Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: ukLBRGNpIF4VDzrBU6f+007bkjSA1gTOnJ8rHMnw/Ls=
Subject key identifier: 85:BD:34:58:6F:67:34:87:13:B4:5A:70:1D:FC:DD:71:22:63:7F:34
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 0197C6EFAAC157E45F9223CBC5AAAFF1C47C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 0A71
Signing time: Tue 01 Jul 2025 17:01:24 +0000
Manifest this update: Tue 01 Jul 2025 17:01:24 +0000
Manifest next update: Wed 02 Jul 2025 17:01:24 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: qU2piNcrSTl9+lqKeYE4OA+B3/v5FTQMASiyKsr5wRo=)
2: k9VkkHu7wqpz0IelVxE8bU-qY6o.roa (hash: vCMb7FvkUh1quiKigDU5pU3f6Rl+/OZ8cn/L/kTas88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:ef:aa:c1:57:e4:5f:92:23:cb:c5:aa:af:f1:c4:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: Jul 1 17:01:24 2025 GMT
Not After : Jul 2 17:01:24 2025 GMT
Subject: CN=85bd34586f67348713b45a701dfcdd7122637f34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:e6:02:c9:a7:c4:00:1f:ad:ff:e7:6e:42:83:
95:b3:0a:87:1e:93:c5:c5:04:e1:aa:63:40:8b:bf:
1c:8b:df:bb:ca:d5:b2:ac:aa:97:53:07:43:ba:47:
67:b2:31:21:57:29:c7:05:91:cc:00:72:2e:d5:0b:
26:c8:60:5c:5f:96:34:90:fb:94:7e:25:8b:2b:cc:
b1:95:69:d3:ae:0f:ef:71:0c:6e:b7:07:11:67:3a:
d6:59:6b:94:20:a4:b7:b4:91:b8:4e:7d:e6:6a:41:
62:97:ac:e8:8a:90:69:ed:d8:b6:90:9c:8f:dc:b8:
11:9c:3c:fe:c9:70:f7:ab:29:14:53:cd:bb:89:c0:
1b:9d:e2:2b:dc:8d:6e:e8:79:ea:cf:28:eb:43:38:
c9:ef:ec:34:e9:c6:7a:38:70:fa:3e:43:91:9c:95:
fc:1d:6f:04:b4:e6:38:60:b6:8b:6b:c3:d1:1f:50:
d8:42:44:38:8c:f4:a9:3a:2a:ec:57:2b:49:e2:45:
a1:3d:74:50:ce:a9:b3:37:64:fb:e3:c3:b0:4d:eb:
16:b0:c0:0d:14:f1:2e:53:e3:04:6c:39:ba:59:69:
1a:3c:58:12:ef:fb:ab:2a:03:a3:dd:a1:1a:52:32:
1c:7b:41:44:e0:86:36:8b:5a:43:0c:80:aa:5d:22:
71:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BD:34:58:6F:67:34:87:13:B4:5A:70:1D:FC:DD:71:22:63:7F:34
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:79:ea:de:a6:96:54:da:23:18:21:0c:11:e2:b5:54:55:95:
01:6f:95:7b:cb:f3:68:3e:f6:00:5e:f8:f8:78:3c:f5:9e:3f:
12:14:df:88:bf:67:e5:a0:cb:50:25:44:b5:80:49:c5:0b:2f:
6b:79:7d:f7:58:fc:9b:fd:56:6b:43:0e:cf:15:d7:62:0e:37:
99:1e:d0:b0:a0:cc:cf:23:ea:fa:5a:85:ec:23:03:e2:fa:49:
f3:0f:85:c9:dd:c3:29:0c:c2:07:09:1d:1b:7e:2b:a8:27:7f:
85:19:2a:aa:f9:bb:e2:25:e1:7d:90:fe:ae:44:ca:9f:62:0d:
f9:e4:e7:7b:1e:05:de:ca:95:21:06:23:00:a0:fa:84:f3:e0:
4f:c4:64:b8:fc:58:2a:94:0b:4a:2c:f4:99:7b:66:d8:be:00:
d3:93:6f:a4:a8:00:f7:63:0b:ff:44:6f:1a:87:63:e0:3d:87:
8b:77:41:97:6c:8d:1f:7b:23:45:58:c1:75:ec:1c:98:28:ef:
53:9a:2d:a1:62:d7:a7:fc:87:7b:ed:0d:8f:b6:8c:2c:bf:e2:
21:f7:4b:d9:c3:6e:0e:9e:2d:4b:2a:c9:17:6f:88:d5:01:ec:
9d:fc:91:a2:27:bb:06:89:80:cf:55:4f:ff:e4:18:29:3c:2b:
41:a7:60:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 22:00:03 2025 by rpki-client