Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
File: lmsFxmHHalvMSNqDju22lz8VO4Y.mft (raw, json)
Hash identifier: Y2Xs6potkV3ydgUCZ3MQhophhJrxAfGZNlXCjscL3ZQ=
Subject key identifier: 97:DF:5C:73:06:E4:E4:0A:59:CF:98:07:5C:E1:6B:51:1F:49:4F:38
Authority key identifier: 96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
Certificate issuer: /CN=966b05c661c76a5bcc48da838eedb6973f153b86
Certificate serial: 01987E2EC015A17CFBB1C73A3A0E1025E517
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
Manifest number: 1620
Signing time: Wed 06 Aug 2025 07:00:49 +0000
Manifest this update: Wed 06 Aug 2025 07:00:49 +0000
Manifest next update: Thu 07 Aug 2025 07:00:49 +0000
Files and hashes: 1: AWr8OYKv9_KF4D6UVDtH629Cefg.roa (hash: 4MdhFy1KJDqTYcUY/EwlEO/wukdleY/3c/+eyQ1u0ac=)
2: lmsFxmHHalvMSNqDju22lz8VO4Y.crl (hash: kJ8hVOPuOnpXO7PAA2xrm51yJYa27T4SunyjBm1B/3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:2e:c0:15:a1:7c:fb:b1:c7:3a:3a:0e:10:25:e5:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=966b05c661c76a5bcc48da838eedb6973f153b86
Validity
Not Before: Aug 6 07:00:49 2025 GMT
Not After : Aug 7 07:00:49 2025 GMT
Subject: CN=97df5c7306e4e40a59cf98075ce16b511f494f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:22:16:cb:00:1f:71:65:2d:9c:b0:3b:e9:f4:
bc:49:91:72:79:12:be:71:05:58:4c:9d:1b:2b:61:
ac:f0:a9:48:b5:2d:50:1c:ae:3a:7e:46:e9:85:e8:
7a:05:79:c1:e7:ac:6a:5c:59:49:d4:56:f3:dc:b6:
37:41:98:89:2b:dc:71:3d:b7:e0:2a:24:09:29:fa:
ef:c1:e3:e4:36:49:85:25:eb:91:80:18:79:fe:57:
31:9f:ad:a0:82:a9:7c:9d:df:c2:ce:bf:62:fb:7b:
92:93:8f:94:33:04:85:61:36:71:d5:78:c1:f4:9d:
7e:a9:c5:d6:f0:85:f7:98:20:b6:12:58:61:19:f7:
31:2a:1e:7d:26:ee:1e:84:c6:e4:58:ac:02:f9:55:
fe:fe:0f:f3:57:0c:6d:b2:f4:e8:25:90:73:6e:42:
92:94:20:09:d3:99:8e:9b:fa:54:ef:78:e5:2e:d6:
2f:43:e2:b8:8b:6f:a2:ad:c4:d6:7c:e9:8f:bf:9e:
68:7c:e6:31:24:fb:76:6f:4e:b2:d2:ba:14:85:d9:
f5:41:63:dd:31:b0:a8:61:5d:ab:25:0b:dd:40:67:
6b:dc:5a:19:97:12:74:ea:f1:1a:f8:be:90:bc:08:
63:dd:3c:e1:58:b3:9f:a9:ff:40:78:66:4e:f1:4a:
48:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DF:5C:73:06:E4:E4:0A:59:CF:98:07:5C:E1:6B:51:1F:49:4F:38
X509v3 Authority Key Identifier:
keyid:96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:8f:77:19:f0:40:6a:cd:e6:49:a7:29:be:d8:8e:a7:9e:10:
08:c4:34:a5:f9:3f:e5:fc:ab:02:e9:d2:3b:31:e1:65:a2:01:
3b:3a:e0:91:ca:e5:97:bb:f4:45:84:97:bf:78:68:2c:90:11:
31:a9:3d:4e:e8:95:32:5d:9a:86:2b:4e:f9:50:f1:72:6e:4a:
b6:0a:07:25:4e:44:63:8a:49:b2:da:72:c4:b4:15:2b:e1:97:
9d:80:75:c9:55:a9:f5:ab:ea:e4:57:e6:c6:7f:5c:20:a8:bd:
70:fe:42:3a:c0:02:87:8e:92:3b:d2:a5:6c:1b:37:42:5e:01:
dd:d3:eb:e9:03:a9:56:52:13:62:41:60:66:ad:a3:6a:12:c1:
19:fa:47:e4:14:86:16:98:55:43:74:d4:f5:12:97:0d:41:1d:
50:c9:91:05:ac:27:95:f8:b4:8d:87:48:da:03:64:26:31:8a:
4c:d5:09:a0:56:91:9c:65:ef:92:c8:4f:80:f5:03:01:71:ff:
95:d8:13:99:1d:ba:cd:a2:ec:6c:f6:07:37:aa:1f:1b:fa:32:
79:6e:6c:df:dd:9b:ea:19:be:73:70:b8:81:55:47:d9:04:6e:
9c:47:a6:6d:39:d2:74:ab:71:be:fa:5a:5d:aa:7f:f0:93:82:
bd:c8:49:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 10:07:42 2025 by rpki-client