Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
File: rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft (raw, json)
Hash identifier: yoJPpw/oI+VvKU2TC7wU0USgDFKF8VPVeLw6cZmTFUo=
Subject key identifier: DB:D0:87:4D:04:FB:DC:02:11:F6:0E:AB:B6:8A:42:8B:EB:6B:23:27
Authority key identifier: AE:1E:F3:D6:26:A7:54:E4:3D:07:C7:00:D0:51:3C:11:4B:66:0E:F5
Certificate issuer: /CN=ae1ef3d626a754e43d07c700d0513c114b660ef5
Certificate serial: 0197C23853EF771162051D48D0B972CF2B98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
Manifest number: 15BA
Signing time: Mon 30 Jun 2025 19:02:40 +0000
Manifest this update: Mon 30 Jun 2025 19:02:40 +0000
Manifest next update: Tue 01 Jul 2025 19:02:40 +0000
Files and hashes: 1: 4Z6xjw98hxZ8bvYUhmvQisZFvOM.roa (hash: j5d+sT1h6lzMh+Fw7CHOI9NqQUP8la0OU484/Ch6a44=)
2: rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl (hash: +PSk8gn6/gxeVHZ5wcy5XTQinLfEmbEXKjxcgN/ZJIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 15:11:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c2:38:53:ef:77:11:62:05:1d:48:d0:b9:72:cf:2b:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae1ef3d626a754e43d07c700d0513c114b660ef5
Validity
Not Before: Jun 30 19:02:40 2025 GMT
Not After : Jul 1 19:02:40 2025 GMT
Subject: CN=dbd0874d04fbdc0211f60eabb68a428beb6b2327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7b:77:49:62:d4:87:be:91:5a:76:59:43:cc:
de:78:6f:a3:dd:03:e7:c6:2d:8d:25:1f:ea:bd:71:
b7:fd:77:30:8a:03:c9:44:7f:61:97:2d:d5:02:93:
69:71:75:2e:35:63:aa:1b:7c:27:41:54:17:d0:60:
a4:d1:9b:bd:b3:4a:4e:cd:33:0f:2d:38:3a:a4:ab:
d8:e0:98:3b:94:91:99:11:0e:dd:e4:4e:5e:b4:a4:
40:3f:86:a9:70:39:25:e7:e1:03:aa:80:fe:05:8d:
f6:16:11:4a:a9:14:ed:83:2f:b9:57:3e:7d:be:c3:
90:32:31:7a:7a:03:12:4b:0e:4f:3a:90:73:cf:03:
aa:e3:2c:8a:13:5a:ec:f5:fa:1f:60:cf:4b:57:37:
9e:50:bc:3f:e1:89:77:6a:75:30:b9:fa:3f:2a:ad:
5d:49:b1:1b:6e:ac:da:5c:4a:b5:cf:d3:6a:77:9d:
1e:74:a9:a7:49:e4:f5:ca:f3:70:27:c0:e2:81:8a:
0b:0f:24:ce:45:05:11:ee:17:82:82:e6:8a:7f:17:
7f:31:eb:cc:21:c9:6b:92:9c:11:43:a6:8a:8c:8c:
22:f8:51:56:0f:71:c5:b2:48:05:a0:f2:63:18:ab:
24:ef:bf:b2:fb:4d:58:d1:86:a4:b3:03:48:97:97:
2a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:D0:87:4D:04:FB:DC:02:11:F6:0E:AB:B6:8A:42:8B:EB:6B:23:27
X509v3 Authority Key Identifier:
keyid:AE:1E:F3:D6:26:A7:54:E4:3D:07:C7:00:D0:51:3C:11:4B:66:0E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:4f:29:79:01:94:6b:0f:a2:9e:5b:4f:13:93:87:b7:de:b6:
d7:77:fc:29:07:8b:5a:ed:ad:1a:ed:cb:d5:40:34:aa:cc:07:
73:25:f2:8b:75:01:05:71:76:ec:43:c4:b2:13:f4:bf:ef:37:
f0:85:15:98:ed:d0:22:eb:07:1b:0a:c0:2e:14:9c:0e:ec:49:
8b:86:3e:5e:38:41:51:b3:d1:1f:35:94:56:fe:74:9c:84:91:
7c:3b:f2:5c:fd:96:17:11:8a:41:a1:0c:77:24:cf:c5:ff:9d:
e6:e9:57:9d:db:81:d1:b6:8a:83:ba:bc:8c:36:81:1e:62:67:
6f:72:dd:b2:5f:a0:24:07:e8:3a:6f:f3:48:f1:9c:07:1c:fa:
cb:8f:e8:84:27:ed:6a:40:ec:b9:92:b8:82:b5:67:7d:d0:40:
b7:a9:e0:7f:45:4a:0b:5e:c5:bd:5f:54:ea:33:51:f8:b2:c0:
75:74:03:98:77:f0:3f:93:35:b8:20:61:d6:90:71:bf:a8:c8:
01:62:0d:27:8b:d1:29:08:ce:a3:4a:c3:a2:fb:a7:bc:b2:1b:
c7:9d:f6:f3:d0:1d:a4:3f:50:3e:c4:b1:4a:83:43:66:d1:0b:
51:68:26:f6:62:65:1b:f0:88:2a:6f:c4:3a:23:d2:40:52:77:
51:60:81:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 00:51:54 2025 by rpki-client