Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
File: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft (raw, json)
Hash identifier: 9vT9j8b0bVGQpjcjx/jctXuglqp05vBR1YFIhAxz8Tk=
Subject key identifier: 5E:7D:83:9B:B0:94:44:62:19:F7:C6:1D:5C:02:BC:61:71:C5:9D:B9
Authority key identifier: 96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
Certificate issuer: /CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Certificate serial: 019782B2C19E6B6D93950ED3854EF6F54D10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
Manifest number: 0CD1
Signing time: Wed 18 Jun 2025 11:00:42 +0000
Manifest this update: Wed 18 Jun 2025 11:00:42 +0000
Manifest next update: Thu 19 Jun 2025 11:00:42 +0000
Files and hashes: 1: O8xQyf4SlO_QA8u4YHx9nqfuT4c.roa (hash: WyDwMMx1y5LT2GHueRZtXWT+BMFzzrzU6Km40azPSxA=)
2: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl (hash: tElY9BEfaDtk2Zb/tB1PSH1VqEcAZw8lf4rGephiCSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:82:b2:c1:9e:6b:6d:93:95:0e:d3:85:4e:f6:f5:4d:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Validity
Not Before: Jun 18 11:00:42 2025 GMT
Not After : Jun 19 11:00:42 2025 GMT
Subject: CN=5e7d839bb094446219f7c61d5c02bc6171c59db9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:dc:f0:13:1b:0d:d5:30:d8:81:5a:b0:d7:c2:
ee:1c:4b:eb:6e:84:5b:93:05:49:f2:74:f2:46:c9:
cc:b2:61:ae:12:c5:a4:f4:75:ec:d7:93:d5:a0:9a:
a7:d7:da:4c:e5:18:24:60:75:04:30:d3:28:95:86:
83:0f:d2:78:e2:5f:32:cd:17:41:16:47:7d:3c:a0:
4e:c7:84:92:94:20:94:f4:8b:ae:62:42:c8:54:5d:
f1:80:f5:0f:43:33:36:78:0c:df:7a:5d:a0:b2:e4:
ce:e2:69:2b:66:83:5c:02:9c:bb:29:dd:81:e4:b6:
5e:33:6e:ac:ee:bb:ef:68:29:34:d0:2a:d6:f5:64:
d1:b6:88:ab:1e:7e:ba:f4:6b:aa:77:21:b4:e1:e1:
3d:49:48:25:8d:21:88:88:20:11:43:81:e1:47:b5:
b1:58:9a:0a:94:38:8d:57:75:8d:22:64:f7:ac:1b:
41:4b:cb:1d:e0:02:a3:2a:e6:d6:a1:14:83:e5:2d:
f3:86:37:bf:c2:63:32:ab:44:13:06:cb:62:c2:cd:
6a:83:ce:e5:42:70:a8:60:e5:f0:26:90:0c:67:62:
9c:a2:5b:56:f2:4a:45:d8:6b:d3:98:fd:04:4e:68:
2e:a2:9d:1a:dc:2b:d4:29:f0:36:87:02:87:75:e2:
81:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:7D:83:9B:B0:94:44:62:19:F7:C6:1D:5C:02:BC:61:71:C5:9D:B9
X509v3 Authority Key Identifier:
keyid:96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:c6:ff:fd:58:22:fa:22:47:27:81:be:ee:bf:c7:7b:b5:0e:
7b:2e:49:f3:77:71:75:22:3d:d7:9c:b6:28:71:22:d1:93:54:
c7:ba:23:b4:ef:a1:9f:89:e5:af:83:c9:ef:1f:a4:6b:d3:fb:
a0:12:b4:13:0f:e3:cd:39:61:cb:92:1c:f3:6a:fe:77:36:f1:
e4:94:ab:04:03:f4:09:64:15:f0:aa:75:5c:cf:9f:93:0b:27:
9c:58:8e:15:da:6c:46:06:cd:3b:54:b3:af:59:22:d9:a0:c5:
e5:44:cd:79:ba:75:5c:ff:74:16:b3:83:5c:a3:a9:89:88:50:
c6:5c:06:3b:c8:c8:d5:d6:04:4c:01:bf:d4:f9:a4:81:9e:69:
83:6f:b3:5d:4b:07:5a:e6:d8:d3:54:57:dd:7b:0b:88:86:7b:
07:c1:43:0a:30:de:1e:20:6a:f6:d6:83:13:81:ad:ed:a7:48:
b2:72:bb:99:b6:e9:71:d0:34:f4:99:2c:c0:3c:42:82:83:35:
1f:d3:6c:2e:e2:0e:07:02:8b:54:dd:19:a8:14:27:9f:e6:fd:
2f:5f:71:db:78:6e:47:ff:69:8b:08:77:f2:a4:df:b6:81:23:
c6:ff:82:e1:a8:4b:c8:6e:91:b9:89:5d:04:c9:77:2d:d6:e5:
5d:56:20:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 16:04:54 2025 by rpki-client