Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
File: lhzPqdAsvwWWDjovkHmFnM1urW0.mft (raw, json)
Hash identifier: bcaXhMV0t+K2D67gVyWwrgw5a8ho/tBsCLZI5XLbHCw=
Subject key identifier: A2:DD:4C:9E:60:1C:C0:8B:57:87:AC:B8:38:AE:17:FE:3C:F9:FE:33
Authority key identifier: 96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
Certificate issuer: /CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Certificate serial: 0196A8E70AE8C091E7F14C61B51A3C7F9214
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
Manifest number: 152A
Signing time: Wed 07 May 2025 04:00:35 +0000
Manifest this update: Wed 07 May 2025 04:00:35 +0000
Manifest next update: Thu 08 May 2025 04:00:35 +0000
Files and hashes: 1: lhzPqdAsvwWWDjovkHmFnM1urW0.crl (hash: QfIQC21pM/M4lzerSV3mVLTiN/UWzobUpCtg+mWvVNM=)
2: qTElxIuYhBq2Kr2moM3xQmQlUEA.roa (hash: 6HA56HJcMMODNW40FbLFvKXa1rIMDv54m0DX5YcNqN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:e7:0a:e8:c0:91:e7:f1:4c:61:b5:1a:3c:7f:92:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Validity
Not Before: May 7 04:00:35 2025 GMT
Not After : May 8 04:00:35 2025 GMT
Subject: CN=a2dd4c9e601cc08b5787acb838ae17fe3cf9fe33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e2:01:e7:8c:d9:47:0a:c1:af:12:b5:f4:c6:
84:f1:2f:0e:72:5a:8d:3d:cc:a1:ec:a4:47:b5:5b:
bf:0f:41:c8:f9:04:70:7d:33:e7:97:5e:e1:c5:a4:
d6:0e:1b:ec:c5:75:5a:b5:20:b2:77:8a:7c:d8:ab:
69:b4:2b:74:3e:7a:a0:b6:f6:41:ce:66:f7:39:21:
fa:80:da:ab:72:73:cc:e4:da:35:9c:3d:ff:58:50:
13:27:ee:58:c7:73:10:70:47:d0:d3:3a:24:80:89:
4d:5b:49:bd:36:49:53:15:7a:86:ac:4c:8f:14:0f:
9d:ec:0b:cd:c1:2b:0b:3b:7f:87:e0:65:9c:9e:7e:
9a:da:a2:10:fb:55:7b:2b:aa:41:25:3f:39:d4:c0:
82:35:24:11:c1:c0:4c:a6:68:1a:1f:6d:ed:91:86:
4f:51:6e:18:32:3e:e6:3b:e3:86:1a:bf:fd:6f:ee:
88:22:47:06:23:11:ec:4b:f0:2f:a9:71:07:99:a9:
52:90:f2:af:e9:88:e5:3c:fa:2a:f8:20:03:9a:10:
80:5b:15:fb:84:8c:66:f3:40:44:7c:61:ce:b9:b3:
dd:db:21:34:93:c2:96:fb:63:2e:db:d0:9b:90:f6:
5d:c1:fb:c5:14:1f:82:be:c8:3f:28:09:c8:db:01:
83:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DD:4C:9E:60:1C:C0:8B:57:87:AC:B8:38:AE:17:FE:3C:F9:FE:33
X509v3 Authority Key Identifier:
keyid:96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:a6:3f:1e:c7:d3:d0:bf:40:b0:ae:d0:b2:07:79:b1:71:aa:
21:29:24:84:08:44:7b:9c:28:c7:b2:91:17:46:a3:9c:8b:74:
67:20:62:46:cd:68:ba:3f:dd:d8:15:89:06:05:1a:56:1c:5d:
1d:e0:85:bf:07:a9:4c:86:2a:e5:15:f4:10:31:d2:5d:91:5e:
76:fa:8c:7e:7b:7e:00:74:24:ff:5d:06:32:22:0f:a8:98:b1:
b1:00:e0:a6:43:5f:0d:7b:04:e5:a3:a9:e0:38:13:48:99:f0:
da:d0:54:94:42:8d:91:64:5a:31:c1:42:a8:99:63:f5:71:43:
d0:85:8e:2f:4e:d5:f7:7c:95:42:76:f3:ad:42:7d:02:48:17:
f2:39:dc:83:97:8a:d9:5b:54:ab:00:2c:a1:9f:04:1c:5c:4f:
8f:51:a9:32:15:ca:33:e8:83:df:49:50:3d:99:fb:24:af:d3:
40:15:ca:d6:be:86:25:69:b2:e8:83:6d:06:33:0b:15:08:4b:
b6:2b:f1:c5:1c:fe:89:5e:c4:5c:d6:4f:cc:14:49:4a:eb:0b:
f9:99:df:ce:4a:03:ca:06:4f:ed:55:27:e4:12:6c:d5:c0:0b:
9f:d1:fe:38:e0:4f:46:d1:bd:92:ba:47:e6:5d:32:66:dc:98:
4f:be:32:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 05:52:27 2025 by rpki-client