Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
File: h1bSd2jhHZSgu837P7zXQNRaAPQ.mft (raw, json)
Hash identifier: 1wR0jRa2MmPYlvvVfG9t/Km7m++5AvP/x+z3Ha5WGiM=
Subject key identifier: EB:66:5F:2F:13:83:45:6F:E0:0A:3F:E5:D0:B6:46:6D:4D:4D:A2:50
Authority key identifier: 87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
Certificate issuer: /CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Certificate serial: 0197B6A206A73EFC9895350C47DE919AD8C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
Manifest number: 1097
Signing time: Sat 28 Jun 2025 13:02:41 +0000
Manifest this update: Sat 28 Jun 2025 13:02:41 +0000
Manifest next update: Sun 29 Jun 2025 13:02:41 +0000
Files and hashes: 1: b2XsYiMu1xHQndcNQ0ucXkzeN7E.roa (hash: uYxfaCmhcw362gqaEMF6PdCZbjIYOfXpyFCpshaBqpM=)
2: h1bSd2jhHZSgu837P7zXQNRaAPQ.crl (hash: ItEIWDu5y8FAS5oX6Nt66gGZwTPib18IRp4u9TSk4Uc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:06:a7:3e:fc:98:95:35:0c:47:de:91:9a:d8:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Validity
Not Before: Jun 28 13:02:41 2025 GMT
Not After : Jun 29 13:02:41 2025 GMT
Subject: CN=eb665f2f1383456fe00a3fe5d0b6466d4d4da250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:37:fb:be:49:23:76:07:20:b0:ae:62:7c:46:
2b:04:2d:ad:3f:da:c4:95:31:fb:ea:c6:3b:a4:f5:
8a:88:fa:65:49:f3:e5:19:77:00:d3:2a:44:ee:35:
fa:90:52:de:ae:b8:38:42:f0:f1:53:c1:e5:53:7e:
a0:34:e1:31:e1:24:b4:32:4d:34:61:dd:28:c2:b1:
bb:8e:a7:00:b7:f5:e5:5b:b9:bc:e3:11:2a:0d:60:
5a:ee:a3:f0:2f:46:7a:3d:af:af:0b:9e:9b:33:39:
95:31:b2:d4:f1:fc:4c:37:77:e5:b8:b0:e6:4b:72:
8c:53:22:64:01:a7:51:ed:a8:59:b2:29:7c:78:4c:
ef:cd:75:15:79:8b:cc:5b:d2:25:a9:9b:bd:fd:0a:
f1:ff:84:6b:ff:14:4b:c0:88:01:37:fc:45:16:77:
5e:f0:4b:d0:aa:72:61:6a:52:91:a7:a0:b2:9d:5d:
9d:1f:b5:9b:85:56:04:15:f2:16:75:4e:dc:1a:ff:
e4:c9:13:a7:c8:e1:ae:69:9b:50:6d:5c:bc:92:aa:
10:c3:62:c8:3c:b6:d0:ae:68:b2:43:4d:a2:ca:a5:
69:6d:56:23:cc:c9:a6:de:82:d2:bb:0d:27:16:03:
46:f9:d0:42:55:b7:48:d7:19:24:b8:2a:7b:e9:fe:
a9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:66:5F:2F:13:83:45:6F:E0:0A:3F:E5:D0:B6:46:6D:4D:4D:A2:50
X509v3 Authority Key Identifier:
keyid:87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:c2:fa:0c:5e:5c:56:da:91:11:28:a2:06:39:38:da:31:d7:
2d:79:43:24:51:66:26:4c:88:9e:5f:7b:9d:7b:da:fc:1a:29:
