Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
File: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft (raw, json)
Hash identifier: gWR6GoNlrW8mRKbC0WeLpIZ3vNHMO8ZVzOD6qm1SMRc=
Subject key identifier: 0F:05:2B:74:54:FD:B8:3F:4E:1B:30:9A:A1:B7:F5:BE:56:95:73:59
Authority key identifier: 96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
Certificate issuer: /CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Certificate serial: 019365FC8A6747C22C4F3CCFF4CA0EB71C78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
Manifest number: 0AAF
Signing time: Tue 26 Nov 2024 01:01:09 +0000
Manifest this update: Tue 26 Nov 2024 01:01:09 +0000
Manifest next update: Wed 27 Nov 2024 01:01:09 +0000
Files and hashes: 1: edpENM9sql54NqBm8JVOVUioXhc.roa (hash: I/xbUYdH73HbXkHFn6g2KmkLqZ/n1AwGaZEm9Ed5H3o=)
2: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl (hash: SXnFG75vbBFRTUWnSAutyZLZJLf0EGWKFJgQeUO2fO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:65:fc:8a:67:47:c2:2c:4f:3c:cf:f4:ca:0e:b7:1c:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Validity
Not Before: Nov 26 01:01:09 2024 GMT
Not After : Nov 27 01:01:09 2024 GMT
Subject: CN=0f052b7454fdb83f4e1b309aa1b7f5be56957359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5e:76:7c:92:2b:3b:08:09:b5:88:09:e7:ba:
a2:05:ac:34:aa:8c:8d:46:c2:37:46:4f:7f:64:d9:
bf:87:78:b8:51:91:a3:c3:7e:7f:16:3b:7d:5b:4d:
18:5c:1f:23:25:75:7b:88:ea:4b:b2:b8:09:d1:34:
9c:0c:c5:64:59:f0:b8:04:0a:af:6f:95:1c:03:1f:
20:13:fb:b2:19:72:28:f6:16:d6:70:83:55:0e:8f:
62:b0:af:c9:d6:0a:75:ce:d9:36:68:14:47:f5:70:
38:eb:39:8c:ab:29:76:b7:bf:10:40:5f:17:2f:89:
93:c3:44:1c:fd:e7:80:67:80:ac:65:d2:30:6d:1a:
75:75:5c:9c:f9:56:a1:83:06:13:cc:02:52:cb:63:
47:95:60:3b:59:b9:9f:71:f6:22:df:02:08:44:f4:
ef:a7:97:df:20:ee:ee:8f:bb:4a:16:88:a3:67:5a:
6a:37:a5:d1:b6:8a:23:ac:ba:0c:a7:1c:76:46:a8:
49:68:aa:58:d6:8d:c9:ea:96:a8:45:a0:d7:97:7b:
4e:9a:0e:c5:e1:d8:d2:22:f3:41:e3:3c:46:28:09:
31:00:17:af:47:60:f2:43:a5:6d:d8:53:9b:7a:69:
b0:63:29:8f:d8:c0:f3:aa:f2:e5:b4:ff:29:ba:30:
d3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:05:2B:74:54:FD:B8:3F:4E:1B:30:9A:A1:B7:F5:BE:56:95:73:59
X509v3 Authority Key Identifier:
keyid:96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:36:77:de:6e:30:6d:c7:19:f1:0b:bf:bc:0b:64:a7:f9:05:
cf:54:f5:0a:ce:22:43:d3:24:1d:98:dd:18:86:77:72:70:ac:
f0:cd:09:86:82:a9:f3:82:e8:88:cf:c3:6c:d3:47:75:3b:33:
47:70:1b:2c:49:3c:a0:b5:74:47:e8:21:c1:e4:9a:46:45:08:
68:7f:36:35:b2:b4:9e:94:59:9d:a2:9e:52:a7:a8:fb:7c:5e:
af:3b:0c:57:7d:f1:69:bb:3a:4e:1e:5c:26:ab:a7:5a:34:34:
ba:09:d9:45:63:4b:47:7c:21:b3:b1:d9:84:26:94:c2:55:db:
00:17:1a:1d:c2:77:f3:e6:a3:4b:a6:34:45:17:93:6a:e2:c7:
96:26:a3:0c:66:5a:6f:fb:98:8b:2e:cd:71:22:7e:11:e2:1b:
ae:e6:da:39:12:f2:8c:b3:8f:87:10:43:d3:8d:55:3e:87:75:
e0:a2:1f:11:04:c7:d3:af:4a:07:7b:79:21:f6:5f:31:cc:a2:
3b:aa:0b:4c:e0:bf:28:ce:a6:36:2e:17:68:63:05:93:92:65:
c5:39:de:90:d7:a8:19:87:6e:ce:1b:ec:ff:ce:52:b2:a1:71:
dc:52:18:ef:eb:a0:e2:3d:0c:00:cf:fe:98:81:c7:75:11:9a:
cd:59:47:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 09:11:15 2024 by rpki-client on console-fra.rpki-client.org