Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier: jqBmhdtq8R5lSt0mGdIEY2uP0vi7t6jI9LwC7kxMb4s=
Subject key identifier: 0E:6E:67:67:8D:86:F3:3F:FD:54:8F:49:36:8F:72:91:F8:64:1C:51
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial: 019770080349A718C9700AC82ACA8BDAC1B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number: 12F9
Signing time: Sat 14 Jun 2025 20:01:02 +0000
Manifest this update: Sat 14 Jun 2025 20:01:02 +0000
Manifest next update: Sun 15 Jun 2025 20:01:02 +0000
Files and hashes: 1: 0hGuI9abbnH5IARURiUpnsE2cKk.roa (hash: DuwUAcXW//1k2Md+MdRwDGn9pw5DCw3cr3zSvWu8/Sg=)
2: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: 0prBidYKbHwkRKWV2lcbLsIj90anyeYGFNUKWm3fETU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:08:03:49:a7:18:c9:70:0a:c8:2a:ca:8b:da:c1:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
Validity
Not Before: Jun 14 20:01:02 2025 GMT
Not After : Jun 15 20:01:02 2025 GMT
Subject: CN=0e6e67678d86f33ffd548f49368f7291f8641c51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8f:da:ac:2e:5a:3f:9f:26:2f:06:75:dd:05:
b5:36:5e:1c:6a:65:33:80:8c:d7:29:67:b6:18:59:
30:9d:b3:11:a7:9f:74:a7:cf:8e:d5:aa:cc:bc:5e:
d0:b2:53:08:e3:1e:42:74:b3:c0:9b:ac:a8:3a:0a:
aa:35:2e:ec:1c:45:37:cd:34:b8:4c:4a:7b:38:4d:
ca:26:d1:99:5c:28:e9:23:3e:7b:cd:8b:c5:ed:93:
39:f0:0e:77:20:73:56:22:99:76:b2:51:d8:0f:6c:
0e:cb:8a:09:8b:8d:1f:8f:fd:c3:fd:ff:28:1d:da:
2d:00:5b:a7:f3:93:f3:6a:50:41:04:7b:3f:24:88:
f4:c4:f5:1a:95:0e:f9:7c:92:b9:9c:96:a5:a1:70:
39:27:a9:b9:f5:90:fa:58:7f:f8:8d:32:37:48:42:
d8:d2:07:ff:19:3d:dc:c2:d0:d4:ca:13:a2:c1:4e:
4a:ea:0a:3b:4c:04:75:71:aa:2e:e7:61:91:c3:a7:
91:c8:71:93:aa:db:de:a8:bc:95:4c:8f:25:8b:5d:
6d:fe:9c:b7:d9:80:d2:f0:8e:66:02:89:f0:3f:d5:
91:6d:3d:e5:1d:52:60:41:92:79:8c:60:ec:5f:ba:
f7:f0:52:5d:6e:af:42:05:54:05:3a:b6:4a:eb:1e:
3b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6E:67:67:8D:86:F3:3F:FD:54:8F:49:36:8F:72:91:F8:64:1C:51
X509v3 Authority Key Identifier:
keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:e5:b4:75:bb:87:c7:0b:86:2c:03:91:af:6c:3e:8e:8a:71:
81:88:ae:8f:9f:81:42:06:01:55:fe:bd:01:8c:04:32:0e:7a:
fe:0a:29:13:4f:37:02:93:1e:29:9b:6c:a2:40:c3:60:bc:c0:
88:38:ef:be:21:1f:68:09:77:28:b0:48:61:14:36:38:7a:a8:
d1:17:dc:6e:4c:b2:32:60:33:0f:e0:d0:62:34:88:6f:50:2b:
3c:b2:a6:34:7e:e1:18:1c:6d:4d:3d:ac:a4:13:4a:ee:5b:70:
97:fe:c4:dc:b1:0c:37:ae:df:19:38:ce:56:a6:19:6f:33:e5:
95:60:5f:48:65:ba:03:08:34:97:60:fa:3d:13:75:81:c5:80:
4b:93:79:9f:6f:a6:b8:93:00:c9:71:6b:f0:5f:61:ed:07:ee:
ec:c7:26:c4:dc:97:59:37:ec:ba:e2:57:49:92:d2:b5:01:24:
26:f3:fa:8e:47:ed:a7:0a:a8:81:52:ad:8b:cf:5d:dd:5c:47:
f2:9d:88:2a:fd:4b:24:80:68:44:a4:7f:5e:e5:6a:8c:4b:12:
fd:ab:e3:73:77:eb:e9:89:7e:9b:fd:df:c1:15:c1:21:0d:0a:
8c:7f:70:fc:c4:49:86:0b:46:78:a0:ae:99:79:75:8b:3a:0f:
55:b3:17:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwCANJpxjJcArIKsqL2sGzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2MTk5MzYwMjU5ZmE1YjM1YjgyOTUzYzVlZDk3OTk5MjI4
MzQxYWMwHhcNMjUwNjE0MjAwMTAyWhcNMjUwNjE1MjAwMTAyWjAzMTEwLwYDVQQD
EygwZTZlNjc2NzhkODZmMzNmZmQ1NDhmNDkzNjhmNzI5MWY4NjQxYzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAko/arC5aP58mLwZ13QW1Nl4camUz
gIzXKWe2GFkwnbMRp590p8+O1arMvF7QslMI4x5CdLPAm6yoOgqqNS7sHEU3zTS4
TEp7OE3KJtGZXCjpIz57zYvF7ZM58A53IHNWIpl2slHYD2wOy4oJi40fj/3D/f8o
HdotAFun85PzalBBBHs/JIj0xPUalQ75fJK5nJaloXA5J6m59ZD6WH/4jTI3SELY
0gf/GT3cwtDUyhOiwU5K6go7TAR1caou52GRw6eRyHGTqtveqLyVTI8li11t/py3
2YDS8I5mAonwP9WRbT3lHVJgQZJ5jGDsX7r38FJdbq9CBVQFOrZK6x47NwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA5uZ2eNhvM//VSPSTaPcpH4ZBxRMB8GA1UdIwQY
MBaAFJYZk2Aln6WzW4KVPF7ZeZkig0GsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9iZjcwZDMtNzBmYS00YTMyLTgwOWYt
MmE1OTFjMTQ5ZDdhLzEvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9iZjcwZDMtNzBmYS00YTMyLTgwOWYtMmE1OTFjMTQ5ZDdh
LzEvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKOW0dbuH
xwuGLAORr2w+jopxgYiuj5+BQgYBVf69AYwEMg56/gopE083ApMeKZtsokDDYLzA
iDjvviEfaAl3KLBIYRQ2OHqo0RfcbkyyMmAzD+DQYjSIb1ArPLKmNH7hGBxtTT2s
pBNK7ltwl/7E3LEMN67fGTjOVqYZbzPllWBfSGW6Awg0l2D6PRN1gcWAS5N5n2+m
uJMAyXFr8F9h7Qfu7McmxNyXWTfsuuJXSZLStQEkJvP6jkftpwqogVKti89d3VxH
8p2IKv1LJIBoRKR/XuVqjEsS/avjc3fr6Yl+m/3fwRXBIQ0KjH9w/MRJhgtGeKCu
mXl1izoPVbMXAA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 22:09:00 2025 by rpki-client