Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier: 1j4v3YKOLlSFjTfAQhtjJr1m4NOhqg2CNzuF67ZWMy4=
Subject key identifier: C7:6C:9F:FD:B9:ED:FB:ED:F1:9E:2B:C3:28:18:38:6D:BF:6B:63:67
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial: 0196A3531FC4033856F9C66225E76FFC5ABA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number: 128F
Signing time: Tue 06 May 2025 02:00:55 +0000
Manifest this update: Tue 06 May 2025 02:00:55 +0000
Manifest next update: Wed 07 May 2025 02:00:55 +0000
Files and hashes: 1: 0hGuI9abbnH5IARURiUpnsE2cKk.roa (hash: DuwUAcXW//1k2Md+MdRwDGn9pw5DCw3cr3zSvWu8/Sg=)
2: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: FPFRn6mjetOm9pQ7uk5EQH6YMSk0vWZcxdNlPnPOLr0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a3:53:1f:c4:03:38:56:f9:c6:62:25:e7:6f:fc:5a:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
Validity
Not Before: May 6 02:00:55 2025 GMT
Not After : May 7 02:00:55 2025 GMT
Subject: CN=c76c9ffdb9edfbedf19e2bc32818386dbf6b6367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:e1:69:91:16:87:e2:b4:b8:c4:4a:c1:43:f5:
b6:23:af:8e:35:2b:08:bf:65:8d:d2:9f:23:50:f2:
b5:5f:b6:cd:4c:85:b9:4f:27:80:29:4f:88:90:ad:
80:ed:4f:59:b1:04:a0:00:8e:a4:86:02:79:65:00:
2b:7b:ef:b3:32:1b:8a:b1:74:fd:dc:b9:8a:8b:b9:
0c:d0:fb:bf:d8:bc:f9:40:b1:be:86:16:21:17:33:
70:a2:72:8d:a3:a3:01:9e:2b:18:78:33:ae:38:f6:
35:2a:ed:dd:05:3b:8f:6d:bd:4b:fc:c2:3f:a2:10:
69:2c:53:40:2e:7f:4d:fd:70:12:e2:d3:b4:1c:39:
f6:79:f0:9a:10:e4:05:81:6d:fc:b1:82:03:2a:cf:
80:71:54:d0:82:d4:a1:ba:00:95:ed:dc:cd:b7:08:
28:e1:cb:3b:10:75:32:34:ca:d4:b9:4f:e3:fc:c7:
5d:bf:58:f1:0c:3a:1d:22:3f:77:2b:c2:3b:bf:77:
f3:0f:d0:36:1c:f2:9d:dc:e1:e3:c7:76:23:11:a7:
6f:74:2e:0a:05:8d:5f:bc:fb:0f:b3:8e:c7:1f:78:
e3:6e:11:86:b3:96:d3:b9:1f:dd:d8:7b:55:59:eb:
7b:3d:6a:76:92:e0:c7:c3:b7:96:45:1c:91:d9:85:
ab:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6C:9F:FD:B9:ED:FB:ED:F1:9E:2B:C3:28:18:38:6D:BF:6B:63:67
X509v3 Authority Key Identifier:
keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:57:0e:4e:49:be:59:65:35:3e:22:ee:75:60:99:c7:89:6f:
71:7e:a4:46:77:56:e1:09:96:11:d2:aa:fb:d3:d0:bc:ae:3c:
f6:2c:7f:8a:cb:7f:8f:5c:c2:de:a3:48:90:ad:a9:67:b4:5a:
33:c0:45:a5:af:79:2e:c1:63:e8:60:09:35:26:d9:03:9a:92:
2f:31:7c:6d:bc:23:a4:01:75:dd:13:0d:0d:00:b7:59:78:da:
60:1a:f6:ed:09:d3:0f:3b:b7:a1:49:b4:bc:07:7c:56:dd:1a:
c6:8c:79:69:0f:90:e1:83:ff:76:5b:5b:af:c3:7d:76:01:a6:
04:df:b2:93:19:f9:43:cc:bc:3b:a4:6f:5e:1f:54:a0:b2:98:
ad:54:e0:7b:19:2a:da:b2:af:bc:7d:b2:ea:5b:f1:6e:49:07:
1f:31:c0:d0:63:87:8d:75:fb:aa:72:2a:36:21:0c:37:d6:09:
e8:58:59:5c:7c:8d:1e:dd:e6:0b:32:9c:04:2e:d8:35:6d:4e:
e7:52:a1:55:51:84:72:93:6b:11:2c:32:c6:fa:51:d2:45:a9:
46:4b:e3:ff:ca:ff:52:e7:70:2b:e1:00:28:d1:ad:ae:32:a7:
41:f3:46:f8:74:07:bc:d6:19:10:eb:0c:4c:72:e6:7d:50:aa:
09:dd:fa:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZajUx/EAzhW+cZiJedv/Fq6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2MTk5MzYwMjU5ZmE1YjM1YjgyOTUzYzVlZDk3OTk5MjI4
MzQxYWMwHhcNMjUwNTA2MDIwMDU1WhcNMjUwNTA3MDIwMDU1WjAzMTEwLwYDVQQD
EyhjNzZjOWZmZGI5ZWRmYmVkZjE5ZTJiYzMyODE4Mzg2ZGJmNmI2MzY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8+FpkRaH4rS4xErBQ/W2I6+ONSsI
v2WN0p8jUPK1X7bNTIW5TyeAKU+IkK2A7U9ZsQSgAI6khgJ5ZQAre++zMhuKsXT9
3LmKi7kM0Pu/2Lz5QLG+hhYhFzNwonKNo6MBnisYeDOuOPY1Ku3dBTuPbb1L/MI/
ohBpLFNALn9N/XAS4tO0HDn2efCaEOQFgW38sYIDKs+AcVTQgtShugCV7dzNtwgo
4cs7EHUyNMrUuU/j/Mddv1jxDDodIj93K8I7v3fzD9A2HPKd3OHjx3YjEadvdC4K
BY1fvPsPs47HH3jjbhGGs5bTuR/d2HtVWet7PWp2kuDHw7eWRRyR2YWr1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMdsn/257fvt8Z4rwygYOG2/a2NnMB8GA1UdIwQY
MBaAFJYZk2Aln6WzW4KVPF7ZeZkig0GsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9iZjcwZDMtNzBmYS00YTMyLTgwOWYt
MmE1OTFjMTQ5ZDdhLzEvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9iZjcwZDMtNzBmYS00YTMyLTgwOWYtMmE1OTFjMTQ5ZDdh
LzEvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARFcOTkm+
WWU1PiLudWCZx4lvcX6kRndW4QmWEdKq+9PQvK489ix/ist/j1zC3qNIkK2pZ7Ra
M8BFpa95LsFj6GAJNSbZA5qSLzF8bbwjpAF13RMNDQC3WXjaYBr27QnTDzu3oUm0
vAd8Vt0axox5aQ+Q4YP/dltbr8N9dgGmBN+ykxn5Q8y8O6RvXh9UoLKYrVTgexkq
2rKvvH2y6lvxbkkHHzHA0GOHjXX7qnIqNiEMN9YJ6FhZXHyNHt3mCzKcBC7YNW1O
51KhVVGEcpNrESwyxvpR0kWpRkvj/8r/UudwK+EAKNGtrjKnQfNG+HQHvNYZEOsM
THLmfVCqCd36eQ==
-----END CERTIFICATE-----
Generated at Tue May 6 07:49:19 2025 by rpki-client