Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
File: lHEhWA7QLt309eWofTfgF7Mt9xs.mft (raw, json)
Hash identifier: b3ORwpB7ugdBiPLBQkWV1dGEF/v3JdCRHbjUHE2J+Qw=
Subject key identifier: E9:31:6E:DB:17:CA:89:37:F0:83:FB:FA:2A:5B:0C:92:5F:89:18:EC
Authority key identifier: 94:71:21:58:0E:D0:2E:DD:F4:F5:E5:A8:7D:37:E0:17:B3:2D:F7:1B
Certificate issuer: /CN=947121580ed02eddf4f5e5a87d37e017b32df71b
Certificate serial: 0198D47257486F8A42B58A9B34990F550EC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 01:01:59 +0000
Manifest this update: Sat 23 Aug 2025 01:01:59 +0000
Manifest next update: Sun 24 Aug 2025 01:01:59 +0000
Files and hashes: 1: lHEhWA7QLt309eWofTfgF7Mt9xs.crl (hash: 6HsegIMn5fDSLLnYDwEM8/MGlf9WtUw34xHWzB2Ljcs=)
2: qxUZWESkWfPvrh5nMLtmisJ-xm0.roa (hash: QiH9IyXND+kMiLoL1S1ImhCqyZcezaR+0IjNSX+Zg6I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:57:48:6f:8a:42:b5:8a:9b:34:99:0f:55:0e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947121580ed02eddf4f5e5a87d37e017b32df71b
Validity
Not Before: Aug 23 01:01:59 2025 GMT
Not After : Aug 24 01:01:59 2025 GMT
Subject: CN=e9316edb17ca8937f083fbfa2a5b0c925f8918ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:93:b7:ea:9b:4c:fe:f2:2f:8c:54:8a:b6:dc:
c3:30:19:4d:66:cb:84:4f:7f:0c:f4:dc:12:c5:af:
6b:2a:24:90:21:df:46:82:eb:98:8c:ad:f6:a7:c4:
40:95:7b:06:72:17:89:55:35:1c:b7:ce:f6:dd:2b:
1c:1f:0c:9d:c3:b8:b5:04:92:89:4b:46:13:3c:34:
c1:53:25:ca:90:54:ec:fe:63:74:e7:15:e0:af:86:
e9:a2:2d:08:9a:67:59:39:6a:24:92:7d:4f:5e:3d:
e9:0b:99:bd:19:94:2b:12:16:86:2c:5c:59:cf:b1:
47:54:02:98:17:90:cb:d4:68:d9:e1:56:fc:90:a7:
1a:ed:d2:45:cb:50:ce:9e:e5:e5:a2:1d:a6:8f:65:
cf:a1:41:aa:e8:a4:fb:c0:f4:85:35:17:38:30:5c:
a0:22:b5:46:cd:d4:9a:b8:db:fa:cd:dc:5e:dd:c7:
87:57:dd:51:15:11:8e:62:0c:f2:5f:ba:e2:fc:15:
17:84:14:e2:2c:76:0c:01:68:58:6c:25:25:a9:1e:
c6:e2:de:b4:be:61:4d:a4:aa:45:f5:12:af:73:c1:
0d:5c:1a:96:72:9d:45:56:a5:03:43:9a:6f:df:f9:
1d:02:f4:c2:35:b8:ad:da:5c:f7:73:aa:e0:38:8a:
8d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:31:6E:DB:17:CA:89:37:F0:83:FB:FA:2A:5B:0C:92:5F:89:18:EC
X509v3 Authority Key Identifier:
keyid:94:71:21:58:0E:D0:2E:DD:F4:F5:E5:A8:7D:37:E0:17:B3:2D:F7:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:c3:d1:89:d9:92:c7:4a:fd:2b:e2:fe:55:aa:9a:ce:35:41:
8c:ba:c3:50:12:78:85:cc:cd:bc:e8:84:28:f6:d4:4c:8f:42:
9c:91:9d:6d:1d:c1:64:e8:02:79:bd:34:23:fc:36:08:d6:41:
4b:28:4b:76:db:97:e0:2e:21:1e:c2:c6:9f:26:4d:20:3c:cb:
e7:37:a5:f8:fc:f3:2d:87:57:c3:13:1a:12:f3:ca:32:ad:8b:
1f:11:f4:40:c7:67:a5:a7:74:31:a2:ed:bf:8e:f7:6b:d7:7c:
ce:02:34:08:d4:a2:6d:69:0f:af:f4:68:76:8b:be:85:71:40:
d6:14:e6:1c:7e:21:cd:86:3a:e2:35:f3:7d:3b:44:78:25:52:
7c:57:d8:c8:f4:7f:69:5d:89:67:bc:11:dd:23:d3:f4:2c:25:
50:df:89:ef:2c:5c:cb:be:64:92:9f:37:b9:85:fe:74:49:78:
b4:78:ab:88:91:5c:de:c6:7b:ae:6d:1e:c1:08:1d:8d:be:9d:
70:20:e3:10:b9:6e:ae:57:59:f6:c4:22:43:ec:7d:7b:10:3b:
45:01:b7:7e:ec:92:a5:f5:8b:a3:42:87:83:cd:c6:b8:fb:82:
10:de:02:d2:4c:dc:d4:9c:bf:fc:7f:cb:b2:d4:6a:fb:06:d8:
31:16:f2:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:41:13 2025 by rpki-client