Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
File: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft (raw, json)
Hash identifier: ToX4/R2MQX7AVBDSKQie32iqmN2XZdoNx9RDqaIvFzY=
Subject key identifier: 00:FE:68:6D:44:A0:7C:B0:92:29:17:3A:0D:A1:17:4A:F1:B8:37:44
Authority key identifier: 96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
Certificate issuer: /CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Certificate serial: 019685B640AAC27C8A1E8F199722C7FF56F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
Manifest number: 0C4E
Signing time: Wed 30 Apr 2025 08:00:35 +0000
Manifest this update: Wed 30 Apr 2025 08:00:35 +0000
Manifest next update: Thu 01 May 2025 08:00:35 +0000
Files and hashes: 1: O8xQyf4SlO_QA8u4YHx9nqfuT4c.roa (hash: WyDwMMx1y5LT2GHueRZtXWT+BMFzzrzU6Km40azPSxA=)
2: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl (hash: t26TNRbGJukNCyw5Vekhy5Rq11PGvDrFiDsv6Y/fQJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 08:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:b6:40:aa:c2:7c:8a:1e:8f:19:97:22:c7:ff:56:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Validity
Not Before: Apr 30 08:00:35 2025 GMT
Not After : May 1 08:00:35 2025 GMT
Subject: CN=00fe686d44a07cb09229173a0da1174af1b83744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c5:a0:0a:a7:ca:28:6d:4d:b9:b4:c9:1c:15:
05:2f:f1:d1:98:ac:b7:4a:b8:a4:19:c4:1f:d9:0d:
ba:63:65:d1:dc:a0:03:b9:b1:04:15:9e:d2:b5:40:
6f:8f:13:b6:f5:0c:43:ab:5d:04:3d:1d:4e:5d:83:
96:6f:dc:25:1e:7e:8b:0d:5d:ad:c9:1f:5d:45:db:
4b:a4:99:a4:5b:12:cb:4f:39:3d:88:63:8e:14:31:
0e:08:4f:e3:6f:b4:6f:be:08:f3:1b:99:20:4a:43:
77:d5:35:26:fa:df:14:d9:39:3c:5f:28:8d:ea:ba:
e3:82:9b:a9:f7:5e:b3:84:f2:2e:69:af:72:13:93:
64:3e:9c:0b:8d:34:86:eb:a2:1e:b5:4a:1a:1d:9f:
07:7c:5f:f3:00:92:bc:21:7d:2c:c4:31:3c:cf:8d:
c4:a1:76:6a:0c:d3:cb:96:44:90:21:f4:91:2c:0d:
4d:71:6c:66:7b:72:b6:7f:d2:e5:40:82:1b:58:f6:
4a:f2:77:ac:2f:ce:9b:b6:a8:63:49:25:c4:f9:7b:
d5:d0:fa:f5:02:58:73:99:07:22:0b:76:86:be:14:
bb:ee:c1:36:96:7c:ef:18:59:3a:88:72:5a:29:8b:
b7:5c:3b:21:8a:de:a9:34:6b:db:33:b8:fa:15:a6:
4f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:FE:68:6D:44:A0:7C:B0:92:29:17:3A:0D:A1:17:4A:F1:B8:37:44
X509v3 Authority Key Identifier:
keyid:96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:1e:c3:04:d2:7b:7f:e0:ed:39:c8:ad:2e:74:9f:d4:1b:05:
