Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
File: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft (raw, json)
Hash identifier: 5dNAbxGoz+nk61qdXFjixfWo7Ar9CfcsuNpvxreyKXE=
Subject key identifier: 4D:BD:54:67:A3:B2:17:07:F0:B0:7D:70:E4:EB:83:1D:D7:C5:69:9A
Authority key identifier: 96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
Certificate issuer: /CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Certificate serial: 0197583685567B5604180EE4DF5542AC20E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
Manifest number: 0CBB
Signing time: Tue 10 Jun 2025 05:00:57 +0000
Manifest this update: Tue 10 Jun 2025 05:00:57 +0000
Manifest next update: Wed 11 Jun 2025 05:00:57 +0000
Files and hashes: 1: O8xQyf4SlO_QA8u4YHx9nqfuT4c.roa (hash: WyDwMMx1y5LT2GHueRZtXWT+BMFzzrzU6Km40azPSxA=)
2: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl (hash: /IQSrX122VyoHWlXjR/eSiEwhIQALwgtERPni59fIuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 05:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:36:85:56:7b:56:04:18:0e:e4:df:55:42:ac:20:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Validity
Not Before: Jun 10 05:00:57 2025 GMT
Not After : Jun 11 05:00:57 2025 GMT
Subject: CN=4dbd5467a3b21707f0b07d70e4eb831dd7c5699a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:16:67:fd:c0:a6:11:b8:64:ba:9c:b2:0f:f4:
b3:95:e0:6e:28:96:4c:7b:e3:42:1c:b2:dd:b0:bc:
e4:1b:12:e8:af:b5:3d:6c:41:b8:cb:6a:29:f2:08:
bf:6e:76:2a:8f:19:17:f9:49:e6:b0:d7:6e:ea:65:
ac:15:a2:f0:eb:f9:7d:f3:8d:3b:04:0e:18:22:f8:
30:56:e2:f5:e2:22:cd:d1:3e:d0:a9:06:8b:1a:89:
c0:00:0a:f3:3e:b6:c6:3b:52:e2:36:f2:e7:a6:2e:
ec:f0:44:42:10:73:90:38:26:ac:22:bb:bd:90:d2:
b2:91:1f:72:91:95:49:94:d2:c1:0a:2b:db:1c:0a:
11:95:3f:85:82:af:78:66:28:94:e9:8c:d8:1c:62:
ab:45:93:7e:80:b9:d2:bb:ff:c1:08:5c:e3:15:5b:
53:e1:c3:49:b2:c5:8d:5b:4a:a1:93:e0:f8:ba:a8:
70:3a:24:98:21:58:e2:07:1c:1c:cc:85:95:8d:d7:
d0:a8:d2:ca:af:59:d0:1a:36:2c:52:51:19:f6:f6:
b5:f2:ce:46:bf:d7:49:ed:6b:d6:58:98:d2:7e:f4:
c0:a0:33:58:aa:ce:18:90:c7:08:01:f0:c9:9c:42:
14:55:f9:61:c1:7c:4f:43:bd:a4:d5:9c:cb:c4:1c:
86:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BD:54:67:A3:B2:17:07:F0:B0:7D:70:E4:EB:83:1D:D7:C5:69:9A
X509v3 Authority Key Identifier:
keyid:96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:33:06:4b:e9:77:dd:ec:61:73:ba:26:6f:9d:dd:18:ea:16:
b6:e1:44:da:77:9b:1a:19:4e:9a:d5:24:e2:e0:72:ef:84:22:
15:95:4e:1f:ad:4e:8b:cb:9b:23:e7:fd:96:bd:d0:04:68:dd:
48:31:30:89:71:cb:ba:dd:0f:6f:73:e6:08:88:b7:2e:7f:f2:
aa:1b:fd:d2:89:09:28:d0:b9:88:81:9c:24:3e:7f:c1:96:7e:
ba:4a:7c:b4:01:cd:99:96:24:74:5d:6d:f8:73:65:db:78:72:
aa:59:32:42:b3:ba:5e:e9:f2:55:a7:f7:f5:a6:3d:7d:d0:fb:
6f:b2:e1:a1:22:36:d9:a3:60:cb:88:55:e0:ee:96:5e:4c:66:
65:1a:f9:01:05:74:dd:b5:8f:b2:b1:1e:1b:97:60:ec:ac:ce:
4f:62:7e:fb:fa:d4:70:45:cf:9f:9d:24:b6:0f:94:9c:92:f7:
11:b4:aa:d9:02:b1:77:60:c6:a2:71:62:e5:97:78:d9:fa:43:
7c:44:e6:23:06:b7:76:81:94:ec:3d:99:31:3e:57:ea:63:07:
35:57:4b:f5:d7:7e:bb:51:32:5a:4f:13:da:5b:69:2e:b9:37:
d0:aa:b8:3b:47:29:07:a4:60:be:23:d7:3f:8f:24:69:3e:f8:
42:14:83:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 11:51:22 2025 by rpki-client