Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: rPKdYBZi6vGQ0NDvjID34dnJIs+2LH+rT9gVvP58FhI=
Subject key identifier: 2C:11:3A:84:BF:B7:D5:49:01:B2:AC:10:28:FC:1C:30:01:A5:0A:29
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 0197526B365EA410D7B0A8ECFFCFB1F8CA17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 1581
Signing time: Mon 09 Jun 2025 02:00:47 +0000
Manifest this update: Mon 09 Jun 2025 02:00:47 +0000
Manifest next update: Tue 10 Jun 2025 02:00:47 +0000
Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=)
2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: 1QJMirm/OBf96ItdFWfXdLG5+B2K7PCPKcqXnbQLwT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:6b:36:5e:a4:10:d7:b0:a8:ec:ff:cf:b1:f8:ca:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Jun 9 02:00:47 2025 GMT
Not After : Jun 10 02:00:47 2025 GMT
Subject: CN=2c113a84bfb7d54901b2ac1028fc1c3001a50a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ae:d5:b8:3d:4f:cd:ee:2e:5e:24:cf:ee:f1:
1a:b2:83:87:f0:8a:17:46:b4:4e:f0:99:76:e3:36:
59:49:c8:14:ef:ea:69:d5:45:5b:82:7f:fe:bd:91:
4b:2f:ce:dc:e6:ed:33:ee:3c:08:bf:b3:24:bd:d0:
c3:b1:70:c4:f9:ba:92:05:24:ab:ab:30:41:37:8e:
b8:a8:ae:e9:4f:44:12:c7:74:52:40:c7:21:f0:aa:
f2:0d:97:d5:a3:60:41:88:57:c4:1e:e7:2f:79:a6:
b3:74:4d:0a:4e:62:90:e1:de:30:bf:00:a3:3e:37:
57:f9:36:37:b6:23:8a:19:9e:6a:ec:41:b7:4d:3e:
57:02:22:1f:b7:00:e2:3e:56:e8:51:24:22:ac:37:
ed:89:2f:23:41:c6:0d:46:3e:b5:b0:cd:a9:3a:78:
6f:16:86:be:ef:4d:a0:83:9d:5b:b6:a4:9e:76:5c:
ae:65:39:e0:ff:e7:00:6c:bd:f8:b3:18:f8:ed:13:
e6:43:ef:2b:10:16:a4:1c:65:7f:ca:94:b6:a2:e9:
78:18:1a:a0:84:4f:76:8c:4f:ab:7e:c5:64:7c:d1:
29:13:1e:73:c1:83:b7:5c:ae:46:d5:56:0d:63:05:
fc:cb:ca:79:74:83:fe:c9:fa:22:1f:1e:60:8e:88:
75:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:11:3A:84:BF:B7:D5:49:01:B2:AC:10:28:FC:1C:30:01:A5:0A:29
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:70:39:bd:ed:c3:b7:0e:c8:3e:b1:e1:71:98:11:87:4f:41:
8f:d4:a9:8d:c2:70:f8:db:0e:6f:ec:a7:3b:b7:41:25:86:83:
75:55:9e:2f:14:ad:a7:ad:33:0e:03:02:55:cd:5a:e4:78:6e:
9c:55:95:ea:80:f8:dd:03:da:c3:44:12:ed:55:4e:5d:8d:bd:
e2:eb:3b:9d:f7:f3:ff:87:05:1e:31:ec:db:7c:0d:85:98:c3:
c6:0d:21:a4:36:84:37:d5:8c:42:6c:3f:ae:6c:e4:d3:25:48:
2e:8d:6d:6c:30:f9:9d:2d:c8:aa:c9:f2:53:bd:72:35:68:4e:
27:23:42:c3:0b:33:04:93:08:42:cd:60:3a:e3:86:c4:f8:51:
3f:24:f9:d2:32:a2:23:a0:b9:56:35:4a:6a:bc:65:26:2c:c7:
8b:69:8f:34:3d:a8:63:04:7d:0d:49:f8:7c:59:cf:43:46:0b:
5c:d8:33:e5:93:47:ad:91:7b:9d:ec:ee:3b:29:ec:5c:2c:58:
a3:93:3c:13:df:f6:d5:a3:4b:14:a3:c4:42:c6:f0:ac:0c:0e:
20:33:f5:64:10:58:c7:80:18:60:1a:9a:82:41:ec:17:17:8b:
a2:1e:7c:58:47:d1:79:7b:17:34:29:31:e0:9e:7c:10:fa:6e:
61:98:2c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 08:56:06 2025 by rpki-client