Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
File: lmsFxmHHalvMSNqDju22lz8VO4Y.mft (raw, json)
Hash identifier: JghYLmevHikDqP7fJq51kaK5p3O89PAGfKyWCXNTPXI=
Subject key identifier: 2D:F7:9D:4A:A0:CD:01:78:3C:BD:CA:36:31:EA:CE:A8:DF:35:FB:DE
Authority key identifier: 96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
Certificate issuer: /CN=966b05c661c76a5bcc48da838eedb6973f153b86
Certificate serial: 019A4F2B07C0AC565AC6CC23516A5EA1F5CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
Manifest number: 1712
Signing time: Tue 04 Nov 2025 14:00:11 +0000
Manifest this update: Tue 04 Nov 2025 14:00:11 +0000
Manifest next update: Wed 05 Nov 2025 14:00:11 +0000
Files and hashes: 1: lmsFxmHHalvMSNqDju22lz8VO4Y.crl (hash: ZAlkRx5uIsWSXLvQjdvoskWbko+NsVPr3fX1u2bK/tQ=)
2: vW8nbP0mTPSGV0n46D4WrlPJlkA.roa (hash: FBmE53kvVV07M6urD1OzTmvwStXQDG55TxBqouWfpJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:07:c0:ac:56:5a:c6:cc:23:51:6a:5e:a1:f5:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=966b05c661c76a5bcc48da838eedb6973f153b86
Validity
Not Before: Nov 4 14:00:11 2025 GMT
Not After : Nov 5 14:00:11 2025 GMT
Subject: CN=2df79d4aa0cd01783cbdca3631eacea8df35fbde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3a:a2:8a:d6:0d:ff:28:bf:52:a8:8d:be:44:
8d:59:6c:ce:cc:94:a4:a8:dd:5e:de:f5:e7:69:4d:
04:55:3c:5a:d1:aa:b9:1c:29:04:cd:e7:b7:82:c0:
15:d6:b7:6d:2f:3c:0e:f1:12:a2:f4:45:7d:4e:b3:
37:2f:98:1d:c0:6a:45:d1:a5:a9:bf:86:78:7c:b1:
1b:23:6d:50:84:2a:d6:0c:e7:97:ab:6c:a5:83:b7:
6c:0e:86:a1:d0:f3:01:d2:c9:36:db:56:9f:8e:3b:
98:ed:5d:81:05:d8:cc:8a:c5:a8:d8:a0:5c:a0:98:
79:4b:b1:04:6f:72:53:f4:4a:12:b0:16:79:73:c1:
de:17:7d:71:f5:ae:7d:be:70:32:bb:31:9f:2a:6b:
39:4f:83:4a:2e:21:16:49:c2:0c:b9:42:87:b3:58:
bf:53:e9:a7:18:fe:1e:e8:20:4f:af:78:91:8d:51:
c6:75:d0:58:20:dd:09:55:61:ec:8d:21:27:db:c5:
de:d6:4a:92:e2:03:08:f5:c1:70:07:ff:43:5d:3d:
86:29:dc:bf:7b:cc:cc:29:7f:e0:5a:90:3e:53:d5:
9c:ea:05:2a:15:9b:5b:eb:c3:be:75:31:d6:45:af:
ee:11:79:f9:67:8e:4d:84:c5:cf:28:47:76:e4:19:
d4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F7:9D:4A:A0:CD:01:78:3C:BD:CA:36:31:EA:CE:A8:DF:35:FB:DE
X509v3 Authority Key Identifier:
keyid:96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:3a:c6:6a:e6:78:8f:5c:94:1b:bb:64:41:bf:b5:5b:11:99:
60:95:fe:ea:dc:07:f2:fe:ec:6e:78:ef:79:77:e9:f8:a1:78:
e6:ac:46:51:58:cd:45:94:1c:1e:eb:98:a0:a3:a9:5a:dd:50:
b0:89:79:9f:58:5e:ca:b8:bc:57:3e:90:9c:e8:59:e3:e8:3c:
1f:e4:a0:13:ad:1e:16:77:c8:bd:63:38:c8:1e:fb:6f:41:5f:
6a:12:c9:7d:35:3b:dd:38:a2:84:4e:6c:a5:48:2c:05:e2:43:
a5:48:6e:da:56:4c:64:5d:66:10:41:e8:91:b8:fe:4c:de:ef:
f2:4a:84:61:b9:46:b8:bb:54:31:cb:b1:29:ae:57:0d:ef:70:
eb:6f:4d:8b:1d:1e:87:bd:78:a8:87:f0:cb:8a:c2:9c:67:c6:
1f:79:7a:8a:17:e1:bf:96:fd:3e:55:dc:d0:cd:bb:a5:2b:d5:
98:c4:fb:ad:71:c8:3d:ab:6b:1e:fa:90:9b:0c:f2:bc:76:b5:
53:4f:d0:60:d4:2c:19:ab:8f:95:67:35:10:11:77:d2:a6:da:
d4:19:41:ad:7c:a4:f8:a0:e2:f7:b1:ca:af:71:73:58:69:76:
ea:93:17:90:05:d6:88:89:12:58:01:99:7b:01:5e:35:e7:0c:
ed:e7:07:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:51:56 2025 by rpki-client