Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
File: lmsFxmHHalvMSNqDju22lz8VO4Y.mft (raw, json)
Hash identifier: 0hku/sb9WvG/I7vZBNiYWwIlvXnW3okTJ7Qel3Nek/I=
Subject key identifier: 68:31:B6:E9:32:9E:6F:1E:7C:0A:26:A2:C6:32:34:AF:46:38:C3:CB
Authority key identifier: 96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
Certificate issuer: /CN=966b05c661c76a5bcc48da838eedb6973f153b86
Certificate serial: 01977A8AFD0BB202AFC02E4220348A6864FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
Manifest number: 1597
Signing time: Mon 16 Jun 2025 21:00:18 +0000
Manifest this update: Mon 16 Jun 2025 21:00:18 +0000
Manifest next update: Tue 17 Jun 2025 21:00:18 +0000
Files and hashes: 1: TJQ4iHjsEa_CDFuqEaOqRs6tWiM.roa (hash: 5u5yG9F1dj6okhQFxjTOrTdhi+XMd7VfKkkCnAOAbSo=)
2: lmsFxmHHalvMSNqDju22lz8VO4Y.crl (hash: 5pBQLWPgTk2dFVXJ8NHKTM3iyTj5xAkj2097Q7YR4D8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 21:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:8a:fd:0b:b2:02:af:c0:2e:42:20:34:8a:68:64:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=966b05c661c76a5bcc48da838eedb6973f153b86
Validity
Not Before: Jun 16 21:00:18 2025 GMT
Not After : Jun 17 21:00:18 2025 GMT
Subject: CN=6831b6e9329e6f1e7c0a26a2c63234af4638c3cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1e:70:b2:26:86:ab:7c:ba:8e:8b:23:ac:87:
76:ce:bc:29:39:89:7a:ba:8c:ae:47:62:3a:91:84:
06:c9:ca:57:7a:c4:e7:5f:ce:d1:d4:38:8d:15:06:
cc:2e:8f:82:0f:32:09:83:12:f1:fc:c7:02:9f:20:
73:24:48:ef:8d:d9:05:a0:d8:fa:bd:0e:33:c0:92:
70:19:57:d8:87:da:cd:ad:20:ed:d5:81:07:bf:39:
74:62:92:13:23:37:fa:8a:84:2e:9c:8d:03:74:63:
01:36:ca:62:c7:ed:b5:4e:ef:fc:66:52:0c:a3:2e:
cb:43:3f:f2:2a:a5:a7:08:0e:50:c9:b6:a5:2c:be:
e0:77:30:a6:90:c6:0b:86:92:8b:59:51:a1:c3:73:
cd:65:cb:ac:fd:e7:20:6c:59:1e:5b:b6:a4:6b:c0:
05:e6:f8:2d:21:28:81:03:11:68:13:02:ad:99:6e:
8a:c0:67:be:79:47:d1:4e:92:81:78:d6:6a:f2:93:
95:8d:a3:4f:28:31:d8:33:05:8b:50:ce:72:ab:73:
09:c9:3e:f2:ea:55:26:9c:8c:f5:9c:cc:a3:df:ff:
73:5f:51:33:6d:86:3d:c7:2e:03:75:be:57:7a:f3:
3f:9d:1f:89:16:1b:a9:da:52:ce:31:2a:a6:af:8a:
b2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:31:B6:E9:32:9E:6F:1E:7C:0A:26:A2:C6:32:34:AF:46:38:C3:CB
X509v3 Authority Key Identifier:
keyid:96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:7c:d7:79:32:8b:8b:5c:07:01:39:1b:43:54:4b:35:24:ef:
