Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: m5c1124rtqFvpOSQi8S9vGwfBgHklfYDHEYwSA69sqM=
Subject key identifier: CD:26:B2:10:24:64:C0:CD:4B:B5:BD:FA:E4:95:37:ED:DA:C3:0E:91
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 01968992EFA54E1014D430F5DC81B0A25F0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 1519
Signing time: Thu 01 May 2025 02:00:30 +0000
Manifest this update: Thu 01 May 2025 02:00:30 +0000
Manifest next update: Fri 02 May 2025 02:00:30 +0000
Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=)
2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: gywUtrCtpJqM9q1dGQD5G6Y+1na1vSbbFUfG7feOmYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 02:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:92:ef:a5:4e:10:14:d4:30:f5:dc:81:b0:a2:5f:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: May 1 02:00:30 2025 GMT
Not After : May 2 02:00:30 2025 GMT
Subject: CN=cd26b2102464c0cd4bb5bdfae49537eddac30e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d1:17:5f:41:3e:a6:be:65:d7:2d:7a:62:bf:
1d:b7:be:8a:6e:22:1c:8d:f4:cc:0c:65:99:65:c9:
c3:e2:04:7d:5f:42:09:b4:6e:a5:9e:29:8b:26:a9:
c0:11:db:f5:8d:ff:d2:39:bb:d8:81:e0:33:87:d6:
05:ef:53:d9:9f:91:30:aa:93:de:41:bd:c0:c0:d6:
f5:bf:cd:37:3e:64:04:1b:49:ff:e8:64:57:c3:44:
b5:91:30:92:4e:54:5a:3c:f8:59:6b:6a:58:a0:b3:
05:f9:cb:79:86:1e:f1:df:0a:b5:e3:65:45:70:9d:
a4:54:a2:8e:ca:94:3f:f8:6c:10:83:44:e6:ec:83:
17:fb:f3:0b:7d:86:8f:6f:37:93:53:3e:d8:0d:53:
8e:45:6a:8f:e4:77:49:ff:da:dc:5a:2f:7b:4c:32:
7f:ba:55:14:9d:a2:15:a0:bc:bb:bd:97:b7:b6:1b:
53:d6:5f:7b:6e:30:04:97:9d:30:a1:4b:41:89:4a:
97:c5:c2:79:9f:82:80:e7:e0:54:d5:1a:dd:d4:bf:
da:a3:47:da:53:00:a5:bb:f9:49:7d:6f:7a:b5:d9:
77:02:89:e3:09:99:56:46:00:da:a7:3e:24:eb:7c:
dd:b9:ed:4b:78:91:35:aa:d8:a0:24:c6:0b:88:b6:
8a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:26:B2:10:24:64:C0:CD:4B:B5:BD:FA:E4:95:37:ED:DA:C3:0E:91
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:cc:09:79:b1:40:a1:25:02:3d:ca:98:f9:3e:ee:22:b3:3c:
f2:7f:23:a2:3e:26:3f:0c:30:3c:c9:d3:dd:aa:a7:46:0b:b9:
61:3f:e5:f4:ae:d7:9b:d7:15:e2:7b:60:9d:6b:be:f9:36:61:
ab:e4:75:0f:9e:d4:68:71:b3:d1:a3:74:2d:50:16:d4:4f:46:
12:55:1e:1d:95:ac:98:f0:83:f6:1f:38:4f:1b:a1:f9:de:cd:
ee:8f:63:52:48:9e:cb:bc:a6:80:b2:b0:29:fe:6b:4e:a8:2d:
d5:69:da:93:74:44:e6:5b:0b:3e:0e:09:6c:83:6c:d4:5d:a9:
12:69:4c:48:fe:55:10:ac:19:27:99:92:a8:fc:93:9e:6e:6f:
b4:37:08:02:65:3c:50:84:69:21:36:df:32:99:35:37:f6:4c:
10:a6:a1:1e:ea:cb:6b:c3:52:c5:69:d2:14:2a:58:5c:a6:51:
b2:84:4f:13:22:51:c1:37:fe:ad:fd:2a:f3:bb:fe:d7:23:72:
65:a5:d3:15:2d:1f:36:9d:51:15:63:95:a2:42:dd:00:51:bf:
34:d7:f9:d7:1a:89:70:56:ac:1e:51:a2:03:45:ee:3a:ff:a6:
dd:30:ec:1f:01:34:55:23:63:12:8a:51:c4:94:9d:db:1f:43:
1b:b0:af:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 10:24:37 2025 by rpki-client