Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier: Wd5d+6BvXzgwIHxy5+94JiaVY+6DA114E3nR2vnW5II=
Subject key identifier: C4:DD:47:1B:7E:50:7B:13:55:A5:32:36:5A:B9:76:94:A7:7D:45:AB
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial: 019674F9E4F9268A707A2616C8D93C84E451
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number: 1277
Signing time: Sun 27 Apr 2025 02:00:56 +0000
Manifest this update: Sun 27 Apr 2025 02:00:56 +0000
Manifest next update: Mon 28 Apr 2025 02:00:56 +0000
Files and hashes: 1: 0hGuI9abbnH5IARURiUpnsE2cKk.roa (hash: DuwUAcXW//1k2Md+MdRwDGn9pw5DCw3cr3zSvWu8/Sg=)
2: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: goAWVlJYEZqK6iOqvErdokoYvLfONmXiutsdA/nXMtk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:f9:e4:f9:26:8a:70:7a:26:16:c8:d9:3c:84:e4:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
Validity
Not Before: Apr 27 02:00:56 2025 GMT
Not After : Apr 28 02:00:56 2025 GMT
Subject: CN=c4dd471b7e507b1355a532365ab97694a77d45ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:92:4b:5b:d9:3c:40:29:84:27:dd:ae:f2:30:
46:cc:6a:17:c9:0f:31:3b:44:1c:5a:74:db:9d:3e:
d8:97:46:33:e7:0a:1f:dc:06:ab:14:f6:16:df:96:
1b:e3:8b:01:28:b0:33:97:61:1c:e1:f0:af:b4:4b:
a9:48:d8:0e:dd:11:5c:d0:4d:00:08:86:7a:4b:a6:
f5:c9:8c:3a:c1:e8:54:41:e6:cc:f9:73:05:9d:db:
3d:6b:6c:e4:98:44:6a:40:50:b1:de:04:0a:ef:e6:
d8:7a:9f:0a:82:3d:69:65:75:6a:44:bc:4d:e6:39:
29:c6:6b:58:0a:b9:1c:cb:8c:85:a1:e1:b6:5a:a8:
8b:49:ef:64:31:c5:91:ae:88:de:b2:f3:06:44:66:
10:9d:89:ec:c9:3b:e9:d1:f0:74:33:42:d5:f0:04:
ea:5d:bb:55:7e:54:e7:92:a7:58:fd:f1:fc:e0:b8:
cf:64:f1:a0:c0:9e:76:f9:a7:9e:e1:c0:2c:a1:20:
69:39:41:62:3b:2f:57:82:1c:cc:83:3d:ba:86:01:
5f:86:9a:ee:68:cb:37:ea:9b:2c:5c:da:0c:7a:86:
5c:9f:9c:dd:47:25:87:98:a3:04:d0:fc:7a:00:74:
ea:11:63:4c:33:59:60:25:8c:6f:f7:27:ff:cb:38:
bf:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:DD:47:1B:7E:50:7B:13:55:A5:32:36:5A:B9:76:94:A7:7D:45:AB
X509v3 Authority Key Identifier:
keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:b1:5a:0b:66:75:ae:fe:3a:f7:b4:d6:87:45:41:be:9f:0b:
59:12:6d:c8:2e:e4:d7:d3:ea:d5:10:53:03:f8:aa:2b:15:22:
a4:62:a2:3b:a3:e7:f4:b1:2c:e4:6a:2a:d9:a3:c7:0a:21:11:
82:10:65:fc:c1:03:69:ff:93:9b:ea:66:b1:64:ba:28:5c:2c:
d0:33:21:db:5d:13:e3:3f:f4:66:86:ab:63:9f:96:06:8c:7d:
92:0c:dd:7a:38:fe:65:94:b1:fa:7e:41:db:31:27:67:41:58:
e6:38:17:d8:74:b6:2d:f2:4a:64:49:ff:9b:cc:b4:9b:72:d7:
4e:2c:69:17:ac:c5:81:7b:70:5d:52:f7:b9:32:e1:e6:44:d4:
15:0a:5a:44:c2:e3:d8:fb:70:5a:d9:56:95:69:59:ca:04:6f:
1c:ef:a4:87:be:c9:2c:ef:13:18:cd:85:f5:6d:bf:ba:7e:4a:
11:0b:9f:1e:15:ce:6c:c1:ff:91:a3:2e:d7:ca:1f:29:f7:ef:
0f:0a:f1:a7:07:ad:aa:32:be:b1:3e:ea:98:f8:97:8b:88:41:
e2:c3:31:f8:be:d9:20:c4:52:08:89:23:eb:ef:40:9b:dc:8e:
3d:d6:63:c1:00:53:cc:30:e2:36:7b:57:0e:d5:2a:a5:36:a1:
57:09:be:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:49:15 2025 by rpki-client