Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
File: lmsFxmHHalvMSNqDju22lz8VO4Y.mft (raw, json)
Hash identifier: zezx/C2n9/vkwEYM3+lP/PAwfqdR24YH2XrMZdmBSzA=
Subject key identifier: CC:81:6F:36:F5:36:4B:D6:D1:9F:D4:F8:46:1D:9A:1B:D7:29:E0:47
Authority key identifier: 96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
Certificate issuer: /CN=966b05c661c76a5bcc48da838eedb6973f153b86
Certificate serial: 019A71EE8C2F8CCBEC4CFB2AD67B69F98A40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
Manifest number: 1724
Signing time: Tue 11 Nov 2025 08:00:50 +0000
Manifest this update: Tue 11 Nov 2025 08:00:50 +0000
Manifest next update: Wed 12 Nov 2025 08:00:50 +0000
Files and hashes: 1: lmsFxmHHalvMSNqDju22lz8VO4Y.crl (hash: Qia+d81igilfDe58wzuDcQXhZD6u8OaY2tLncUgOJU4=)
2: vW8nbP0mTPSGV0n46D4WrlPJlkA.roa (hash: FBmE53kvVV07M6urD1OzTmvwStXQDG55TxBqouWfpJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:8c:2f:8c:cb:ec:4c:fb:2a:d6:7b:69:f9:8a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=966b05c661c76a5bcc48da838eedb6973f153b86
Validity
Not Before: Nov 11 08:00:50 2025 GMT
Not After : Nov 12 08:00:50 2025 GMT
Subject: CN=cc816f36f5364bd6d19fd4f8461d9a1bd729e047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:87:c5:9c:4b:71:4b:0b:b9:b3:91:b1:11:
9a:50:0b:b3:4c:bb:1a:a4:b7:e0:2c:7b:a0:64:7d:
b6:f2:10:5e:65:78:db:dd:d8:7f:6b:e9:35:dc:99:
77:00:4d:6f:66:09:35:f7:14:70:46:74:fe:1c:8b:
cc:e8:0f:ec:5b:84:24:81:6a:1d:57:f2:b9:0e:43:
b0:90:9a:86:fc:ac:7b:20:01:f8:4d:49:89:67:f6:
f4:fe:98:a6:b9:20:14:e0:dd:d0:d2:23:18:e4:8a:
31:2e:d0:18:d7:22:fa:6e:64:f6:3c:61:b1:c2:8c:
4e:47:e8:74:9f:67:4e:03:a2:f7:bf:25:d1:9b:c3:
d9:86:8e:db:59:ea:02:f3:d2:35:33:47:cd:0b:5a:
f0:9e:1e:61:bd:87:d6:0c:d1:98:dc:fd:93:19:1c:
b7:8e:f0:31:fd:9c:53:cf:f4:67:05:5d:6a:21:a4:
5b:8f:f2:5f:04:f2:17:88:0e:82:28:d4:52:ae:bb:
c4:7a:12:36:3d:73:81:04:55:5c:a5:3d:16:40:40:
98:45:2f:ab:24:05:26:d3:0b:f3:19:9b:fe:e6:ec:
04:16:5f:b8:78:82:68:37:b9:4e:61:b5:e0:d6:6f:
b0:70:6e:c6:97:9d:5f:16:90:fd:54:62:fc:5b:c8:
74:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:81:6F:36:F5:36:4B:D6:D1:9F:D4:F8:46:1D:9A:1B:D7:29:E0:47
X509v3 Authority Key Identifier:
keyid:96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:68:75:42:80:b7:8a:21:1f:81:0f:77:ff:52:e0:69:48:d6:
2d:1a:cc:d7:72:6d:e5:e9:aa:58:22:2b:86:a1:35:1d:f3:b1:
54:8b:7c:63:18:4b:86:99:5a:a6:df:a8:f4:d9:08:bd:06:c6:
0b:6b:b7:23:75:81:83:ad:8a:9d:8a:04:ae:fa:c3:93:d6:90:
43:3c:ce:2b:e8:b7:0e:f3:b8:16:ea:f2:ae:84:b0:47:68:18:
15:56:b8:7e:59:ba:13:77:ea:80:2a:68:d6:f5:42:f0:ff:76:
48:9f:7e:d9:88:5e:c7:8e:8b:91:6f:cd:f7:32:e1:82:2a:36:
41:e9:13:44:b8:d2:f5:79:2a:1a:2e:da:b3:58:2a:01:37:03:
37:70:e5:28:82:ce:f7:9f:a9:be:73:7a:be:cc:0b:df:d8:3a:
7b:c6:e2:8d:1d:d9:4f:1f:4e:10:d1:22:90:c7:71:34:f8:9c:
3b:27:d3:cc:b2:27:5e:46:63:45:57:e6:1a:6f:f9:2e:1f:e6:
d6:d2:b6:89:6d:57:19:d0:41:71:bb:80:03:9b:29:7c:07:aa:
41:1b:56:40:0a:ff:c0:80:d2:b1:05:f2:10:b4:64:f6:94:d0:
30:12:ac:79:45:19:14:e4:41:98:2a:ba:11:17:f3:d4:5e:3a:
47:5d:45:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:31:28 2025 by rpki-client