Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier: t8bcPHSpEt+aw9ayqR9FQ+0CPEpWPKYnR7XUWQvMpRA=
Subject key identifier: 73:CC:02:02:D1:7A:D9:88:0F:5A:BE:D4:95:E6:82:3E:A5:AB:02:17
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial: 01974967C62E3941D2B77D6C1A8DA9EB34D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number: 12E5
Signing time: Sat 07 Jun 2025 08:00:27 +0000
Manifest this update: Sat 07 Jun 2025 08:00:27 +0000
Manifest next update: Sun 08 Jun 2025 08:00:27 +0000
Files and hashes: 1: 0hGuI9abbnH5IARURiUpnsE2cKk.roa (hash: DuwUAcXW//1k2Md+MdRwDGn9pw5DCw3cr3zSvWu8/Sg=)
2: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: reWk0UAvSuDpGtTfmn1FVbjN2cwyKZlRuR8BlYXe3Lk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:c6:2e:39:41:d2:b7:7d:6c:1a:8d:a9:eb:34:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
Validity
Not Before: Jun 7 08:00:27 2025 GMT
Not After : Jun 8 08:00:27 2025 GMT
Subject: CN=73cc0202d17ad9880f5abed495e6823ea5ab0217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f2:09:4b:ea:d3:f1:d3:c3:48:ee:89:86:9b:
e4:74:40:eb:30:6f:00:95:c2:64:44:f1:43:71:bf:
06:b4:94:c9:21:56:07:1a:99:ac:60:96:ec:14:33:
d5:0f:d1:8b:1e:a7:24:dc:d8:89:03:70:67:ff:7f:
fc:75:a3:48:e7:28:5b:1f:c5:94:8d:62:12:b5:9d:
4e:b1:1a:4e:e3:cf:c3:0d:fa:1a:fe:42:46:29:3d:
4d:87:99:38:41:45:f8:8b:71:a0:ef:48:ad:57:75:
74:f3:9e:57:25:db:94:14:e1:e0:45:1b:c6:69:a6:
f1:2c:04:d3:70:da:4c:0e:f2:7c:3d:21:d1:96:82:
05:1c:55:be:b3:c0:34:4a:5f:50:e3:ed:f6:c9:dc:
c7:76:ff:3f:e7:e0:d1:eb:71:b2:71:62:67:2b:c4:
78:f5:c8:13:2e:70:58:2f:04:fc:5a:08:20:0a:d6:
f7:6b:f2:03:8e:be:64:6c:bd:02:87:b0:e1:ed:a6:
cf:40:85:97:2f:de:0b:76:e7:f4:51:93:1d:a3:06:
5f:ee:0d:fe:8a:3e:ae:21:6d:ad:87:2a:dd:73:2d:
88:c9:cb:d0:4e:94:e7:0c:f7:01:1c:3f:e8:34:04:
ff:91:bf:93:91:41:df:ff:ee:2f:23:60:d7:a1:9d:
18:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:CC:02:02:D1:7A:D9:88:0F:5A:BE:D4:95:E6:82:3E:A5:AB:02:17
X509v3 Authority Key Identifier:
keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:0b:90:f4:50:46:ad:0f:1f:d3:e9:64:cb:69:74:fc:16:35:
9e:44:b9:a3:7d:ba:18:06:c3:0c:c7:cf:ff:92:fa:76:d0:4f:
e6:5a:70:f4:86:7e:b6:d1:7b:84:55:e5:58:4b:da:6a:47:d6:
0a:d9:d0:7b:bc:25:0a:ae:29:16:3a:f9:35:90:6a:d3:11:ec:
f3:d5:9b:66:3b:52:9b:2d:c7:85:f9:b7:59:bd:8f:62:d8:54:
73:02:19:33:51:1c:6f:31:05:8a:e5:f6:85:29:9b:34:dd:4a:
31:da:59:03:a5:a1:61:80:33:cc:7c:25:92:9f:4d:27:a2:16:
04:6b:5c:85:96:26:99:96:19:26:f9:f4:41:e5:17:1c:dc:92:
89:0b:76:f5:77:2b:4b:4a:07:80:26:33:c6:fc:55:9f:14:66:
af:a4:42:90:c1:32:68:75:6c:2e:52:7a:6d:5c:a1:23:c9:d7:
f0:8d:f2:d9:2d:bf:2f:33:02:4e:97:a9:4a:96:83:d8:1c:f7:
81:c1:2c:c8:39:dc:bd:c2:8e:1e:00:98:e1:58:bb:2d:5c:8e:
0c:21:49:70:4a:f1:b7:43:84:1d:3c:58:7e:3e:31:f4:fb:a7:
f9:12:10:65:0c:d1:a0:39:3c:39:79:28:1a:aa:0f:f9:54:8d:
13:25:63:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:53:33 2025 by rpki-client