Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
File: lmsFxmHHalvMSNqDju22lz8VO4Y.mft (raw, json)
Hash identifier: KxE8h9kx1Z06Z5AywKd36RydZyXfAHZprGwLR5tgtQQ=
Subject key identifier: 8B:00:3A:27:79:65:4E:07:82:13:7D:06:4E:04:C9:0A:33:32:15:5C
Authority key identifier: 96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
Certificate issuer: /CN=966b05c661c76a5bcc48da838eedb6973f153b86
Certificate serial: 0199180A43AE11CB96FFA309CE8D7B5CA86B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
Manifest number: 1670
Signing time: Fri 05 Sep 2025 04:02:29 +0000
Manifest this update: Fri 05 Sep 2025 04:02:29 +0000
Manifest next update: Sat 06 Sep 2025 04:02:29 +0000
Files and hashes: 1: Nx9kTkaHQ0iwNwkXngRt-k1HWOU.roa (hash: pOVBPKl9ofShR8LgVcsGajQVqEVeBnSw/u7hLhRIRNg=)
2: lmsFxmHHalvMSNqDju22lz8VO4Y.crl (hash: 4icFcmw6dWx1ym11+IOZptNGhIf4au3Za7lSFOQf58U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:0a:43:ae:11:cb:96:ff:a3:09:ce:8d:7b:5c:a8:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=966b05c661c76a5bcc48da838eedb6973f153b86
Validity
Not Before: Sep 5 04:02:29 2025 GMT
Not After : Sep 6 04:02:29 2025 GMT
Subject: CN=8b003a2779654e0782137d064e04c90a3332155c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:53:bd:bf:43:af:72:ff:6f:79:ef:24:bb:dd:
81:7a:d3:24:35:e3:f8:6b:eb:c6:d2:83:53:60:32:
6b:f1:99:0b:ee:0b:52:ef:b0:fa:e7:75:2c:ab:20:
37:da:e5:7d:dd:4f:ad:34:20:8d:a4:a3:d7:90:e3:
9f:ef:7f:7f:1f:fe:a4:87:17:cc:52:f1:e6:5d:d1:
03:a1:fa:e0:01:15:22:26:a8:e8:3f:e4:68:4a:b7:
00:36:18:41:47:e7:2c:bd:e7:ec:3d:e6:af:2f:7a:
d4:8f:7d:c5:84:6b:5f:24:c2:30:0d:4d:82:03:7c:
d6:2d:1c:28:3f:3c:90:3a:87:ae:05:98:51:45:53:
32:93:4e:75:9c:62:cc:82:ee:ba:a7:68:12:dd:97:
ea:a2:ca:a4:b5:25:70:c6:24:33:79:38:99:78:5e:
d9:47:36:70:cb:7f:26:70:3b:3b:51:96:37:1f:c8:
ea:bd:34:6b:56:39:37:b2:f1:75:0c:0e:f3:e7:1c:
25:af:e2:d7:c8:9e:3d:94:1f:2e:36:bc:dc:52:e3:
ff:1b:2c:a7:26:ce:c0:c3:b2:35:5b:99:29:b3:e2:
6f:71:39:57:42:bf:e0:ff:79:db:f6:dc:d6:9c:3d:
a7:ba:6b:36:4f:9c:2c:55:e6:81:a0:28:95:8b:e6:
7f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:00:3A:27:79:65:4E:07:82:13:7D:06:4E:04:C9:0A:33:32:15:5C
X509v3 Authority Key Identifier:
keyid:96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:35:11:ef:9d:f6:48:42:72:68:01:64:4b:0b:a5:91:40:9a:
fe:19:65:d6:b0:0b:c8:15:de:57:a7:3f:5e:ed:18:89:db:1c:
9c:c2:cb:da:c0:8b:0f:e5:40:ba:f2:71:93:64:4c:85:5f:7c:
0a:2a:c5:e1:e9:c4:8e:7b:e2:b7:ec:13:ba:5f:4f:f6:10:79:
2f:14:7f:8e:aa:28:26:5b:69:66:99:af:12:3a:2a:c9:aa:70:
eb:d0:b4:a3:d6:87:a4:6c:d8:94:87:5d:99:4e:ea:86:5f:d9:
73:1a:75:ef:6e:1d:da:c3:97:fc:24:34:d5:9c:b2:78:07:97:
fc:ed:17:ef:87:c1:9b:b1:46:ac:1a:20:8c:0c:31:f5:90:e3:
53:90:62:71:b8:10:a7:b1:b5:e8:53:bc:0a:ba:22:51:31:56:
73:37:bf:00:ac:85:b7:58:78:93:3b:62:43:4e:3e:75:5c:80:
df:e9:14:23:ed:6f:66:53:dd:78:ee:14:ab:92:f1:f2:84:c1:
f7:9e:cc:ac:75:ff:f4:84:bb:8d:c3:0e:05:d7:c0:70:6f:b3:
10:21:0a:23:8b:b5:d6:3d:4a:c1:05:36:0e:fc:97:ba:df:8c:
0d:ef:70:83:4b:e5:70:dc:6b:52:f6:42:32:1f:57:78:10:47:
c8:13:e9:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:05:22 2025 by rpki-client