Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier: cL2TFVxF+fAYJsXqpLKubt7viTjFVdd+YLzo0kOlhQE=
Subject key identifier: 49:61:66:20:F4:5F:CF:38:6A:B5:AC:22:26:D5:5A:C1:44:23:29:D1
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial: 019511A284B1BCEBB460FCDCCAC4CAB81D23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number: 11BF
Signing time: Mon 17 Feb 2025 02:00:18 +0000
Manifest this update: Mon 17 Feb 2025 02:00:18 +0000
Manifest next update: Tue 18 Feb 2025 02:00:18 +0000
Files and hashes: 1: 0hGuI9abbnH5IARURiUpnsE2cKk.roa (hash: DuwUAcXW//1k2Md+MdRwDGn9pw5DCw3cr3zSvWu8/Sg=)
2: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: MkKMwMkJOm8VG7dj6hPR79N8zxnUMSdxh7gvyfRp810=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:84:b1:bc:eb:b4:60:fc:dc:ca:c4:ca:b8:1d:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
Validity
Not Before: Feb 17 02:00:18 2025 GMT
Not After : Feb 18 02:00:18 2025 GMT
Subject: CN=49616620f45fcf386ab5ac2226d55ac1442329d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:65:c7:d9:b2:4c:c1:4b:cb:b3:fc:23:4e:fa:
4e:fd:57:2f:79:2d:b6:f4:9e:50:42:86:7b:df:a5:
cd:ec:54:1f:bd:91:7d:bf:8c:7f:f6:be:be:16:7a:
a9:8b:64:bf:cc:94:d7:a7:d5:6b:5d:f4:bf:41:2d:
4f:20:28:14:83:08:f4:d7:6c:12:2a:c5:12:cb:6b:
9e:16:66:fa:90:f8:40:2b:be:33:e3:3c:a3:9b:9b:
d3:0d:df:12:e5:51:99:eb:b1:c1:21:96:c4:a5:8c:
40:5e:b5:9b:d6:f4:24:f8:b6:24:69:e2:11:bd:b1:
17:0a:10:c2:7a:ac:1e:4b:93:df:0e:af:06:26:ca:
2d:32:41:89:f4:b6:92:74:b5:e7:8f:b4:bc:51:14:
87:4f:15:1d:7b:25:43:0c:b4:77:f7:2e:39:72:2a:
55:5a:8f:d4:6d:87:a2:dc:bd:99:bf:1a:ee:c8:e6:
ef:b1:52:fe:c3:87:b4:ff:96:3e:b9:72:08:2f:48:
91:5d:1f:e9:87:51:e3:70:12:d1:dc:b1:ae:70:7d:
e9:cf:56:7f:fb:27:b8:b6:ef:6e:0d:1a:da:a0:86:
ad:b9:b6:da:93:ea:5f:ae:2d:f5:13:da:76:44:44:
6b:71:99:7e:37:29:73:24:b1:86:df:ba:ef:9e:19:
35:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:61:66:20:F4:5F:CF:38:6A:B5:AC:22:26:D5:5A:C1:44:23:29:D1
X509v3 Authority Key Identifier:
keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:96:16:b8:34:47:b4:d0:7d:e9:4d:32:91:03:21:71:47:54:
8f:6b:db:0f:f4:d5:aa:58:c4:bd:da:78:b1:7a:f7:23:e5:cf:
75:27:89:75:fb:2c:23:73:d6:b9:1c:5b:19:cf:25:78:05:ce:
42:a2:1f:9c:96:b2:ca:b7:0c:0b:c5:db:45:98:8a:86:cd:77:
e8:48:90:dc:74:ed:2a:f3:40:4a:53:72:18:7e:fb:63:f9:5a:
c7:5c:17:9b:fe:41:77:df:ae:46:5a:cd:ec:9b:e3:20:de:8e:
fd:cd:c7:41:3d:09:10:60:12:4f:20:db:d0:c5:34:b0:18:af:
fd:ea:4d:cb:bd:fa:94:fb:52:52:a4:99:6c:8f:6f:64:71:c7:
50:7c:86:65:f5:9b:f9:da:9d:61:cc:9e:03:c6:aa:ee:82:c7:
a4:8b:48:f7:8f:02:25:ee:17:d9:93:47:a9:f1:6d:1a:5e:9c:
2e:41:ba:c2:30:b7:70:a3:f5:ed:ad:f6:d2:42:1a:d3:16:d9:
78:d9:f0:2c:c0:98:87:64:05:7c:ca:7a:03:dd:3a:79:aa:2b:
fb:1f:7e:7b:7a:1e:28:a7:34:2e:b2:ec:4a:ce:76:65:9c:63:
4d:3a:63:c8:32:ec:c2:a5:b2:c8:34:a8:76:bd:7a:e0:b9:fe:
81:90:00:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:06 2025 by rpki-client