Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
File: h94IWXXeZYjgf-0TVROqOKztt2M.mft (raw, json)
Hash identifier: B8lFnwkewe545XFSkAP1nQcgQYXTlIv52Ch7eQbSOJI=
Subject key identifier: E3:FC:53:39:CC:E8:77:63:F6:07:25:9E:80:2A:0F:C3:2C:60:B0:4D
Authority key identifier: 87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
Certificate issuer: /CN=87de085975de6588e07fed135513aa38acedb763
Certificate serial: 0197B7B31ED57B2522B246BC8A6DCFA0F5D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
Manifest number: 099E
Signing time: Sat 28 Jun 2025 18:00:58 +0000
Manifest this update: Sat 28 Jun 2025 18:00:58 +0000
Manifest next update: Sun 29 Jun 2025 18:00:58 +0000
Files and hashes: 1: 2z5OP5uOUPeCHEZvOlemyfzgiqA.roa (hash: Hk782ryuX9Xc6GFCRAe62b1gzyY4Vb/jeKK1cnQhmr8=)
2: h94IWXXeZYjgf-0TVROqOKztt2M.crl (hash: I+r5DhPaqwLKOoPwonWs3cKQpauruG71jXqc+vGKOY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:1e:d5:7b:25:22:b2:46:bc:8a:6d:cf:a0:f5:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87de085975de6588e07fed135513aa38acedb763
Validity
Not Before: Jun 28 18:00:58 2025 GMT
Not After : Jun 29 18:00:58 2025 GMT
Subject: CN=e3fc5339cce87763f607259e802a0fc32c60b04d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e4:96:7a:9f:6a:6e:39:fb:94:84:ad:26:b4:
1f:52:ca:96:de:dd:49:5d:ae:46:3a:d0:b8:0a:44:
fa:9d:81:71:c2:6d:9b:75:48:45:d3:cf:7d:c1:6d:
d1:78:0c:05:c3:f2:6a:62:68:2a:c0:48:01:c7:b6:
22:79:1f:7d:a8:1e:8a:84:2d:e2:c1:7f:ea:0b:67:
64:39:bd:ac:ad:6e:4f:52:7c:59:46:24:d6:9a:03:
cc:b6:66:12:87:0b:ec:51:da:a3:5f:18:7e:a1:79:
53:43:77:18:b2:0b:4b:24:f9:01:de:29:56:c0:56:
18:ce:43:40:31:43:60:f6:28:a9:d4:a1:eb:92:ee:
8b:37:9d:8d:e5:46:cf:c8:ac:c2:4a:ad:bb:9a:85:
df:26:64:63:76:90:00:7d:27:3d:48:46:c3:3e:0f:
f3:16:93:d8:11:97:89:38:0e:a5:22:d3:a5:b6:97:
59:2e:96:0c:dc:80:61:b0:4b:71:03:84:84:d9:1f:
e7:9d:66:92:82:bd:e4:c2:fa:53:f0:70:12:dd:00:
81:54:c8:84:97:6b:99:d4:a9:23:2a:38:a2:60:b1:
9f:73:15:6f:6e:d1:3e:6b:02:c1:79:2a:60:69:45:
50:da:b2:82:51:dd:40:40:4b:d2:70:f5:c3:1f:42:
ac:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:FC:53:39:CC:E8:77:63:F6:07:25:9E:80:2A:0F:C3:2C:60:B0:4D
X509v3 Authority Key Identifier:
keyid:87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:b1:0b:c9:29:42:60:b7:75:5c:95:17:b5:39:86:3b:9a:1f:
7f:7c:3a:86:2a:16:c0:38:a8:f5:19:19:e9:9a:03:0b:b1:be:
0b:65:6f:b0:ce:b7:02:9c:c7:a2:ad:4e:3b:ce:7c:13:2b:94:
b2:ee:52:c6:39:4c:62:ca:4c:e5:58:a1:0b:8a:42:f2:90:b5:
02:12:39:f8:da:06:77:0d:23:99:02:f1:81:c1:29:9f:ea:f4:
94:07:ef:06:cb:27:61:2d:22:25:6a:8d:6a:92:02:cc:f3:92:
03:e8:e7:5e:bf:4e:db:93:aa:72:47:8d:e8:a8:ed:96:ea:d6:
45:3f:c1:3b:6d:42:a2:bb:88:bf:fc:59:ba:59:e1:14:10:1d:
5e:91:1a:0f:35:10:8a:06:b4:0c:96:c4:94:95:5e:35:78:55:
f7:c3:9a:20:c3:74:83:0c:0e:ee:81:36:73:f0:5f:4b:55:0f:
fe:18:49:1c:46:f0:1b:5f:7a:68:66:ec:48:ba:38:fd:91:60:
04:44:13:4b:5e:fd:bb:3b:19:04:87:ca:e0:93:98:fd:24:2a:
11:75:07:0e:83:8e:41:59:9b:3f:67:a6:bd:2b:74:33:f3:a8:
3b:ef:f7:a1:9f:f5:90:a2:d6:0e:9d:ef:94:3f:06:8d:1a:97:
cb:71:9f:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:12:43 2025 by rpki-client