Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
File: lhzPqdAsvwWWDjovkHmFnM1urW0.mft (raw, json)
Hash identifier: gAAPYQXSyTySrDzg3ys1QX+JbJfD5y3CxOAOhLeFyro=
Subject key identifier: 93:FB:54:2E:42:C0:2C:3B:30:44:B5:48:74:B9:2C:A5:58:9E:6E:83
Authority key identifier: 96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
Certificate issuer: /CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Certificate serial: 0194C42C64B74FD545574CABF3374528D2EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
Manifest number: 142F
Signing time: Sun 02 Feb 2025 01:00:31 +0000
Manifest this update: Sun 02 Feb 2025 01:00:31 +0000
Manifest next update: Mon 03 Feb 2025 01:00:31 +0000
Files and hashes: 1: lhzPqdAsvwWWDjovkHmFnM1urW0.crl (hash: RVZvciwpGbD7OCo8IB+7bnh62PV47IYKgITk7dDQy/s=)
2: qTElxIuYhBq2Kr2moM3xQmQlUEA.roa (hash: 6HA56HJcMMODNW40FbLFvKXa1rIMDv54m0DX5YcNqN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:64:b7:4f:d5:45:57:4c:ab:f3:37:45:28:d2:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Validity
Not Before: Feb 2 01:00:31 2025 GMT
Not After : Feb 3 01:00:31 2025 GMT
Subject: CN=93fb542e42c02c3b3044b54874b92ca5589e6e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6b:dd:d0:d2:73:8c:53:6d:2e:83:82:69:f4:
fc:c1:2a:87:73:95:76:50:b1:03:cd:f4:91:f3:50:
60:53:4a:2a:d1:18:69:67:51:5c:7e:47:d8:1c:f9:
e9:71:92:7d:a0:05:6c:d6:2b:4f:8d:d7:2a:ab:84:
b7:16:17:24:62:64:a7:4c:09:3b:17:a4:c9:00:a4:
5a:9d:5b:51:2d:a4:e9:c4:66:ba:33:00:98:51:5c:
d6:d1:e7:26:5a:1c:61:c7:22:6a:a0:56:00:47:60:
d8:4f:65:76:90:d5:24:be:fa:e2:dc:2e:73:19:02:
40:9e:c6:35:ab:cb:cb:6e:40:13:f7:1c:f1:38:31:
f6:fc:b6:be:3f:d6:5d:c4:5c:e5:f4:af:22:7d:4d:
88:64:0e:fb:97:a5:5d:9c:09:19:9e:31:e3:9c:fb:
92:5a:91:a3:28:cb:c7:7d:37:50:67:32:6f:84:f6:
8d:eb:b1:ee:97:17:dd:ac:61:c2:64:cb:02:ab:c0:
88:02:c1:93:1d:ae:8c:6d:6a:db:52:7a:e4:38:81:
b1:bb:a2:20:74:d1:34:37:f3:f6:52:22:e1:6b:c5:
52:24:43:a2:d5:4e:f0:47:99:b6:50:15:e8:e4:4d:
d4:f8:18:3d:15:03:7c:b8:d9:4a:89:d6:70:c1:a8:
d4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FB:54:2E:42:C0:2C:3B:30:44:B5:48:74:B9:2C:A5:58:9E:6E:83
X509v3 Authority Key Identifier:
keyid:96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:ea:3b:81:13:f9:4b:5e:77:9d:5e:a8:f7:fb:9f:88:47:c2:
83:9a:e8:27:90:1f:6d:c7:54:9e:db:9f:ed:5b:b5:d6:ba:e5:
43:5e:8a:45:a6:cc:7f:d4:f1:a0:47:5e:b9:2d:6f:30:44:5b:
8d:2d:6a:54:5f:13:e3:4a:1a:14:76:11:98:1f:a4:91:3a:b3:
15:17:e1:d2:83:cf:40:d2:0c:b0:0e:58:2e:ee:2b:2e:a8:4f:
66:72:b5:aa:2c:01:52:45:36:41:16:70:9c:c6:c0:0b:a9:c3:
c1:75:55:6f:de:99:63:0e:cc:12:59:3e:ff:30:aa:4b:e8:d4:
5c:27:d3:7b:bb:5f:51:c9:80:e6:20:44:09:5d:c7:3e:90:76:
bb:a4:df:35:b9:4f:8f:08:42:d0:fb:9d:ae:0c:e9:36:61:a9:
48:8e:42:de:16:af:35:c8:07:b2:4c:e2:74:33:04:a4:f0:12:
09:cc:96:b6:7d:ce:64:ac:00:46:8d:8b:b9:1c:00:7d:a1:0e:
db:52:a9:72:1a:cb:f5:cb:74:28:5e:cb:4b:7f:4e:cc:6c:2d:
ab:b9:00:70:12:f6:8b:61:f7:c1:42:4c:74:89:d0:3f:a7:0f:
a3:05:6b:f4:41:30:9a:b8:ec:08:59:a9:83:1f:cf:d8:c8:a0:
8a:0f:44:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:03:11 2025 by rpki-client