Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
File: lHMg0DCTAXjm987vkdKrh4TT3BY.mft (raw, json)
Hash identifier: Iu/fVK3Kernya+5rhAJvR7UAxgP2X7MR3F6pRKYDCDI=
Subject key identifier: E2:14:A7:49:08:F5:21:51:16:10:3C:29:BD:E9:E9:CB:E9:C6:14:62
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 019744E67E07305C944E5E901D2D916CAB1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
Manifest number: 11A7
Signing time: Fri 06 Jun 2025 11:00:45 +0000
Manifest this update: Fri 06 Jun 2025 11:00:45 +0000
Manifest next update: Sat 07 Jun 2025 11:00:45 +0000
Files and hashes: 1: 5QMHmJgfqvSExR78QZoDl1UWmsA.roa (hash: Dbmsjz6HJzMNQXjckNup+UFifmkcVaFAdGg2/Xlr06g=)
2: 9Hm8EAVuf4tqOcHaH0y7y-1Ym9k.roa (hash: FodBXOCVdl5JGOEkTl9E8+4jK0F+A6PAABCoahGBKds=)
3: ChcX6dEQMX7PgnkGnKeX9TQTPSU.roa (hash: 9GX5XaBmVeFjM4n7HjAG7e5pB9imRwZnEdAGfd1ulvc=)
4: I2s0NE0e0ldLesJa5IwWq_3YoQY.roa (hash: 32nxkp+mnSpxawrjeJdAmkwgRYzly761fgfPTbswaVo=)
5: Sx4GrZjuWgu9iofcfquhW4vyGIs.roa (hash: Klrfo3hpXP5vl7y24egIgTTHUAXo1XLHGZTsrjfNBg8=)
6: lHMg0DCTAXjm987vkdKrh4TT3BY.crl (hash: blENQ8sR9miL0T1Myj93DOWukd8+CLW4k5ChaDuSE7Y=)
7: wV_UPXPoWr2rMigTEJujKEPHkRU.roa (hash: sWrQ1dC0i8v5NdCh/KJb/CYIzz2swLex9WzWGoX8cPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 11:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:44:e6:7e:07:30:5c:94:4e:5e:90:1d:2d:91:6c:ab:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Jun 6 11:00:45 2025 GMT
Not After : Jun 7 11:00:45 2025 GMT
Subject: CN=e214a74908f5215116103c29bde9e9cbe9c61462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8f:0e:98:c5:b1:d6:74:c1:79:4d:73:c8:f9:
32:28:bf:75:ff:1e:40:03:e8:e6:21:b0:27:47:a3:
ae:a4:03:5c:8b:a5:6f:09:4f:33:fb:e4:ea:0c:70:
fc:bb:f3:03:1b:f7:0a:2a:8d:04:f6:eb:d3:00:42:
4e:fd:4a:75:d1:87:ab:3e:27:e2:a1:dd:cd:65:0f:
32:d6:cc:fc:34:1c:db:29:80:6c:8f:30:95:e8:fe:
39:28:de:3c:a7:0e:dc:f3:aa:2e:2b:21:16:3d:d6:
9e:36:05:04:70:56:18:e4:e9:62:83:8d:0a:c1:c1:
51:4f:42:68:97:6c:18:40:f2:dd:58:e5:f7:7a:3f:
b3:84:19:e7:bc:48:8f:dd:e9:51:3a:6e:c7:fc:fc:
d7:93:4f:b0:d3:e6:39:69:66:1c:71:1b:e1:85:cc:
07:07:18:20:6e:96:92:ad:91:23:c7:a1:4b:95:a6:
ca:7b:f0:e5:d3:4d:b1:56:30:52:e0:2f:5d:d4:2b:
85:18:78:2b:39:66:8a:f2:19:a6:6e:4b:84:44:42:
38:b1:e1:2b:3f:65:57:bc:10:27:4c:df:63:71:8c:
13:5d:24:11:10:3b:9f:9f:d0:24:56:4d:42:cd:a2:
8e:ed:b0:72:55:2c:41:34:79:15:ca:b1:a6:0b:24:
35:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:14:A7:49:08:F5:21:51:16:10:3C:29:BD:E9:E9:CB:E9:C6:14:62
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:73:eb:69:3e:ff:9c:69:2e:d3:26:74:19:4e:da:d9:02:5e:
df:55:36:26:59:cb:e2:18:d7:a0:62:5e:09:21:1a:bc:26:87:
79:7e:bf:8a:7b:74:50:7e:68:7c:7b:6b:dd:58:0c:d1:81:04:
1b:ce:c6:16:55:48:e6:3d:f1:e8:db:43:8a:76:e6:c5:31:91:
26:e2:c0:04:b0:f3:1b:3f:dc:0d:2c:b5:09:74:b8:68:46:a1:
37:90:f1:4b:0c:ba:80:45:64:8c:54:03:ff:20:3a:10:bc:56:
b2:dd:3b:0b:95:f2:40:25:e6:c3:d6:5c:29:59:36:4d:83:5b:
fa:78:c2:8b:b7:b4:9f:ab:45:c3:cd:8b:87:6a:41:7f:25:80:
82:bd:7b:fd:ef:fe:a8:73:a0:19:40:b8:03:eb:6b:ea:3d:57:
a8:45:08:4e:18:fa:5c:5a:dc:08:01:d3:8f:14:a7:82:d2:57:
da:f2:d3:67:af:52:2d:a5:44:61:10:99:1f:c5:3a:a8:d1:64:
e3:5c:ef:5a:84:73:a0:47:56:c7:eb:33:8b:48:3d:7c:2c:01:
e5:96:f8:f8:b2:2f:93:28:68:39:30:93:69:2d:f1:81:a8:3e:
4d:83:cb:8f:60:3d:73:43:4e:13:f1:b7:8b:0f:a9:62:50:66:
eb:e2:17:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 20:41:10 2025 by rpki-client