Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
File: lWmTFkJJYHEcLo7LU2vdArxyT60.mft (raw, json)
Hash identifier: wfeweKTw9+Uq1uW1heto3LS4DFteZ9LuXj2mC9CQdUg=
Subject key identifier: A5:B6:8F:7F:40:BA:B6:8F:AE:26:94:40:15:05:0D:26:EB:1C:FC:42
Authority key identifier: 95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
Certificate issuer: /CN=95699316424960711c2e8ecb536bdd02bc724fad
Certificate serial: 0191FB59E59E47478C7BEE07756B544DD67E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
Manifest number: 0135
Signing time: Mon 16 Sep 2024 15:00:58 +0000
Manifest this update: Mon 16 Sep 2024 15:00:58 +0000
Manifest next update: Tue 17 Sep 2024 15:00:58 +0000
Files and hashes: 1: ROQYepZ-v8BpizZNFAuq8_5LQQQ.roa (hash: HeZYedzCsaQGPpqIJoKwPmM/qKpN9HSnrP+Nc4cnPow=)
2: lWmTFkJJYHEcLo7LU2vdArxyT60.crl (hash: alyFFFlXN0+7fwufxdkZ0AML47a8Hz7rEShUFFZakYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 14:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fb:59:e5:9e:47:47:8c:7b:ee:07:75:6b:54:4d:d6:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95699316424960711c2e8ecb536bdd02bc724fad
Validity
Not Before: Sep 16 15:00:58 2024 GMT
Not After : Sep 17 15:00:58 2024 GMT
Subject: CN=a5b68f7f40bab68fae26944015050d26eb1cfc42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:9e:03:4d:35:ec:ed:4b:8e:79:78:aa:0e:7a:
9b:7d:cb:ad:ae:fa:43:76:64:cc:dd:b2:85:f3:76:
e4:a4:b4:9c:97:8c:35:d9:b6:de:02:75:a1:a4:b5:
c2:19:d2:35:5f:83:50:1c:6c:62:2e:0e:1e:3b:b1:
6b:1d:3c:b3:c0:9f:a0:06:20:67:84:b9:67:f4:73:
0b:b8:20:81:db:77:1b:dc:d2:ff:ab:5e:38:3b:24:
7b:35:9d:db:9d:b3:cf:2e:e0:a6:7b:5a:b1:bb:c8:
9c:6d:d3:1c:7c:a0:ef:07:2b:03:99:52:94:5c:a0:
90:36:06:39:63:54:9b:05:31:dc:31:fb:fa:34:15:
a8:ab:7e:40:d9:df:6d:fa:cb:1b:e6:f6:c4:b5:06:
b5:e3:4d:23:42:36:99:39:a7:9f:b4:bb:1f:8d:e9:
7f:fc:35:2b:c5:de:d6:5e:27:fc:f9:0f:17:9c:c4:
86:fc:ca:03:4b:cb:48:19:d5:21:64:07:2f:6d:72:
69:3b:0b:be:20:cc:7e:ff:16:e5:74:69:a8:96:2c:
3c:5b:29:33:b0:a3:45:51:7d:a7:fb:88:8f:36:10:
2f:b7:2a:5c:22:4a:64:2a:c5:be:bb:68:b3:a2:19:
26:5c:54:4e:d9:c2:79:5e:58:9e:75:bb:e4:4a:72:
ea:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B6:8F:7F:40:BA:B6:8F:AE:26:94:40:15:05:0D:26:EB:1C:FC:42
X509v3 Authority Key Identifier:
keyid:95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:42:b4:c4:d1:50:b9:1d:20:6f:7f:5e:8f:d7:fa:0f:05:49:
26:0f:df:1e:ba:b6:4d:48:37:cf:8a:c5:ab:00:7a:ad:83:f2:
a6:17:77:8c:7f:18:1b:25:3d:4a:eb:fd:b5:1c:99:72:5e:ff:
08:fd:26:b5:e9:43:28:1d:c5:57:45:e4:26:5d:fa:7a:16:2b:
14:d2:c5:50:49:53:a4:92:6a:27:29:a0:93:98:9a:2e:db:bf:
06:3f:94:6b:be:95:2a:10:23:b8:de:55:0f:11:62:3f:fe:18:
84:1f:48:22:e4:90:9d:4f:e8:77:c7:9b:53:9b:5a:bd:54:0c:
b3:27:04:4a:34:be:6d:62:8f:5a:5e:c8:c5:4a:02:ed:c9:9b:
0d:a8:84:e7:52:03:1e:05:e7:da:61:30:6f:02:2e:88:01:a4:
50:b7:99:2c:f1:5f:6e:e8:bf:cc:f0:cb:56:18:63:21:d8:84:
1f:51:aa:8b:e4:30:ec:32:bb:da:34:ea:25:a0:47:0b:6e:96:
6a:5c:73:86:da:71:7a:73:ea:3a:49:87:8e:00:c7:cd:b3:f3:
06:f3:f1:ec:51:c4:51:f7:64:05:b2:40:55:7d:9b:6a:69:aa:
99:6c:eb:cf:56:2e:d8:61:61:46:c2:ca:fb:11:27:47:df:07:
af:38:19:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:14:12 2024 by rpki-client on console-ams.rpki-client.org