Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
File: h7-ak2z5rSjsWNt5imD9cd9sN_M.mft (raw, json)
Hash identifier: OqSU8qHi9XlIijqj/UC3xNVbdJIdaZCfcGlhLAEeDT4=
Subject key identifier: 78:70:13:F6:79:A5:51:CF:D6:C0:3D:97:42:04:99:F5:00:E8:38:E2
Authority key identifier: 87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
Certificate issuer: /CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Certificate serial: 0197B88ECBB39842D42106790172AD0F54FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
Manifest number: 0E77
Signing time: Sat 28 Jun 2025 22:00:55 +0000
Manifest this update: Sat 28 Jun 2025 22:00:55 +0000
Manifest next update: Sun 29 Jun 2025 22:00:55 +0000
Files and hashes: 1: h7-ak2z5rSjsWNt5imD9cd9sN_M.crl (hash: lbxXpKYPQOkxtPqW9UJGqYFYeEexsI6xPNwJnUpNExY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:cb:b3:98:42:d4:21:06:79:01:72:ad:0f:54:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Validity
Not Before: Jun 28 22:00:55 2025 GMT
Not After : Jun 29 22:00:55 2025 GMT
Subject: CN=787013f679a551cfd6c03d97420499f500e838e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8d:89:e0:eb:ec:59:34:1e:c4:13:62:7a:3e:
44:55:1e:fa:4b:8a:3a:73:e4:da:e9:2f:72:ad:ce:
47:2d:19:e1:04:3e:10:64:e9:91:21:1e:35:3b:89:
32:7c:d2:7f:58:a4:98:86:5d:cb:13:e2:d9:98:08:
a0:d9:b4:3e:fb:ba:0e:6c:27:1b:00:81:35:79:c1:
19:6d:44:51:5d:29:04:9c:d2:09:4a:ff:57:69:47:
4c:d2:12:a2:d9:fb:aa:b9:56:bc:46:2e:df:6c:4f:
c7:86:32:b1:81:e9:62:b1:93:3b:0e:b1:5d:59:3c:
79:e9:4a:10:d0:22:4a:93:0d:5c:2a:16:12:1b:a0:
c4:ee:67:63:3f:47:44:f0:46:81:83:0b:63:66:51:
eb:ea:41:ea:6b:de:89:aa:66:8c:2b:26:4e:10:bf:
91:5b:20:9d:68:4e:96:32:8b:b8:42:15:04:96:87:
de:e2:cc:7c:f0:0c:2a:91:f2:dc:33:e7:fd:c3:76:
83:01:86:83:42:93:b0:c3:99:b6:d0:ab:c9:a4:df:
b2:06:78:ee:e5:4c:d5:90:2a:f0:24:95:73:04:66:
49:f4:cf:7b:f9:ea:b0:fd:e2:2a:a8:bd:d9:d8:85:
50:5f:da:bc:e5:37:b3:15:6e:11:5b:fc:54:5c:5d:
b0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:70:13:F6:79:A5:51:CF:D6:C0:3D:97:42:04:99:F5:00:E8:38:E2
X509v3 Authority Key Identifier:
keyid:87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:05:15:6c:48:bd:de:90:82:dc:86:c0:11:67:f8:23:8f:fc:
b0:36:37:9e:90:84:4c:b9:16:ca:d5:c7:bd:5b:e5:f0:90:9c:
4f:5d:ff:47:f1:b4:5c:89:65:56:13:a6:2e:e6:de:90:cf:4f:
b6:d9:46:36:51:aa:50:9e:bf:4f:d3:7a:89:0c:74:c1:ab:d9:
ed:0f:1b:d3:3b:64:ee:bf:3c:ce:ef:89:bd:eb:74:1f:ae:25:
2b:f5:97:af:1c:bd:7f:75:05:2b:57:e6:e5:e5:6c:b1:79:1b:
05:53:a9:75:e1:b2:bf:0e:1e:ea:e5:f8:9a:60:2b:9f:51:0a:
6d:de:0a:51:18:6e:96:af:87:84:59:e7:3b:c2:43:09:fd:bb:
55:1d:12:03:e0:52:c6:53:3d:73:16:d6:db:c0:ff:fb:17:cc:
33:73:7a:48:50:52:71:05:8f:d2:e3:af:70:50:c4:37:16:c4:
bc:75:b4:74:d0:31:d8:7a:93:8f:0f:59:31:c4:5a:ca:94:55:
13:5e:7c:36:71:1f:25:c6:0b:c1:25:d1:08:d2:24:19:6a:c7:
50:88:e9:17:8c:0f:00:f7:4c:a5:78:3d:0d:08:9f:4c:67:8c:
aa:27:95:27:7e:54:24:b2:0e:03:78:06:6c:ca:86:fd:14:50:
75:94:7a:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 00:50:36 2025 by rpki-client