3a:ab:9c:05:11:70:5a:ab:ae:f9:71:20:4c:6d:65:5c:de:16:
17:71:5a:c0:17:58:10:2f:e2:ec:1c:a2:f1:72:49:66:73:ba:
cb:3d:db:1f:2d:c5:73:22:04:d5:9a:91:2c:af:f7:b2:a8:27:
2a:2b:5d:c2:50:58:6d:b0:ae:de:3d:9e:3d:51:87:91:c9:33:
4f:91:89:60:c5:29:65:ec:9a:db:f1:1d:f7:6d:99:4c:e3:17:
bf:56:3c:e6:4b:9a:c0:5c:a0:f6:78:61:38:1a:d5:e7:06:2f:
f6:e3:6d:dd:7d:25:6b:0d:54:cc:0d:79:f3:5c:3a:c6:31:d8:
cc:00:90:96:65:c5:bc:bd:69:93:49:dd:a4:af:b5:96:28:21:
fb:02:0f:52:81:3f:98:bb:d8:71:db:65:d0:00:17:5d:44:f6:
1f:82:43:8a:ad:f0:a1:88:8d:e4:fa:41:ee:9d:ec:cb:8e:49:
1a:9f:fb:f4:8d:38:e2:4b:a9:80:9d:b3:45:19:88:1a:0e:5a:
03:1e:84:cc:70:39:cf:14:2c:ac:fe:be:3c:02:09:c0:ac:e5:
01:b1:af:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oganPvyYlTUMR96RmtjHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NTZkMjc3NjhlMTFkOTRhMGJiY2RmYjNmYmNkNzQwZDQ1
YTAwZjQwHhcNMjUwNjI4MTMwMjQxWhcNMjUwNjI5MTMwMjQxWjAzMTEwLwYDVQQD
EyhlYjY2NWYyZjEzODM0NTZmZTAwYTNmZTVkMGI2NDY2ZDRkNGRhMjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jf7vkkjdgcgsK5ifEYrBC2tP9rE
lTH76sY7pPWKiPplSfPlGXcA0ypE7jX6kFLerrg4QvDxU8HlU36gNOEx4SS0Mk00
Yd0owrG7jqcAt/XlW7m84xEqDWBa7qPwL0Z6Pa+vC56bMzmVMbLU8fxMN3fluLDm
S3KMUyJkAadR7ahZsil8eEzvzXUVeYvMW9IlqZu9/Qrx/4Rr/xRLwIgBN/xFFnde
8EvQqnJhalKRp6CynV2dH7WbhVYEFfIWdU7cGv/kyROnyOGuaZtQbVy8kqoQw2LI
PLbQrmiyQ02iyqVpbVYjzMmm3oLSuw0nFgNG+dBCVbdI1xkkuCp76f6p3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOtmXy8Tg0Vv4Ao/5dC2Rm1NTaJQMB8GA1UdIwQY
MBaAFIdW0ndo4R2UoLvN+z+810DUWgD0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDFiU2QyamhIWlNndTgzN1A3elhRTlJhQVBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi85NTdiYjMtMmRlNS00NWNmLWFjZjMt
YzNhMDJkN2MwNjk3LzEvaDFiU2QyamhIWlNndTgzN1A3elhRTlJhQVBRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi85NTdiYjMtMmRlNS00NWNmLWFjZjMtYzNhMDJkN2MwNjk3
LzEvaDFiU2QyamhIWlNndTgzN1A3elhRTlJhQVBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQsL6DF5c
VtqRESiiBjk42jHXLXlDJFFmJkyInl97nXva/BopOqucBRFwWquu+XEgTG1lXN4W
F3FawBdYEC/i7Byi8XJJZnO6yz3bHy3FcyIE1ZqRLK/3sqgnKitdwlBYbbCu3j2e
PVGHkckzT5GJYMUpZeya2/Ed922ZTOMXv1Y85kuawFyg9nhhOBrV5wYv9uNt3X0l
aw1UzA1581w6xjHYzACQlmXFvL1pk0ndpK+1ligh+wIPUoE/mLvYcdtl0AAXXUT2
H4JDiq3woYiN5PpB7p3sy45JGp/79I044kupgJ2zRRmIGg5aAx6EzHA5zxQsrP6+
PAIJwKzlAbGvcg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:00:27 2025 by rpki-client