Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier: yancHLSrOQ/vY/WDQmGzZq953woxCmTFpbvYE1YyEo8=
Subject key identifier: C5:CF:88:A7:D3:9F:36:3C:35:68:E2:3A:52:E5:76:94:BB:CE:2A:33
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial: 019874BE57C981680747CE9EF982EB029FEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number: 1380
Signing time: Mon 04 Aug 2025 11:01:27 +0000
Manifest this update: Mon 04 Aug 2025 11:01:27 +0000
Manifest next update: Tue 05 Aug 2025 11:01:27 +0000
Files and hashes: 1: 0hGuI9abbnH5IARURiUpnsE2cKk.roa (hash: DuwUAcXW//1k2Md+MdRwDGn9pw5DCw3cr3zSvWu8/Sg=)
2: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: xfZn7KxvXEWEzxUfrieC248Uhx8PkEE7pW15NgJfP0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:be:57:c9:81:68:07:47:ce:9e:f9:82:eb:02:9f:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
Validity
Not Before: Aug 4 11:01:27 2025 GMT
Not After : Aug 5 11:01:27 2025 GMT
Subject: CN=c5cf88a7d39f363c3568e23a52e57694bbce2a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b4:c3:69:9e:e5:88:c6:0c:16:90:08:c7:0f:
64:1f:5b:e3:99:47:c5:6c:1b:25:54:5f:38:c6:1a:
10:84:9c:19:26:4e:07:09:3b:a0:a5:8b:ce:58:ec:
36:85:77:50:7c:b9:d7:de:4f:9d:fa:e1:c7:5f:9b:
da:eb:88:ef:1c:96:c5:6c:46:01:0c:77:87:ad:b2:
00:9d:e8:4d:f9:63:cb:13:27:c9:de:cb:06:ec:62:
61:f0:34:ea:c7:89:cb:64:3f:27:19:72:a7:c5:2e:
c9:62:fb:71:bf:1b:2c:02:e5:6c:f6:e7:26:09:6b:
18:96:ec:92:bf:e2:ec:94:57:b9:55:c8:f2:87:5a:
a6:2c:27:50:d2:92:3b:91:2e:2f:89:a6:77:51:f0:
e9:57:d3:8e:07:41:01:a5:bf:fb:a7:8a:0a:de:f6:
7b:8d:23:c8:55:db:8f:22:69:74:58:06:5f:a8:ce:
f8:57:62:97:28:ea:5b:d1:33:bb:af:4a:7f:e1:b4:
6f:d3:4d:83:5b:37:4e:64:5e:77:a8:ab:c0:09:d1:
8a:9d:07:bb:7c:21:86:b8:ba:3a:3e:19:7f:b5:f0:
36:71:99:ca:c8:f6:2f:71:b5:96:8b:fa:46:10:78:
34:1b:ac:d0:22:d9:b4:06:de:dc:91:45:7b:75:a9:
9d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:CF:88:A7:D3:9F:36:3C:35:68:E2:3A:52:E5:76:94:BB:CE:2A:33
X509v3 Authority Key Identifier:
keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:51:d0:f3:67:0f:5a:b0:35:ad:63:10:69:55:29:87:49:08:
75:2f:1d:d9:d8:6b:b7:9d:05:0e:f3:ee:24:73:ab:bb:6f:81:
20:49:20:3f:75:5a:a8:d2:21:98:07:a7:2f:e4:9a:88:24:4d:
7a:4c:8c:8b:cd:fd:fe:00:3a:81:7b:e9:26:8b:85:c2:2b:da:
b1:7c:0f:69:6f:39:a5:57:09:a7:0f:ec:d9:29:d2:f5:65:8b:
c9:d1:e0:6f:f7:b3:de:99:b6:a4:34:d3:a8:0f:6d:d8:b3:41:
88:fc:61:98:b4:3b:68:cc:a9:82:5a:46:a1:8d:5b:c7:ea:8e:
c4:2a:45:91:a4:91:f0:09:da:76:84:6d:33:57:c0:f0:36:d6:
25:d0:f5:c1:0a:a9:85:90:21:22:74:e9:26:7d:43:ee:a5:ae:
5a:af:2f:77:9c:44:60:8c:b8:be:2c:bc:68:be:6f:fd:09:c4:
7b:6e:7e:43:0f:c9:c0:ed:c4:68:8f:ac:cd:3d:78:db:43:fd:
53:d7:b9:7f:79:ae:52:4a:9f:e7:be:c7:eb:5a:d1:15:01:07:
1d:12:20:83:99:79:86:f3:cf:56:fb:bb:66:19:18:45:e4:a8:
d7:fb:c7:33:8c:35:30:ae:92:86:04:c9:de:6b:6b:7a:30:ab:
1e:c8:1b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:38:35 2025 by rpki-client