Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: dLX2v29GkDkppfFk6vVX4zjhcno8iS6Nb14Y3bZCB0I=
Subject key identifier: BA:22:0D:31:F4:75:51:B5:F7:0A:A7:68:3E:BC:75:D0:8A:47:C9:71
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 0197CC15B662FFA7B5B1F79777AC8F05EAC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 15C0
Signing time: Wed 02 Jul 2025 17:01:04 +0000
Manifest this update: Wed 02 Jul 2025 17:01:04 +0000
Manifest next update: Thu 03 Jul 2025 17:01:04 +0000
Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=)
2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: oCWvqQuyVxShRykfTvR/JuT9vWUVFYk82/+kV3LVzHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:15:b6:62:ff:a7:b5:b1:f7:97:77:ac:8f:05:ea:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Jul 2 17:01:04 2025 GMT
Not After : Jul 3 17:01:04 2025 GMT
Subject: CN=ba220d31f47551b5f70aa7683ebc75d08a47c971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d9:6d:87:bd:0b:e5:ce:91:79:ef:1c:50:ea:
20:68:18:0f:ce:fd:3b:12:70:d3:41:52:16:0f:4a:
b7:b4:1d:7f:99:ff:fe:1c:20:b5:9e:49:f0:59:b5:
9a:b0:89:0b:9f:d7:d7:5e:57:7e:ea:6e:57:ca:d0:
86:88:50:af:0d:6f:1b:54:00:ec:9f:5a:0d:30:6f:
c2:96:b7:45:0a:bd:68:ef:6c:57:9f:b9:ce:d4:dd:
b3:82:3f:ff:a6:fd:13:fc:16:95:4b:c0:81:5c:7b:
86:be:ba:61:15:80:d8:ec:02:d5:e9:57:82:41:ce:
1c:65:53:19:e8:8b:18:cb:f5:2d:39:48:81:ff:02:
46:8f:86:26:2b:50:00:51:ce:b8:61:d5:3c:af:cc:
95:bc:b0:29:08:3a:5e:33:e2:fd:a5:f8:85:50:23:
c7:28:99:d2:9b:57:58:43:31:df:8f:f2:3d:10:49:
c0:2f:11:e2:11:a4:fb:36:fd:ce:77:58:c9:cf:24:
27:a1:11:28:74:9e:50:cb:23:e2:13:46:87:25:59:
fe:07:fc:7c:96:2f:b1:12:5b:34:72:34:70:86:10:
ac:e1:d8:10:53:a5:7d:39:dc:67:31:ac:b1:b3:02:
cb:47:8c:5c:a8:b9:45:de:be:a0:33:ab:50:94:3a:
83:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:22:0D:31:F4:75:51:B5:F7:0A:A7:68:3E:BC:75:D0:8A:47:C9:71
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d7:8e:c4:93:2e:de:07:9b:b0:6a:e9:95:f8:7b:24:58:87:ff:
41:f6:9b:2a:a9:e5:7b:70:71:fe:bd:cb:c2:26:f4:22:0e:87:
07:2d:fd:b2:a0:43:09:42:be:32:39:3f:6e:1b:cf:5f:36:90:
e9:03:18:7e:33:2b:bf:37:b5:73:81:22:9c:fc:80:10:af:27:
84:93:7a:82:1f:db:02:74:57:98:2d:24:57:9d:88:9f:50:e4:
54:16:e3:c7:4b:d1:ac:02:9a:1f:04:54:59:35:69:31:b0:e0:
02:59:be:91:11:e6:6a:a7:b7:6e:cf:3e:a9:d4:2d:6e:2f:c2:
e7:49:ac:e1:0a:43:2f:28:b9:02:f3:f2:2d:04:ca:d1:37:3e:
64:ac:be:75:40:93:b8:ac:88:28:dd:c0:3e:57:b8:30:be:7d:
73:a8:26:30:2a:b0:c1:3a:03:b0:65:63:1d:44:c2:6f:8a:55:
51:e5:db:da:7a:15:ca:fc:69:dd:b6:30:bc:15:8d:14:38:fb:
89:e2:2a:cc:d9:9d:09:e2:a2:e3:3a:1d:08:0f:ef:df:78:11:
15:ad:1e:47:35:b3:de:f3:74:b7:0f:3f:1c:3e:a0:ad:3a:ce:
73:44:c7:7a:05:c0:c2:ea:09:e3:70:10:19:e3:7d:9a:f3:b6:
6f:41:e6:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 20:09:40 2025 by rpki-client