a7:78:5b:
4b:b2:e0:24:35:32:ed:3c:03:64:7f:7d:f8:39:fa:
5e:b4:f8:81:92:80:f4:71:95:ec:85:67:e4:da:b0:
97:5e:14:6f:c1:06:1f:c1:c2:eb:46:4a:f4:4f:6f:
81:13:82:1c:9e:00:4b:c0:68:b4:e6:31:c2:c9:ce:
22:83:ae:3b:75:32:f2:20:37:0a:5f:7e:24:c8:a6:
04:dd:2a:86:2d:df:16:35:da:03:33:cf:2b:9b:79:
e4:47:c1:69:58:03:01:ec:92:19:91:5e:89:ba:d9:
33:7a:2d:c5:41:03:ca:ad:ab:6c:11:d7:9b:2e:ac:
79:2a:c7:fa:77:4f:da:dc:4e:b5:60:ce:84:2f:fb:
a8:b7:2b:d9:19:dc:e1:b8:74:78:8f:b6:8c:23:17:
48:79:7e:a8:0a:86:ab:3c:13:82:cc:58:10:31:d8:
57:de:1b:30:86:5c:93:54:e6:38:46:14:ce:d5:8d:
ef:76:0a:c9:57:88:cb:77:f9:f4:57:fb:72:7e:b1:
1b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:32:07:1D:83:82:3B:24:D6:76:36:F4:BF:7C:60:14:CB:47:4C:23
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:06:be:1f:ee:ee:18:c1:c1:65:76:c9:bb:17:f6:a1:e0:25:
30:b6:1a:d1:e3:98:ca:88:6e:90:f3:91:45:74:ec:c6:0a:3a:
24:76:1a:e2:69:8f:82:e9:c9:8b:65:00:ef:7e:b9:e4:01:11:
18:6d:57:08:07:b2:79:9c:7f:5b:c6:0f:bf:d5:00:b2:99:41:
82:22:6c:36:97:ce:d0:97:4f:71:1d:67:3d:96:6e:2b:e7:2e:
d6:b9:68:69:59:06:e2:5b:3a:f1:6a:0c:20:4c:0e:9f:72:e0:
9a:c7:dd:5f:98:54:36:27:52:d0:f2:69:13:c6:6a:69:1c:35:
b4:95:53:42:ed:e1:3c:4e:96:c0:43:48:97:53:95:c6:79:b6:
03:a5:af:55:44:24:e8:77:fc:fc:48:2f:a3:3d:46:4a:af:5b:
98:6e:d5:3c:63:3f:06:b7:9f:b9:0a:15:b3:6c:49:b8:43:9a:
16:0b:76:f5:5d:d7:f1:af:d2:73:86:66:94:ee:2e:d3:4d:65:
0d:1c:51:fe:b3:bd:a1:26:56:9f:54:71:0a:4c:aa:19:65:bb:
9e:5c:4d:de:6d:23:3f:2a:cc:e6:86:bb:93:7f:07:0a:97:5d:
37:fb:97:b7:2d:dc:5a:e0:e9:92:5e:2d:cf:6b:3b:07:dc:9e:
e8:98:d3:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:21:41 2025 by rpki-client