Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier: +XOTHrqcImExGG5rj9/LyO+stYOHN5uVXGOrGsJYSx0=
Subject key identifier: 3A:90:6C:B4:66:9D:06:79:22:25:4A:89:6E:0A:76:26:87:0D:93:67
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial: 019848530FC4772815D8916D1A5439A921AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number: 1369
Signing time: Sat 26 Jul 2025 20:00:59 +0000
Manifest this update: Sat 26 Jul 2025 20:00:59 +0000
Manifest next update: Sun 27 Jul 2025 20:00:59 +0000
Files and hashes: 1: 0hGuI9abbnH5IARURiUpnsE2cKk.roa (hash: DuwUAcXW//1k2Md+MdRwDGn9pw5DCw3cr3zSvWu8/Sg=)
2: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: f1lug1Ph54iEI62gV8Q5RQgziHHIyCS/F9NWFoGEgF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:53:0f:c4:77:28:15:d8:91:6d:1a:54:39:a9:21:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
Validity
Not Before: Jul 26 20:00:59 2025 GMT
Not After : Jul 27 20:00:59 2025 GMT
Subject: CN=3a906cb4669d067922254a896e0a7626870d9367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:71:00:dd:e4:80:77:5a:8f:66:1b:35:35:cc:
04:76:7e:ae:61:10:24:22:bd:8a:c7:94:2f:91:73:
6d:f1:8a:27:f6:fe:3e:bd:d6:ea:fd:7a:81:76:f3:
5c:9c:38:e2:e7:2a:0c:97:07:72:b2:41:3f:67:31:
46:a1:aa:2f:f2:b5:cb:40:32:eb:2b:b1:ed:56:b1:
26:45:a5:1e:a4:63:a9:e2:46:b4:f1:db:78:35:d5:
1f:2b:6b:de:45:26:c8:38:00:3d:2f:fa:ab:a2:20:
ee:66:1c:06:df:11:47:93:99:d7:4f:fe:69:3c:91:
91:cf:7f:d3:f5:db:7a:11:5b:f6:0a:7d:69:f7:47:
d3:47:db:a4:ae:e6:45:de:62:4c:ca:0a:ec:74:f1:
46:28:4b:8e:23:ba:57:aa:e7:16:31:c8:c3:ea:17:
0d:17:f5:b5:7f:a9:f8:ac:e4:17:1e:6b:0e:95:50:
fb:5a:96:e6:d3:ab:68:2a:ef:7a:dd:fe:09:f0:02:
bb:01:8a:65:0e:e1:a5:fc:db:d8:f7:42:31:0f:bc:
d1:79:9b:04:73:21:d1:db:3a:9b:7f:6b:87:c9:fa:
b0:e6:86:b0:cd:b8:e4:24:05:39:f3:44:a6:2e:7e:
dc:ba:f2:57:f9:42:c2:18:9d:58:68:0c:4d:fc:73:
29:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:90:6C:B4:66:9D:06:79:22:25:4A:89:6E:0A:76:26:87:0D:93:67
X509v3 Authority Key Identifier:
keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:23:4b:8c:cf:cb:80:a3:a4:54:37:4a:23:52:27:06:d7:ce:
00:ce:48:d5:81:6e:dc:a5:f0:dd:00:d6:cc:25:15:73:d8:c0:
c9:fd:a1:94:d1:ef:55:26:fc:33:1a:0b:4f:af:2f:51:5f:01:
1a:3b:75:a0:6c:6c:6e:3a:ad:47:da:a5:50:3f:5d:6c:94:77:
aa:80:f5:9d:27:bc:6f:6a:5e:b4:6f:7d:34:e5:c7:ad:8c:ba:
b7:32:f4:9b:86:e3:14:0c:28:55:d4:cd:a0:92:ef:7b:67:00:
09:7e:9d:fb:36:0f:2c:ae:9e:e6:69:3b:b7:b9:0c:b6:f7:81:
5a:2d:d6:cb:a0:45:50:6f:8b:fd:b7:de:bf:84:36:2c:c9:56:
cb:2a:0f:02:29:67:54:31:1e:34:59:1b:b9:6c:63:09:bd:40:
6f:7b:f5:4d:3b:58:2c:0f:06:3e:92:2b:e8:30:0a:b2:96:fe:
66:7e:70:d7:cb:60:ad:ba:e2:1c:9a:5d:99:1c:58:84:4b:28:
ec:33:63:fc:34:af:ea:6a:02:a4:7c:69:a4:08:af:14:43:e9:
f3:e3:6b:11:f7:b1:f9:40:df:fe:9b:15:44:23:74:95:3d:c0:
f8:7d:00:15:6e:98:43:e8:bd:62:0e:a9:74:a2:cb:06:a9:0c:
9c:60:0e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 01:25:03 2025 by rpki-client