8a:21:3d:7f:18:ce:c4:ae:3e:60:74:ae:18:e3:88:df:2e:d3:
94:48:78:49:da:66:ba:ff:f9:57:ac:a8:bd:5c:09:04:f9:02:
2f:52:1e:0e:ba:32:23:d8:22:1d:24:58:c8:4f:ea:a2:52:4f:
f8:37:d5:f9:c5:75:b5:4a:0b:e1:63:9e:ab:f2:ce:33:62:a3:
69:35:59:64:0f:93:12:f9:21:11:02:79:84:0a:99:d1:7d:bb:
d7:c1:e6:80:4a:c5:15:6c:19:52:e6:e3:f5:dd:b2:38:15:8b:
76:35:20:8d:cc:b3:96:99:19:a2:b6:e0:ed:fc:c1:f0:47:e5:
2e:0f:dc:de:e3:5f:0e:5b:aa:13:b8:b5:d3:95:31:9b:7b:68:
b8:6d:90:96:91:73:97:02:3f:cf:05:c2:b4:37:34:6e:fe:c0:
ad:84:44:05:c4:26:01:85:45:9f:67:d2:f6:54:45:cd:65:a2:
e0:47:81:81:9a:32:95:6c:82:92:13:20:4f:ef:a5:8e:63:d1:
c2:de:27:07:5b:68:0b:86:8d:77:90:51:93:aa:37:c9:c7:01:
bc:15:6d:25:1b:c6:14:b6:85:65:e7:94:0c:56:71:75:9b:16:
e2:b2:28:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaFtkCqwnyKHo8ZlyLH/1bzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2Yjg3ZTVmZDFhYWRjMWJiZWEzNzJiNDI2OWVlYmQzOTNj
NWNkNjcwHhcNMjUwNDMwMDgwMDM1WhcNMjUwNTAxMDgwMDM1WjAzMTEwLwYDVQQD
EygwMGZlNjg2ZDQ0YTA3Y2IwOTIyOTE3M2EwZGExMTc0YWYxYjgzNzQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18WgCqfKKG1NubTJHBUFL/HRmKy3
SrikGcQf2Q26Y2XR3KADubEEFZ7StUBvjxO29QxDq10EPR1OXYOWb9wlHn6LDV2t
yR9dRdtLpJmkWxLLTzk9iGOOFDEOCE/jb7RvvgjzG5kgSkN31TUm+t8U2Tk8XyiN
6rrjgpup916zhPIuaa9yE5NkPpwLjTSG66IetUoaHZ8HfF/zAJK8IX0sxDE8z43E
oXZqDNPLlkSQIfSRLA1NcWxme3K2f9LlQIIbWPZK8nesL86btqhjSSXE+XvV0Pr1
AlhzmQciC3aGvhS77sE2lnzvGFk6iHJaKYu3XDshit6pNGvbM7j6FaZP0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAD+aG1EoHywkikXOg2hF0rxuDdEMB8GA1UdIwQY
MBaAFJa4fl/RqtwbvqNytCae69OTxc1nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHJoLVg5R3EzQnUtbzNLMEpwN3IwNVBGeldjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi82YTg4YWMtZWZiNC00NWU0LTkxOTkt
MmFiZGIyMTk0MWJjLzEvbHJoLVg5R3EzQnUtbzNLMEpwN3IwNVBGeldjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi82YTg4YWMtZWZiNC00NWU0LTkxOTktMmFiZGIyMTk0MWJj
LzEvbHJoLVg5R3EzQnUtbzNLMEpwN3IwNVBGeldjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJx7DBNJ7
f+DtOcitLnSf1BsFiiE9fxjOxK4+YHSuGOOI3y7TlEh4Sdpmuv/5V6yovVwJBPkC
L1IeDroyI9giHSRYyE/qolJP+DfV+cV1tUoL4WOeq/LOM2KjaTVZZA+TEvkhEQJ5
hAqZ0X2718HmgErFFWwZUubj9d2yOBWLdjUgjcyzlpkZorbg7fzB8EflLg/c3uNf
DluqE7i105Uxm3touG2QlpFzlwI/zwXCtDc0bv7ArYREBcQmAYVFn2fS9lRFzWWi
4EeBgZoylWyCkhMgT++ljmPRwt4nB1toC4aNd5BRk6o3yccBvBVtJRvGFLaFZeeU
DFZxdZsW4rIoXA==
-----END CERTIFICATE-----
Generated at Wed Apr 30 11:44:53 2025 by rpki-client