Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: r1ny7+OTHaEo7Chev4K8CPvwG8QFX1OR2io1DLIbjsA=
Subject key identifier: 79:5F:DE:9B:94:49:EA:C9:13:6E:FE:23:6F:CF:C2:5C:A1:22:EF:4B
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 019780C495493A55409CFDD31212F0307554
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 1599
Signing time: Wed 18 Jun 2025 02:00:56 +0000
Manifest this update: Wed 18 Jun 2025 02:00:56 +0000
Manifest next update: Thu 19 Jun 2025 02:00:56 +0000
Files and hashes: 1: kL5tCodlPmsKcG8VmzS3vTT-EpU.roa (hash: rTcyxkJLmIdGub6lXVfezUyk6BdEW9e85j13e1XiRBA=)
2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: nbnHlaU07xYZCht/c1im1AmAOZOQJKwM7Jij2REuYIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:80:c4:95:49:3a:55:40:9c:fd:d3:12:12:f0:30:75:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Jun 18 02:00:56 2025 GMT
Not After : Jun 19 02:00:56 2025 GMT
Subject: CN=795fde9b9449eac9136efe236fcfc25ca122ef4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:51:6e:5a:c0:9b:bd:e1:78:35:fc:29:53:2a:
33:0b:13:0d:ba:31:c6:ed:7d:61:05:ae:a7:c4:e4:
f1:52:19:41:68:8a:86:7d:25:2c:87:12:44:df:79:
9a:be:c9:3d:54:09:e5:c7:69:e0:22:f5:19:61:88:
b3:50:19:99:78:50:3f:73:b3:f7:0d:38:0f:21:71:
d8:5c:83:5c:e2:c5:4f:b6:3f:28:a5:f8:df:d3:eb:
dc:8f:a3:05:62:7f:89:10:12:c4:3a:bc:9b:09:92:
36:a5:b3:d7:27:56:66:70:7b:8e:d3:c0:d0:7f:b2:
ac:ea:15:41:9b:7d:5d:c9:22:3a:8b:3b:fc:36:61:
66:72:21:de:97:a3:27:67:2e:f4:68:a8:cb:32:31:
77:6d:d3:0e:7e:8c:7f:79:cf:20:58:70:81:fa:a9:
b3:c7:c1:67:4e:2b:ec:eb:11:46:72:c0:37:16:f4:
e6:f3:12:7f:99:aa:c5:bd:9f:b2:ec:80:ae:74:2b:
29:b0:e4:69:41:64:7b:5e:18:5a:27:d3:e1:2a:7a:
f1:be:df:74:81:6a:c6:3c:b6:18:1d:83:51:3f:93:
ee:a7:97:d7:73:dd:ad:12:9a:5f:7c:95:98:b9:43:
06:c4:92:48:4c:f5:86:d1:66:ef:10:6d:bc:f7:26:
fd:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:5F:DE:9B:94:49:EA:C9:13:6E:FE:23:6F:CF:C2:5C:A1:22:EF:4B
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:78:02:6e:aa:80:75:11:3b:1b:b6:99:96:7e:db:2e:91:45:
5d:74:90:39:ea:1a:c8:5e:df:e9:1d:df:18:3a:3d:2c:a6:1d:
a1:6a:27:05:61:dc:06:ac:e2:c8:86:f8:a0:1c:bc:9d:58:61:
4c:96:17:5f:b6:6d:73:d0:06:ef:29:d9:fa:63:4f:8a:5c:54:
40:3f:1c:e9:44:0d:10:e3:91:44:f0:7e:eb:ef:51:ce:3c:88:
71:e6:38:96:77:ab:aa:de:52:1a:bb:11:96:8a:62:ea:ae:a6:
7b:d4:8f:b3:0f:d1:32:58:60:d6:35:d8:7c:7f:5b:15:de:a5:
5a:75:11:d6:ce:ba:b2:91:7a:6f:4c:46:2f:8e:81:7f:12:85:
95:c2:e3:59:5e:9a:d1:fa:bf:90:09:9f:a1:8c:b1:fa:f6:86:
77:e2:86:60:b5:58:be:d5:f1:bb:13:25:61:9b:b8:bc:5a:fd:
2f:74:fd:c3:84:a5:87:66:02:a3:4c:0e:43:0c:16:50:aa:5d:
2c:98:59:57:42:b3:9c:c7:5a:1c:f9:3e:95:89:6e:90:b7:05:
43:6a:c1:ae:04:02:0f:22:68:e6:9b:9b:44:cc:2b:fe:01:c2:
8b:a2:50:21:18:cb:7c:55:de:51:af:df:81:f4:30:04:f2:4f:
d6:14:7f:e3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeAxJVJOlVAnP3TEhLwMHVUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0Yzg2YzliMzVkNzgyMTE2YjJjZDg1ODNhMjdjZWI0MDNi
OGY2MWEwHhcNMjUwNjE4MDIwMDU2WhcNMjUwNjE5MDIwMDU2WjAzMTEwLwYDVQQD
Eyg3OTVmZGU5Yjk0NDllYWM5MTM2ZWZlMjM2ZmNmYzI1Y2ExMjJlZjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FFuWsCbveF4NfwpUyozCxMNujHG
7X1hBa6nxOTxUhlBaIqGfSUshxJE33mavsk9VAnlx2ngIvUZYYizUBmZeFA/c7P3
DTgPIXHYXINc4sVPtj8opfjf0+vcj6MFYn+JEBLEOrybCZI2pbPXJ1ZmcHuO08DQ
f7Ks6hVBm31dySI6izv8NmFmciHel6MnZy70aKjLMjF3bdMOfox/ec8gWHCB+qmz
x8FnTivs6xFGcsA3FvTm8xJ/marFvZ+y7ICudCspsORpQWR7XhhaJ9PhKnrxvt90
gWrGPLYYHYNRP5Pup5fXc92tEppffJWYuUMGxJJITPWG0WbvEG289yb9lQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHlf3puUSerJE27+I2/PwlyhIu9LMB8GA1UdIwQY
MBaAFJTIbJs114IRayzYWDonzrQDuPYaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMt
MzViMGM5NjUyNGZhLzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMtMzViMGM5NjUyNGZh
LzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANXgCbqqA
dRE7G7aZln7bLpFFXXSQOeoayF7f6R3fGDo9LKYdoWonBWHcBqziyIb4oBy8nVhh
TJYXX7Ztc9AG7ynZ+mNPilxUQD8c6UQNEOORRPB+6+9RzjyIceY4lnerqt5SGrsR
lopi6q6me9SPsw/RMlhg1jXYfH9bFd6lWnUR1s66spF6b0xGL46BfxKFlcLjWV6a
0fq/kAmfoYyx+vaGd+KGYLVYvtXxuxMlYZu4vFr9L3T9w4Slh2YCo0wOQwwWUKpd
LJhZV0KznMdaHPk+lYlukLcFQ2rBrgQCDyJo5pubRMwr/gHCi6JQIRjLfFXeUa/f
gfQwBPJP1hR/4w==
-----END CERTIFICATE-----
Generated at Wed Jun 18 12:08:48 2025 by rpki-client