Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
File: lhzPqdAsvwWWDjovkHmFnM1urW0.mft (raw, json)
Hash identifier: HuDeGsgfsmqbDHhCetDfxjbVenAD2JcJr2vAehStQfk=
Subject key identifier: D1:6A:ED:3A:F4:02:8F:31:65:81:D7:1B:E5:CF:43:B8:BC:2B:3A:18
Authority key identifier: 96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
Certificate issuer: /CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Certificate serial: 0197B933C60D11A3BABB8B20C8C4278EA57C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
Manifest number: 15B7
Signing time: Sun 29 Jun 2025 01:01:07 +0000
Manifest this update: Sun 29 Jun 2025 01:01:07 +0000
Manifest next update: Mon 30 Jun 2025 01:01:07 +0000
Files and hashes: 1: lhzPqdAsvwWWDjovkHmFnM1urW0.crl (hash: Th7WV7R2ASJX7GfEKryWEKnfsQEX2EAZtWH9RwWJW2w=)
2: qTElxIuYhBq2Kr2moM3xQmQlUEA.roa (hash: 6HA56HJcMMODNW40FbLFvKXa1rIMDv54m0DX5YcNqN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:c6:0d:11:a3:ba:bb:8b:20:c8:c4:27:8e:a5:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Validity
Not Before: Jun 29 01:01:07 2025 GMT
Not After : Jun 30 01:01:07 2025 GMT
Subject: CN=d16aed3af4028f316581d71be5cf43b8bc2b3a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:26:bd:17:67:40:66:df:5c:e7:d0:90:b2:aa:
82:4f:d9:e0:c3:11:e7:63:69:7d:2c:32:0b:35:2b:
f6:a0:ac:43:37:a3:7d:d1:3f:8a:62:e7:13:ca:81:
97:2a:56:55:8e:17:67:48:c8:e0:cb:b6:fe:60:88:
6f:21:f9:09:d0:6b:a7:3d:97:d2:03:6d:fb:77:4b:
45:ed:96:a7:0a:89:69:ce:a0:a9:40:8a:b8:30:e5:
1f:db:51:3a:09:9f:a6:0b:1d:9f:a1:d4:d4:68:46:
80:a4:cf:d5:68:5c:fc:a7:c6:ef:04:ea:c0:fb:0f:
3f:59:54:e9:54:9b:35:15:19:d7:14:14:a2:7d:00:
02:ce:6a:91:08:47:ff:1c:f1:65:49:1a:7a:8e:b5:
0b:77:39:10:d1:54:0f:32:5b:17:bc:d3:1d:21:8d:
43:5e:f5:41:f0:98:d1:c3:9c:b9:34:f7:d0:08:65:
55:0c:3d:32:41:67:42:d6:93:56:12:de:73:ea:cc:
35:21:ad:24:cf:89:bf:2e:3b:fb:85:ca:1b:2b:37:
72:ef:af:48:3d:ab:6f:53:87:64:20:5d:93:e6:bc:
fd:71:3c:b7:2e:42:94:79:96:8a:ae:d3:bb:ae:8a:
0c:16:1c:99:6f:4a:36:ed:aa:c3:d0:22:c0:f2:cb:
40:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:6A:ED:3A:F4:02:8F:31:65:81:D7:1B:E5:CF:43:B8:BC:2B:3A:18
X509v3 Authority Key Identifier:
keyid:96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:4e:1a:10:d2:da:cd:d7:19:a2:90:15:6a:22:fe:3c:75:6a:
c1:c4:82:8d:77:36:0f:fe:95:6f:b0:0f:f0:49:24:5e:98:49:
61:00:da:70:f6:9f:bf:e7:f7:27:bb:52:94:17:3b:54:f3:3f:
a9:1e:af:d2:c2:8e:c4:d8:24:11:f8:ca:a6:fb:9a:bb:b9:18:
89:05:65:38:cf:9b:40:4a:3b:fb:a3:d4:3b:55:c4:5d:0e:59:
16:6f:71:74:50:c2:ad:52:67:a2:57:64:59:b6:82:30:9d:cf:
63:00:69:70:50:84:0d:42:65:bb:21:f7:e7:4f:23:9e:eb:2a:
ed:93:db:d3:ef:bd:02:92:a7:3c:8d:84:cb:58:01:f9:64:ec:
c7:e2:24:7e:36:ef:21:21:04:a8:7a:0e:f8:d7:d7:d1:0b:cc:
5a:24:3b:ff:8d:cc:75:01:cb:d2:9d:52:68:27:8d:26:d9:63:
30:82:cf:3d:e4:1b:26:e5:ab:b2:65:f3:0b:2e:fa:80:db:2d:
0b:ba:c4:16:cc:71:00:07:ad:60:1c:72:f2:6e:7f:3b:78:01:
3c:ad:a6:f0:8e:e7:68:b5:e0:a9:b2:fe:88:09:94:23:7a:a2:
2d:26:c3:c0:1d:74:d8:b3:fc:c3:e8:04:ed:6c:c2:a0:dc:67:
35:4c:f7:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:26:31 2025 by rpki-client