Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: P/+d+gA2IhniJ8xNW/TJfI7vxhCpSo0B1d+m+vxAzqk=
Subject key identifier: 39:71:93:6A:45:33:F1:1D:AD:55:40:51:51:B3:DE:4A:AD:10:FD:0C
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 0198499C1995309E590E2C89D31F9C2556CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 1601
Signing time: Sun 27 Jul 2025 02:00:23 +0000
Manifest this update: Sun 27 Jul 2025 02:00:23 +0000
Manifest next update: Mon 28 Jul 2025 02:00:23 +0000
Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=)
2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: Y4hHVodsQmpRGIdeBrr7RsSW0fXdNPAZS6SjPEqmcq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:9c:19:95:30:9e:59:0e:2c:89:d3:1f:9c:25:56:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Jul 27 02:00:23 2025 GMT
Not After : Jul 28 02:00:23 2025 GMT
Subject: CN=3971936a4533f11dad55405151b3de4aad10fd0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:52:94:62:aa:7c:f2:33:65:08:ec:67:8e:8c:
ba:f1:73:3b:b5:b5:6d:cc:5c:c5:45:7a:3b:a3:2d:
59:76:68:9c:93:45:8e:6f:7a:3b:0f:b2:ed:e8:01:
28:cf:86:39:50:de:9d:ed:b5:dc:5a:06:56:88:77:
20:fb:ff:6c:7c:b1:8a:9b:bf:b7:b3:11:ae:20:0a:
18:76:01:ce:11:d6:c1:da:e5:e3:7b:16:34:94:5c:
ef:8e:24:d3:87:cd:58:01:8b:1e:c6:09:68:72:f8:
55:b8:26:ef:97:07:7e:0c:e5:fd:ed:26:d6:0a:b5:
46:3d:f3:d3:3a:16:ed:4f:ca:ca:f1:12:7e:a2:ea:
0a:aa:f8:b7:12:f3:fd:53:65:f6:ba:1e:6d:04:ed:
68:b7:00:13:d3:49:da:f4:8c:de:e3:d1:6f:de:d1:
15:40:cf:0a:ca:4c:c1:9c:63:a2:84:da:fa:ca:46:
6d:af:40:b5:cc:e7:1e:62:20:e8:7d:97:65:94:d2:
74:f5:e2:f9:7c:1f:9f:7b:fa:c6:b2:af:c5:06:fe:
cd:d3:d5:b9:45:5c:d4:13:49:3f:d0:54:36:e1:04:
87:84:12:bb:b4:b9:83:28:46:d5:27:32:a9:1b:11:
32:51:19:b9:cb:ce:1e:ef:53:de:be:37:01:01:9b:
14:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:71:93:6A:45:33:F1:1D:AD:55:40:51:51:B3:DE:4A:AD:10:FD:0C
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:a2:c3:0b:7f:e3:a7:26:e5:ce:de:af:67:31:a2:48:3d:b7:
db:47:d4:e3:a1:e5:bc:7e:c2:5c:c0:1b:f0:82:6b:59:64:c4:
e5:fb:26:81:d0:af:cd:74:22:c1:be:be:b7:2c:a6:f8:62:e4:
d5:c2:48:39:1e:eb:13:0d:45:2e:63:5a:12:c2:ef:fc:b0:20:
e9:d1:8b:1a:d4:d8:e5:5d:8a:5f:b0:ba:d1:78:e5:5e:1b:fa:
ca:8b:a9:75:62:86:d7:34:d8:ef:75:0a:f9:72:1c:6a:83:11:
7b:21:b7:9c:31:78:d8:1f:1b:67:9c:8b:1f:2e:3a:86:dd:1b:
bd:01:f3:1e:31:ff:91:c4:e2:c4:e2:4b:bf:de:d5:2a:39:ac:
65:9e:b8:2b:b4:5f:58:63:f3:4e:8a:3f:b7:39:16:c5:0a:7c:
12:11:42:d5:c9:0f:3f:dc:2b:63:e6:98:2c:fd:be:48:67:92:
3c:77:54:6b:c5:41:85:bc:58:41:29:6b:a2:3c:22:d6:c6:ce:
2b:9f:73:e3:12:5d:84:4d:d5:5e:9e:6d:71:c2:1f:fc:86:1f:
d9:6f:d0:b8:71:b8:d5:bb:a9:7a:24:06:8a:1d:cc:15:fa:d5:
50:cc:29:47:6e:7a:8b:09:06:48:7e:18:48:e7:07:a6:95:43:
b0:ae:f4:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 03:40:32 2025 by rpki-client