Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
File: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft (raw, json)
Hash identifier: 6tb+NphE91FwK9CkCzk9ARP42XcqPl7I4Du0kQJzDcw=
Subject key identifier: 36:89:51:68:AB:84:E3:24:E1:20:20:31:2A:05:23:69:52:E6:2D:BE
Authority key identifier: 96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
Certificate issuer: /CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Certificate serial: 019653801823206A4114A333A97C103E271D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
Manifest number: 0C34
Signing time: Sun 20 Apr 2025 14:00:25 +0000
Manifest this update: Sun 20 Apr 2025 14:00:25 +0000
Manifest next update: Mon 21 Apr 2025 14:00:25 +0000
Files and hashes: 1: O8xQyf4SlO_QA8u4YHx9nqfuT4c.roa (hash: WyDwMMx1y5LT2GHueRZtXWT+BMFzzrzU6Km40azPSxA=)
2: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl (hash: TDd/ORXPFZZ7zcQaPDS2FdMkRtX4/uWKe0mytm0bJQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 14:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:80:18:23:20:6a:41:14:a3:33:a9:7c:10:3e:27:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Validity
Not Before: Apr 20 14:00:25 2025 GMT
Not After : Apr 21 14:00:25 2025 GMT
Subject: CN=36895168ab84e324e12020312a05236952e62dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:ad:46:6e:2b:56:38:51:d2:4f:c1:64:a9:
77:0b:e1:b9:cb:7e:be:ac:7e:3d:a7:d9:35:e4:16:
20:07:f3:c7:1e:5a:8e:ec:b2:31:d7:84:f3:20:b5:
16:ce:6b:69:32:56:69:28:d9:dc:56:8e:d2:12:25:
0e:32:c0:2f:8c:8b:72:e0:01:9c:04:f8:94:e9:75:
92:e4:41:08:aa:1b:43:8c:42:21:6b:53:c9:2d:a1:
6e:96:9c:b4:56:61:2f:ba:ab:4e:6f:6b:19:02:9b:
54:58:6f:7a:e2:95:fe:61:ac:ed:1e:e9:89:10:ce:
00:0c:1b:a1:b5:a9:7e:37:92:0d:55:b0:8c:22:27:
3d:4b:2c:59:56:b9:47:86:ba:0f:99:c7:4c:cd:da:
3d:2c:d9:f5:71:d2:ba:19:b2:2f:cc:c8:6e:3a:c4:
f3:13:c5:64:bf:c0:b3:0c:4d:cc:f4:f7:35:a0:13:
87:2d:30:7a:48:f9:f0:5d:cc:4a:10:1f:8f:56:69:
05:69:02:cf:9c:b4:98:94:dd:4a:39:25:13:e6:d7:
dd:ac:0e:01:bd:59:77:64:3e:f5:65:3c:1d:94:be:
fc:98:6d:a4:45:8d:64:54:00:4c:60:77:6a:f8:e2:
15:ff:b6:a0:1c:ae:21:24:67:56:05:c8:ff:13:3d:
ef:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:89:51:68:AB:84:E3:24:E1:20:20:31:2A:05:23:69:52:E6:2D:BE
X509v3 Authority Key Identifier:
keyid:96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:e6:01:df:34:2b:ea:22:b9:52:02:ed:7c:be:c5:b6:52:8d:
8c:ad:0f:e2:f2:01:f2:d9:75:2f:2b:25:81:b0:5e:90:2a:0e:
96:43:20:7f:ce:5f:5f:08:48:67:35:b1:20:d1:ac:83:62:c8:
6b:fb:54:37:96:3b:58:18:e0:ea:9e:03:af:48:1c:c2:9e:b6:
f2:85:7b:9f:f8:fd:14:53:53:fa:e5:f1:b1:d8:3b:9c:2b:86:
3b:4c:a5:44:ce:03:7f:29:09:2d:9f:9a:42:4c:d2:61:ac:90:
96:70:08:22:29:72:84:8a:c8:b2:a5:30:0e:5d:75:d2:a5:b1:
ee:c0:c4:4b:f0:73:07:51:9f:6a:57:3c:9c:10:65:ef:94:b1:
60:19:20:8f:6c:2c:2d:80:07:a0:2d:13:44:7d:1a:82:04:1f:
b8:75:35:bb:5a:35:7b:da:00:ef:9c:5d:c4:2a:0c:5d:3e:c5:
5c:47:e9:5f:bd:98:28:9d:fb:f1:37:7f:8d:c2:ee:ec:93:4d:
1f:a5:af:9c:32:f3:d1:6c:30:4a:a2:cb:12:df:81:51:eb:94:
b2:3e:c1:63:6d:a5:b7:26:be:6c:b9:54:2e:b2:0e:9b:60:ec:
3f:99:cb:f2:89:4d:1e:22:8d:c6:f3:42:e8:37:e7:82:af:96:
7f:03:a4:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:01:51 2025 by rpki-client