Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
File: lHMg0DCTAXjm987vkdKrh4TT3BY.mft (raw, json)
Hash identifier: 7KrSrir/zZftcP/nr4VCeg0hYfrVlpA/r9KqjLI6kWk=
Subject key identifier: 93:B3:C9:02:08:3D:47:1F:B8:DC:9D:2A:ED:39:6B:6C:82:9F:37:34
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 0198364CC30FB35FEDE471CE0A140BA64CF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
Manifest number: 1224
Signing time: Wed 23 Jul 2025 08:00:56 +0000
Manifest this update: Wed 23 Jul 2025 08:00:56 +0000
Manifest next update: Thu 24 Jul 2025 08:00:56 +0000
Files and hashes: 1: 5QMHmJgfqvSExR78QZoDl1UWmsA.roa (hash: Dbmsjz6HJzMNQXjckNup+UFifmkcVaFAdGg2/Xlr06g=)
2: 9Hm8EAVuf4tqOcHaH0y7y-1Ym9k.roa (hash: FodBXOCVdl5JGOEkTl9E8+4jK0F+A6PAABCoahGBKds=)
3: ChcX6dEQMX7PgnkGnKeX9TQTPSU.roa (hash: 9GX5XaBmVeFjM4n7HjAG7e5pB9imRwZnEdAGfd1ulvc=)
4: I2s0NE0e0ldLesJa5IwWq_3YoQY.roa (hash: 32nxkp+mnSpxawrjeJdAmkwgRYzly761fgfPTbswaVo=)
5: Sx4GrZjuWgu9iofcfquhW4vyGIs.roa (hash: Klrfo3hpXP5vl7y24egIgTTHUAXo1XLHGZTsrjfNBg8=)
6: lHMg0DCTAXjm987vkdKrh4TT3BY.crl (hash: ++vu76bT7iwoxl8QupSUHrjtMcY4MXMl7r8oTn9dvrs=)
7: wV_UPXPoWr2rMigTEJujKEPHkRU.roa (hash: sWrQ1dC0i8v5NdCh/KJb/CYIzz2swLex9WzWGoX8cPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 07:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:36:4c:c3:0f:b3:5f:ed:e4:71:ce:0a:14:0b:a6:4c:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Jul 23 08:00:56 2025 GMT
Not After : Jul 24 08:00:56 2025 GMT
Subject: CN=93b3c902083d471fb8dc9d2aed396b6c829f3734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:71:77:4d:3c:5b:55:8a:4e:6a:c7:20:2d:57:
21:04:d4:bf:37:b4:a8:70:a6:44:1c:87:72:ee:20:
64:e1:86:31:5d:16:73:2b:2f:44:27:74:19:15:9f:
42:13:10:fe:ab:36:e0:dc:0c:71:cf:88:49:c0:94:
e8:28:f7:37:4e:24:57:17:fb:6f:02:51:2f:4a:9e:
d5:51:68:de:d1:9d:1c:5a:71:c8:31:de:8f:9a:74:
d8:0a:75:84:44:d4:a1:4c:ad:e9:f0:e2:2a:83:1a:
61:61:65:02:09:ec:6e:27:9d:28:6e:6b:97:58:0a:
46:1e:95:cb:03:25:81:d2:01:42:82:57:22:ab:22:
09:db:9f:b6:5d:bd:b8:91:e4:68:91:f6:5c:1c:02:
2d:6a:26:74:60:dc:6b:fa:5b:cf:70:17:9d:c6:b5:
42:ea:4b:98:c6:7f:5e:34:41:77:1d:70:bb:d5:39:
66:bd:47:d7:e1:68:a3:d6:30:e7:b9:c3:6f:d3:dc:
33:9f:d0:ff:1d:85:f6:00:94:6e:15:ff:f4:96:b8:
ce:a8:91:16:7f:2a:90:9a:e6:ef:3a:15:4e:33:91:
a9:98:16:32:0a:dc:ea:4b:a5:d4:d0:cf:93:67:1e:
03:79:82:bd:2c:df:29:b3:08:f3:a8:67:b1:4b:64:
a4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:B3:C9:02:08:3D:47:1F:B8:DC:9D:2A:ED:39:6B:6C:82:9F:37:34
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:39:66:62:2e:95:6f:57:d3:a0:22:72:fc:e8:32:58:f2:3c:
83:8b:0a:a8:a0:3b:b8:b8:4c:09:ec:80:57:62:a0:cc:6f:51:
e7:43:31:67:7b:fc:90:57:f4:93:2f:0a:9a:ad:be:44:e9:16:
4e:8c:ee:52:b4:36:be:3a:69:12:08:ac:8e:fd:ea:c8:69:a0:
12:8d:01:ae:2b:98:2a:b6:95:9f:e9:c6:7a:74:82:0e:93:74:
9c:11:d7:fa:b8:32:45:b2:fd:77:0a:7b:c7:c1:e7:43:1a:29:
c5:1c:7a:e9:2c:ec:8a:2f:ff:ea:9b:08:bd:a6:69:42:1a:90:
4e:46:29:8e:16:5b:bb:19:3f:68:b0:f7:06:9b:ba:21:e0:fb:
38:8b:be:16:69:ad:fe:f1:df:a7:26:72:46:13:d9:06:f8:17:
b7:4d:76:94:e9:f6:8c:eb:25:73:49:68:b4:db:04:97:cb:56:
02:71:5b:6c:c7:0f:64:c4:53:fb:e9:ab:25:be:7c:33:eb:4d:
0e:97:ba:ca:4e:e1:26:1e:0e:f1:08:a8:bc:4b:ab:17:bd:83:
0e:2e:a8:87:e8:7c:a6:f0:18:7b:f2:99:f3:e5:ec:ba:e2:d1:
7d:e7:b9:93:64:5e:98:c7:e8:1b:aa:f3:2b:dd:11:96:c1:c1:
1a:bb:48:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 12:46:17 2025 by rpki-client