Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
File: lris-hevk77b78b-tGiPmGBLiq4.mft (raw, json)
Hash identifier: UBpL1H/I+CXjylvnan/l5T/rYnsIzT0/B0EHWDGz2BE=
Subject key identifier: 13:8D:C8:AA:EB:07:C8:C1:99:96:29:E2:99:53:44:20:02:08:26:1A
Authority key identifier: 96:B8:AC:FA:17:AF:93:BE:DB:EF:C6:FE:B4:68:8F:98:60:4B:8A:AE
Certificate issuer: /CN=96b8acfa17af93bedbefc6feb4688f98604b8aae
Certificate serial: 01965123D47FC8B84CFE772A25A605B73B4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
Manifest number: 0F87
Signing time: Sun 20 Apr 2025 03:00:24 +0000
Manifest this update: Sun 20 Apr 2025 03:00:24 +0000
Manifest next update: Mon 21 Apr 2025 03:00:24 +0000
Files and hashes: 1: lCUgvhyBp0UKbHxKxUYkrgGL2EY.roa (hash: kCJqfKEC/8AcT5Dn8+T0849c1Ido/6VgqldxnSwXqNg=)
2: lris-hevk77b78b-tGiPmGBLiq4.crl (hash: 1jYOdAiucBErffwIfvoaMvc0HwxSFYUhLf3hpjj0xYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 03:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:23:d4:7f:c8:b8:4c:fe:77:2a:25:a6:05:b7:3b:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b8acfa17af93bedbefc6feb4688f98604b8aae
Validity
Not Before: Apr 20 03:00:24 2025 GMT
Not After : Apr 21 03:00:24 2025 GMT
Subject: CN=138dc8aaeb07c8c1999629e2995344200208261a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9b:5f:a3:bb:0e:ac:49:65:b0:d5:99:e6:63:
1f:4a:ef:8e:9e:eb:91:41:83:68:1d:27:c6:a3:a0:
59:98:44:04:ef:e6:9a:43:f1:dd:cd:b8:5d:d5:96:
49:65:3b:ac:54:86:69:3c:30:6c:33:5a:19:ba:ad:
17:43:79:19:69:67:ea:72:0a:42:45:f7:8c:7c:fc:
39:67:ff:f9:67:b1:e6:c1:0f:48:6d:94:d6:03:41:
87:e8:b0:5b:d2:eb:8f:4e:21:af:ba:6d:94:1b:47:
db:8f:ed:b3:1a:3b:42:a7:4d:91:b0:9d:35:ed:d6:
66:fc:6c:10:93:8c:9d:48:fd:e1:2b:c3:59:bd:0c:
8a:5d:69:55:f5:90:d3:06:e1:ee:2e:0c:06:f0:ee:
9c:08:97:60:52:50:4f:3b:72:2e:9b:84:39:09:a2:
41:41:5e:e5:b3:1f:d7:c9:78:fa:b7:ac:58:76:4b:
c7:26:98:3f:a5:32:84:3f:0f:d0:98:22:5c:e4:96:
0d:3d:4a:5a:f0:81:ed:cb:34:12:72:e5:d8:48:04:
da:fb:68:a1:7c:59:3e:54:8c:bd:f5:b2:ad:2c:bd:
19:b7:8b:9f:8c:e8:5e:93:a0:46:e8:70:d9:e3:96:
cd:ff:ff:50:b6:0a:00:b0:90:b5:49:17:4c:ba:84:
58:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8D:C8:AA:EB:07:C8:C1:99:96:29:E2:99:53:44:20:02:08:26:1A
X509v3 Authority Key Identifier:
keyid:96:B8:AC:FA:17:AF:93:BE:DB:EF:C6:FE:B4:68:8F:98:60:4B:8A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:d2:00:eb:12:13:b4:4d:38:88:87:be:53:03:06:e7:be:23:
01:ef:fa:cd:44:2d:6b:ea:f8:ea:c7:f4:34:c4:8c:0d:54:d7:
b7:c6:22:41:62:17:5b:68:a8:62:2d:15:d4:bf:5b:f6:24:8a:
ad:76:30:9c:4f:c9:05:75:4d:0f:12:70:3b:37:3d:8f:10:aa:
4f:1d:42:d3:30:50:a3:41:eb:7d:f9:de:4b:0a:08:4a:d1:d5:
44:79:f9:f3:d3:72:37:b0:88:94:00:73:82:c9:50:00:a0:c9:
1b:b9:c1:0d:60:02:f8:e5:c5:51:82:b0:73:0d:99:ec:05:7a:
34:9d:cb:45:fc:f8:5f:57:4a:81:79:14:29:51:16:64:80:69:
e7:cf:be:20:90:c9:83:20:98:78:cc:eb:cc:30:44:99:28:98:
f8:b8:31:7f:05:0a:d4:8a:37:e4:bd:99:6b:ac:3f:0f:e2:c4:
37:d3:09:be:35:72:1a:ab:67:e9:fe:2a:88:2f:bd:4a:f5:37:
53:bc:df:2a:95:d3:5f:aa:b2:54:10:c9:02:c7:19:3b:83:0c:
02:81:12:b4:9c:81:4f:b8:cd:59:e1:b7:98:3c:65:cf:0b:ac:
cd:d9:79:c0:09:b5:b0:91:00:f1:8b:df:ff:fa:fe:f6:ee:ca:
74:32:4a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:21:18 2025 by rpki-client