Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
File: lhzPqdAsvwWWDjovkHmFnM1urW0.mft (raw, json)
Hash identifier: e6qHzS3DiL5aPLfMZnvucF3WgmmZcjAGqRMNe1y93M8=
Subject key identifier: DA:27:94:CB:00:FF:9E:14:FE:A2:F6:96:47:9B:BB:7F:60:41:33:3E
Authority key identifier: 96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
Certificate issuer: /CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Certificate serial: 019922559B91E9B01214C05F3E4359CFC2F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 04:00:59 +0000
Manifest this update: Sun 07 Sep 2025 04:00:59 +0000
Manifest next update: Mon 08 Sep 2025 04:00:59 +0000
Files and hashes: 1: lhzPqdAsvwWWDjovkHmFnM1urW0.crl (hash: agqHbEgbtTrEcMDeHxVmc9hFumLA5k5giUmNAaXvBD8=)
2: qTElxIuYhBq2Kr2moM3xQmQlUEA.roa (hash: 6HA56HJcMMODNW40FbLFvKXa1rIMDv54m0DX5YcNqN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:9b:91:e9:b0:12:14:c0:5f:3e:43:59:cf:c2:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Validity
Not Before: Sep 7 04:00:59 2025 GMT
Not After : Sep 8 04:00:59 2025 GMT
Subject: CN=da2794cb00ff9e14fea2f696479bbb7f6041333e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:00:24:6b:62:f3:5c:6c:67:98:2b:bb:a5:fd:
4e:9b:34:55:a2:b4:c1:b7:a1:56:2d:b9:95:83:37:
11:62:ac:8e:59:88:23:37:39:9a:f5:d7:9d:a4:98:
28:f9:d1:d0:30:ca:0b:38:0c:67:57:2f:85:c6:5d:
5a:66:e1:c0:b4:00:f0:77:a9:5f:cb:d7:84:71:ef:
74:46:c3:ca:87:d2:fa:1b:08:13:7c:ce:99:39:3d:
13:e6:3d:69:48:f5:b7:50:43:18:95:01:85:85:67:
b8:4c:c7:1f:68:6f:e8:99:da:1c:12:03:33:d3:2e:
c0:03:c0:e7:e7:67:3f:ab:ea:99:63:53:3e:03:5c:
ef:13:40:7a:41:e7:49:1f:da:5c:07:58:42:37:64:
f9:ad:00:91:76:2e:eb:b7:19:90:4d:f9:ed:25:15:
99:c0:88:09:e4:ed:61:72:80:be:f7:ba:12:1a:69:
68:45:cd:e0:50:59:87:b7:e2:79:2b:52:af:25:b2:
7e:e9:ad:68:52:62:c3:a3:2e:82:f8:04:b3:a8:06:
cd:72:d2:34:5f:51:8c:94:07:34:34:f4:5f:46:2d:
db:7f:ac:d9:7a:b1:f2:ec:c7:f6:52:56:96:63:93:
45:b9:5d:9f:0c:c3:61:1f:3b:44:1c:58:7e:f7:d6:
2a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:27:94:CB:00:FF:9E:14:FE:A2:F6:96:47:9B:BB:7F:60:41:33:3E
X509v3 Authority Key Identifier:
keyid:96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:12:7d:5f:d0:47:76:d0:3b:88:38:b8:e6:25:f1:32:37:5b:
3d:c5:35:db:59:c2:b4:c1:74:b9:34:6f:08:58:b2:cc:34:c1:
9a:69:6b:4a:66:52:f9:ef:bd:fa:62:c9:a8:6d:de:ac:34:b9:
ea:b2:4a:d3:c0:f8:99:f5:a5:78:60:a4:98:f8:d8:0d:f6:95:
ec:61:91:09:e2:2d:27:fd:25:a1:f8:c2:fe:54:6a:cd:ff:8d:
fd:c5:b4:d0:f6:35:ed:fa:4b:99:28:35:98:d4:e9:36:68:83:
58:1a:ae:51:2a:9b:a8:55:d7:b5:6f:8e:4c:db:b5:6e:a4:ca:
67:2e:67:e1:be:90:12:26:11:20:f3:ba:13:2e:c8:8a:86:de:
37:64:16:f3:3a:f7:13:f0:7a:16:b5:b3:d6:a0:00:0f:c1:67:
38:9e:f1:2d:b8:09:02:f5:2b:f8:7c:a3:96:88:25:1b:21:c9:
cb:0e:91:44:62:71:0f:db:07:02:b0:8f:24:a1:66:9c:12:54:
a6:65:3e:da:5c:78:f6:04:0b:0b:8a:10:6e:df:b4:87:e4:76:
25:3e:98:06:9e:97:af:6c:6b:86:95:6a:d3:dc:de:06:26:48:
9d:68:88:4b:0b:f6:be:50:0f:0f:28:e5:6e:24:9b:7c:cc:52:
46:24:65:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:43 2025 by rpki-client