Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
File: lris-hevk77b78b-tGiPmGBLiq4.mft (raw, json)
Hash identifier: 9x7MXcaokRJXXf6nM42DEh2unIsSavN4lCkXXvlNuPM=
Subject key identifier: 9B:1E:32:F3:09:1B:F0:A6:44:4F:14:DD:2C:6F:FC:08:E4:CF:2D:F2
Authority key identifier: 96:B8:AC:FA:17:AF:93:BE:DB:EF:C6:FE:B4:68:8F:98:60:4B:8A:AE
Certificate issuer: /CN=96b8acfa17af93bedbefc6feb4688f98604b8aae
Certificate serial: 0199331385BA7DD67013F33BB4F93BAE47D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
Manifest number: 1105
Signing time: Wed 10 Sep 2025 10:02:21 +0000
Manifest this update: Wed 10 Sep 2025 10:02:21 +0000
Manifest next update: Thu 11 Sep 2025 10:02:21 +0000
Files and hashes: 1: lCUgvhyBp0UKbHxKxUYkrgGL2EY.roa (hash: kCJqfKEC/8AcT5Dn8+T0849c1Ido/6VgqldxnSwXqNg=)
2: lris-hevk77b78b-tGiPmGBLiq4.crl (hash: q7jFx2p+5oi7fq5sdqmGvdixR9Pgtg/6DoN8FQd9NzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 10:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:13:85:ba:7d:d6:70:13:f3:3b:b4:f9:3b:ae:47:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b8acfa17af93bedbefc6feb4688f98604b8aae
Validity
Not Before: Sep 10 10:02:21 2025 GMT
Not After : Sep 11 10:02:21 2025 GMT
Subject: CN=9b1e32f3091bf0a6444f14dd2c6ffc08e4cf2df2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:5c:e3:06:6a:37:50:65:5d:53:86:37:e2:cf:
5e:97:00:91:a2:1c:5d:89:32:dd:fa:85:90:5b:7f:
3c:f5:a1:d7:3c:6e:f1:b9:fd:8c:58:79:44:f3:5a:
15:2c:cc:2f:e6:80:24:ea:60:dd:d4:ee:b2:26:b5:
16:51:54:e8:0d:e4:70:86:32:18:a1:41:74:8c:d2:
52:a7:a8:7f:c4:0c:80:f8:21:30:19:3b:5e:a8:bf:
93:8e:8e:cf:45:bf:1c:f1:dc:62:a2:5c:33:dc:c6:
cb:b6:cd:2a:86:b9:d2:64:a8:32:fc:b2:57:77:ef:
cd:33:93:da:7c:fa:c8:cc:03:2f:78:b3:c4:fe:f3:
4d:ef:a2:b7:c3:36:9d:0f:52:a6:25:cd:36:36:87:
90:cb:a0:dd:42:76:e3:3c:7a:18:d0:8e:98:8f:f2:
f3:38:32:6d:10:3d:5f:09:af:0f:35:ca:52:57:50:
b7:af:6c:30:8c:fe:4e:5d:03:98:1f:5d:25:60:dd:
e1:db:e4:47:46:71:1a:65:df:81:01:d7:0d:b9:a9:
10:54:19:fe:cb:c6:f2:ac:1d:9e:87:b6:70:c5:0e:
b3:38:20:6f:2d:87:80:86:b0:c6:4b:a3:a3:de:4f:
8f:79:33:b2:3b:c4:de:29:54:fe:a8:b6:2f:3b:2e:
7b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:1E:32:F3:09:1B:F0:A6:44:4F:14:DD:2C:6F:FC:08:E4:CF:2D:F2
X509v3 Authority Key Identifier:
keyid:96:B8:AC:FA:17:AF:93:BE:DB:EF:C6:FE:B4:68:8F:98:60:4B:8A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:8c:7f:bb:5c:8d:c9:95:c8:ff:00:e3:12:86:f5:ad:d5:f9:
a6:23:ab:fa:d9:d5:2c:5e:8b:15:72:82:4d:ad:52:3a:d7:bb:
f1:df:09:5b:9f:48:7e:68:6f:cf:12:6f:b6:7a:5b:c3:33:9f:
d9:7f:97:81:b7:22:c1:b0:42:72:e0:f7:f2:5f:4f:bb:ec:fc:
ab:54:2b:31:a8:e6:43:47:a4:8b:92:b5:c9:ff:94:58:03:c3:
1b:3d:49:03:04:4b:39:86:cf:a6:c1:e4:1f:92:af:c6:eb:9e:
d3:21:11:77:0f:3e:0c:7c:8a:ea:33:22:c2:f5:6d:2e:18:f7:
41:f7:a3:9b:c3:69:7c:9b:4b:4b:e7:69:49:20:fa:ea:e4:fa:
1f:90:cf:07:b8:c9:09:a5:99:99:0d:32:1e:77:7e:2d:90:34:
1a:ee:02:34:d3:df:2e:51:36:d1:a8:3c:d6:e9:5f:9c:23:04:
2e:59:b7:42:5d:2d:85:b9:9b:23:81:d8:45:86:e1:d6:74:6c:
05:58:55:0b:02:c2:d3:96:31:10:34:fc:25:02:15:d9:6e:c3:
9c:f0:8d:7e:f2:1d:d7:3e:b2:ff:19:ce:68:9e:92:45:5c:0d:
c8:f1:2d:2d:f1:d6:05:de:e3:bd:8a:f8:72:e9:be:7f:22:ff:
a3:74:22:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 14:06:03 2025 by rpki-client