Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: BgmO1BrWFFxsy7jrE55qDPUQIzJpUtY1XHeJmavrGIo=
Subject key identifier: BC:26:F0:66:F9:56:9B:B6:A0:7E:CF:17:E5:BA:BC:66:AB:A5:2B:01
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 0197BA0F327672828D8ED339C7E05724798C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 024F
Signing time: Sun 29 Jun 2025 05:00:47 +0000
Manifest this update: Sun 29 Jun 2025 05:00:47 +0000
Manifest next update: Mon 30 Jun 2025 05:00:47 +0000
Files and hashes: 1: c4kqcT1XSHJJ0FNREY_3KgQV5Zg.roa (hash: BFqJRUOC40P0vfCEnDcc5S1ZBpr8qXlnCPbjKvFWFf8=)
2: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: YexPqDcB/eqic7gNU42v/mUPwechFa1hppbEF4jh1p4=)
3: rHbDbOyUaIh8TDURqX1ieGWXWQY.roa (hash: GnpW8sbC72mBlbxSlssELbw/VvK2heRrWW+jN0rRSQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:0f:32:76:72:82:8d:8e:d3:39:c7:e0:57:24:79:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: Jun 29 05:00:47 2025 GMT
Not After : Jun 30 05:00:47 2025 GMT
Subject: CN=bc26f066f9569bb6a07ecf17e5babc66aba52b01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cc:e2:c4:12:06:31:7c:89:ed:d8:79:48:2f:
bd:ce:30:97:6c:25:57:98:ad:cd:32:8f:71:a6:ef:
92:8b:eb:23:fd:5a:7a:d3:61:94:79:c8:21:e2:2f:
e0:c0:32:96:05:be:f1:fa:f8:10:3b:55:12:dc:d6:
02:03:47:c8:a4:18:ca:25:18:14:d2:6a:c8:bd:a2:
f7:30:bf:25:02:ea:27:ce:86:13:f7:a5:02:1b:2b:
c7:1e:0f:f3:5c:c4:bd:5c:ad:0c:13:a9:ce:0b:a0:
ff:f9:57:c4:b5:7a:57:f3:62:74:de:46:41:f4:f3:
14:17:0f:45:41:86:b8:15:f3:d4:6b:44:1e:f5:4d:
84:84:73:13:a9:20:84:8b:a2:36:e1:42:df:ca:2a:
c9:4f:7c:06:15:a4:1f:61:2d:73:47:29:61:0c:16:
e1:a7:43:53:95:22:b5:4d:ca:86:c6:4b:02:cb:23:
05:b5:5a:eb:c0:7f:4c:e7:84:aa:41:4a:ba:06:d4:
5e:a5:84:a3:30:79:23:62:b8:89:cc:0a:ef:13:62:
78:f5:41:c1:4f:af:51:66:50:45:b1:20:06:7d:43:
3d:5c:fc:31:8b:ac:0c:37:7a:01:0b:1b:22:03:fb:
98:42:53:4d:f1:14:ed:9d:b9:c9:11:5a:13:dc:69:
f1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:26:F0:66:F9:56:9B:B6:A0:7E:CF:17:E5:BA:BC:66:AB:A5:2B:01
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:b4:fd:f9:bc:90:0c:25:4b:c9:2c:00:76:91:fa:8f:b2:42:
99:98:ee:58:22:ab:5a:b9:e4:20:75:09:5c:e0:ee:23:fa:4a:
f0:64:18:9d:ba:c8:eb:9d:8d:21:74:f1:f8:29:06:b6:52:ba:
d4:14:7e:96:31:c4:de:bf:99:4e:a4:d9:58:2a:60:02:52:d9:
7e:c2:d4:2c:b1:c1:85:06:55:d1:a1:0f:25:4d:61:2b:45:f8:
d0:35:bb:e8:ac:e9:ec:06:65:f0:1e:72:97:20:b0:0d:db:1d:
20:41:23:79:0e:1e:a7:cc:1a:8d:31:d2:46:5c:55:cb:ac:8c:
18:4f:05:bc:b5:a1:7a:75:8f:65:16:80:7d:c2:c4:5c:56:30:
b7:53:d5:9b:23:f8:62:df:33:ee:e4:71:73:f3:cc:70:41:8d:
9f:61:76:fe:9b:9a:cc:9b:8a:8b:65:f1:26:64:31:c1:03:3f:
5d:c2:3b:70:54:b0:11:86:d9:a4:c1:33:89:43:91:cb:ee:9d:
01:f1:1e:e1:3d:2b:06:90:b4:65:fe:96:bc:83:d6:76:69:93:
bd:ff:ad:12:bb:3b:0e:bb:bc:f3:87:3d:f4:30:9f:be:78:81:
2a:df:ae:e1:e9:cc:5d:68:b7:2e:71:88:7a:1d:cb:79:83:93:
b3:20:d4:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:07:24 2025 by rpki-client