f7:b4:0a:46:c6:45:5e:ba:a9:2c:2e:26:7c:ab:5d:88:bc:f3:
2b:e9:d4:5a:a6:2b:e1:75:d9:44:5f:14:7c:0c:bc:b1:1a:e9:
bd:b1:be:25:67:84:39:95:c8:2d:e3:b1:b7:84:c5:f3:e8:bb:
df:7c:48:91:6e:49:9d:d9:88:11:9b:f0:e2:17:85:4d:a7:53:
88:06:5a:17:06:94:59:ed:43:b2:16:b0:f9:ab:07:eb:b7:c1:
b4:c8:e9:b9:48:dc:db:ef:bd:00:78:db:22:26:ee:8a:d6:17:
be:17:35:f1:8f:6b:12:68:78:51:7b:ff:cf:b3:75:b0:c7:30:
84:25:39:1c:70:4a:10:dd:af:24:8b:6f:65:ad:b8:ec:50:a7:
f9:0b:41:01:d6:97:09:05:03:14:c0:63:57:fc:0e:3c:b5:2f:
28:f0:25:72:44:6f:92:05:b1:b5:98:c7:a7:76:b1:60:25:f3:
e4:14:60:42:24:65:e5:df:74:b8:71:fb:fd:5f:48:cc:5f:f0:
3f:04:16:ad:01:06:3c:54:6f:43:40:ab:1a:86:57:ae:66:79:
63:97:da:2c:ef:01:18:3f:55:89:a6:53:7b:31:b4:47:0b:35:
de:9f:95:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd6iv0LsgKvwC5CIDSKaGT7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2NmIwNWM2NjFjNzZhNWJjYzQ4ZGE4MzhlZWRiNjk3M2Yx
NTNiODYwHhcNMjUwNjE2MjEwMDE4WhcNMjUwNjE3MjEwMDE4WjAzMTEwLwYDVQQD
Eyg2ODMxYjZlOTMyOWU2ZjFlN2MwYTI2YTJjNjMyMzRhZjQ2MzhjM2NiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgx5wsiaGq3y6josjrId2zrwpOYl6
uoyuR2I6kYQGycpXesTnX87R1DiNFQbMLo+CDzIJgxLx/McCnyBzJEjvjdkFoNj6
vQ4zwJJwGVfYh9rNrSDt1YEHvzl0YpITIzf6ioQunI0DdGMBNspix+21Tu/8ZlIM
oy7LQz/yKqWnCA5QybalLL7gdzCmkMYLhpKLWVGhw3PNZcus/ecgbFkeW7aka8AF
5vgtISiBAxFoEwKtmW6KwGe+eUfRTpKBeNZq8pOVjaNPKDHYMwWLUM5yq3MJyT7y
6lUmnIz1nMyj3/9zX1EzbYY9xy4Ddb5XevM/nR+JFhup2lLOMSqmr4qynwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGgxtukynm8efAomosYyNK9GOMPLMB8GA1UdIwQY
MBaAFJZrBcZhx2pbzEjag47ttpc/FTuGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbG1zRnhtSEhhbHZNU05xRGp1MjJsejhWTzRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC82ODkxZGYtOTcxZS00ZTYwLThjYmMt
ZTNjMmYzMmNmM2I3LzEvbG1zRnhtSEhhbHZNU05xRGp1MjJsejhWTzRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC82ODkxZGYtOTcxZS00ZTYwLThjYmMtZTNjMmYzMmNmM2I3
LzEvbG1zRnhtSEhhbHZNU05xRGp1MjJsejhWTzRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAanzXeTKL
i1wHATkbQ1RLNSTv97QKRsZFXrqpLC4mfKtdiLzzK+nUWqYr4XXZRF8UfAy8sRrp
vbG+JWeEOZXILeOxt4TF8+i733xIkW5JndmIEZvw4heFTadTiAZaFwaUWe1Dshaw
+asH67fBtMjpuUjc2++9AHjbIibuitYXvhc18Y9rEmh4UXv/z7N1sMcwhCU5HHBK
EN2vJItvZa247FCn+QtBAdaXCQUDFMBjV/wOPLUvKPAlckRvkgWxtZjHp3axYCXz
5BRgQiRl5d90uHH7/V9IzF/wPwQWrQEGPFRvQ0CrGoZXrmZ5Y5faLO8BGD9ViaZT
ezG0Rws13p+VTA==
-----END CERTIFICATE-----
Generated at Tue Jun 17 06:50:54 2025 by rpki-client