Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
File: h7-ak2z5rSjsWNt5imD9cd9sN_M.mft (raw, json)
Hash identifier: fsgBRQinl2rIZXttpY913Gf7999LZ+q/P7lF+JmZvtw=
Subject key identifier: 2F:3D:41:58:DD:2B:0E:68:F0:EC:FA:95:97:37:8F:53:28:8D:32:DA
Authority key identifier: 87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
Certificate issuer: /CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Certificate serial: 0198D4727FE838CCDFC458B6B98ABDBC2A06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
Manifest number: 0F0A
Signing time: Sat 23 Aug 2025 01:02:10 +0000
Manifest this update: Sat 23 Aug 2025 01:02:10 +0000
Manifest next update: Sun 24 Aug 2025 01:02:10 +0000
Files and hashes: 1: h7-ak2z5rSjsWNt5imD9cd9sN_M.crl (hash: vqA7mmujA8df+rp9QB/n2Lsria1EcHKFDYxlt09gLB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:7f:e8:38:cc:df:c4:58:b6:b9:8a:bd:bc:2a:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Validity
Not Before: Aug 23 01:02:10 2025 GMT
Not After : Aug 24 01:02:10 2025 GMT
Subject: CN=2f3d4158dd2b0e68f0ecfa9597378f53288d32da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9e:77:77:48:10:99:94:43:dd:1f:5e:0e:20:
1b:3f:60:94:a8:0b:e6:8e:6b:e4:f3:e8:59:3e:68:
a9:5d:cd:5b:4f:ef:1b:84:7e:b6:66:9a:34:70:3b:
f8:56:75:2d:77:52:4a:a0:b8:21:b3:15:7f:64:e8:
f7:f1:43:5e:37:bd:cb:aa:6b:12:14:c6:0d:4f:72:
01:6c:f6:bb:ca:28:7a:c3:08:a1:dc:fe:d6:54:93:
3f:f3:60:c8:73:11:a3:e7:5f:9d:42:18:1a:ed:9c:
b7:65:7f:14:91:1b:21:fb:7e:eb:de:57:4b:02:79:
b2:f0:12:0e:fb:02:39:e0:1c:66:fc:ff:5d:cf:83:
43:82:10:29:ae:59:5e:df:b8:ed:81:39:f8:af:3c:
08:1b:1e:dd:74:9f:2d:34:d8:2d:22:80:04:0e:97:
83:1d:ba:94:1e:51:97:1f:9f:14:8e:38:a2:c1:9f:
64:00:a6:7b:f4:94:c6:b2:e6:c3:4d:a5:af:46:fc:
af:4a:de:dc:4d:1e:87:a0:b0:b8:4d:6d:65:73:4d:
9d:b4:21:ba:65:f2:17:75:d5:b2:7b:e3:4d:ce:10:
e7:5f:c2:3f:1e:f6:bb:9b:c6:70:b8:79:6b:e4:99:
27:40:01:e4:7c:c6:86:ff:7c:92:ae:ba:24:f9:0a:
b0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:3D:41:58:DD:2B:0E:68:F0:EC:FA:95:97:37:8F:53:28:8D:32:DA
X509v3 Authority Key Identifier:
keyid:87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:51:86:72:77:68:14:12:24:71:97:17:b0:1e:df:b4:ce:92:
bc:0e:fe:ba:71:8f:a8:df:0e:01:4d:5e:fc:e1:a7:9e:8d:0d:
5e:39:9b:d2:3c:b4:00:94:56:85:06:86:2b:84:d5:b3:f8:fd:
50:4c:f9:1e:4f:7d:54:b2:74:ef:02:d3:70:fd:da:79:73:1a:
2c:c2:40:f0:fa:d7:1d:a1:fd:2e:e1:d8:69:12:46:d3:d1:90:
a6:88:72:5b:5e:ec:9a:00:bf:9e:04:9f:f2:e6:14:2b:75:c9:
85:3d:09:57:73:c4:89:28:76:0b:04:00:63:03:95:84:02:dc:
6a:0b:05:e2:c6:52:26:aa:07:b9:e1:ca:be:0f:23:77:59:d9:
da:45:29:d3:67:84:0c:62:ea:3d:e4:f5:3e:50:18:96:7d:03:
55:ac:3c:17:bd:75:0a:ae:10:f1:ce:1a:ba:f9:ff:4e:51:e7:
2a:e8:df:6c:0e:de:f9:f4:1b:2e:37:1f:21:9f:22:b4:b5:d5:
7f:90:27:41:79:1c:5d:54:d6:12:01:3b:ae:d2:c2:12:13:d8:
d3:92:06:95:2c:f9:da:67:83:6a:f4:99:d9:2e:bb:3a:a4:72:
b7:a4:fd:35:16:1a:18:97:22:d3:7a:38:11:bb:6f:3e:70:87:
35:3c:07:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:42 2025 by rpki-client