Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
File: h9OLoS9GKcITH8YOiVDWwwO-fSI.mft (raw, json)
Hash identifier: 2X0Ia2BNtezM1qXNdoyAE009hc7nGoeKjnO9bZZthJ0=
Subject key identifier: D8:19:CF:B5:98:7D:65:1E:A4:4E:A7:F8:82:3C:F6:A8:27:1C:03:A7
Authority key identifier: 87:D3:8B:A1:2F:46:29:C2:13:1F:C6:0E:89:50:D6:C3:03:BE:7D:22
Certificate issuer: /CN=87d38ba12f4629c2131fc60e8950d6c303be7d22
Certificate serial: 0197B8C60163594FB531EDF54E2B2E1AD396
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
Manifest number: 0718
Signing time: Sat 28 Jun 2025 23:01:13 +0000
Manifest this update: Sat 28 Jun 2025 23:01:13 +0000
Manifest next update: Sun 29 Jun 2025 23:01:13 +0000
Files and hashes: 1: NPXq7VLWTvwMe_H1BOcCF7vP8QQ.roa (hash: UBan9KbEcKtiRn9epXoesYMRtYi5lW0QY6/c4yNUKv8=)
2: h9OLoS9GKcITH8YOiVDWwwO-fSI.crl (hash: mtorrCWoK7Eub8QkoB472s7VmSXxL0jtJ5XmheF9lmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 23:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:c6:01:63:59:4f:b5:31:ed:f5:4e:2b:2e:1a:d3:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d38ba12f4629c2131fc60e8950d6c303be7d22
Validity
Not Before: Jun 28 23:01:13 2025 GMT
Not After : Jun 29 23:01:13 2025 GMT
Subject: CN=d819cfb5987d651ea44ea7f8823cf6a8271c03a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b4:19:72:9c:26:23:a7:a0:89:f0:54:84:55:
d5:6d:4d:98:06:90:cc:82:b3:f8:ff:90:7c:de:ce:
b0:dd:e3:6a:b7:f7:5f:a8:b2:be:02:98:e0:bf:65:
54:8d:36:3f:c5:18:19:79:ef:58:1c:6f:0a:cc:0f:
f5:91:12:0c:a8:92:37:0a:fd:5d:a4:1e:b3:e0:98:
7d:a7:24:e6:c3:df:62:e3:df:cb:72:78:94:ab:d5:
9c:63:0b:d8:f0:b7:34:34:00:0a:01:31:2a:69:83:
ab:ad:8e:6c:4c:ac:45:59:b8:2d:76:cf:c4:16:06:
ee:b2:10:5a:aa:dc:fa:03:8a:d5:58:81:34:a9:05:
eb:8f:b5:bd:e0:ae:8e:2a:cb:0c:86:a3:ce:2f:b9:
8b:a5:2d:55:c2:da:7b:a1:3b:26:69:6a:a7:7d:44:
a7:33:a9:17:ae:89:88:bd:09:0b:9b:d7:ca:98:40:
97:62:64:26:5b:b1:75:64:fe:7c:bc:18:28:2b:7d:
3e:68:a2:a4:a3:c8:78:bf:a9:ce:9d:f2:ba:a5:52:
e3:55:11:05:8e:f4:f3:e6:5d:57:13:38:d1:98:51:
10:10:c1:f1:c0:e3:b8:87:5e:19:e4:aa:20:f6:fb:
27:70:7f:0d:52:c9:4b:2c:f1:f6:f9:8d:b0:be:9b:
3c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:19:CF:B5:98:7D:65:1E:A4:4E:A7:F8:82:3C:F6:A8:27:1C:03:A7
X509v3 Authority Key Identifier:
keyid:87:D3:8B:A1:2F:46:29:C2:13:1F:C6:0E:89:50:D6:C3:03:BE:7D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:e5:c8:5f:c4:bf:c3:70:dd:7d:95:4c:16:76:39:e7:fe:a8:
2e:73:12:1e:9a:ac:a1:9b:80:7e:a9:19:04:b9:32:d0:eb:47:
9c:a9:69:fe:d9:62:75:64:0f:c3:b0:08:fd:0f:33:44:f0:32:
c9:05:d3:c9:3f:68:97:04:f3:ed:e1:f8:01:84:45:7b:01:9f:
7f:81:85:b3:e8:e6:ac:98:42:d1:ab:e8:3a:1c:5e:8a:7c:9b:
81:f6:ea:bf:bb:7d:37:82:06:79:87:40:90:1d:7f:b8:d5:1a:
6c:50:24:5f:19:74:02:ff:7c:5e:f9:03:af:ba:a1:4d:0c:14:
ba:9f:a7:8a:c9:c8:5f:b2:b8:68:c7:17:88:cf:4e:bb:dd:38:
70:c0:91:92:c7:eb:77:54:2b:27:88:b8:b0:5a:61:db:b0:1b:
96:a4:a5:94:a4:66:64:e3:7b:f0:4e:cd:e6:97:55:a4:4a:3a:
19:19:b3:06:ba:b9:cf:36:25:c1:69:cb:3d:a5:4a:ca:88:04:
76:6a:04:8c:5b:a1:6d:71:97:60:2b:e8:ce:4d:39:27:05:e5:
76:24:5f:0c:62:e9:8d:16:e9:90:b7:cb:b2:ca:11:61:89:f8:
b8:3c:81:d0:5a:44:ad:63:98:e9:d1:19:f6:0c:76:41:ea:dd:
3c:c8:db:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:04:45 2025 by rpki-client