Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
File: h3OqvdPia0S3mDfBRwq44XQV6o4.mft (raw, json)
Hash identifier: RsP7ZaMDrMNWjzb3EoOk9IcCHEASu8ezbfVALhjdSZI=
Subject key identifier: BC:5C:58:06:24:55:F6:D0:7D:A9:28:1D:54:4F:96:20:CC:3D:85:F4
Authority key identifier: 87:73:AA:BD:D3:E2:6B:44:B7:98:37:C1:47:0A:B8:E1:74:15:EA:8E
Certificate issuer: /CN=8773aabdd3e26b44b79837c1470ab8e17415ea8e
Certificate serial: 0197B8FD8C760A676DD502EA745951C121CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
Manifest number: 01A2
Signing time: Sun 29 Jun 2025 00:01:53 +0000
Manifest this update: Sun 29 Jun 2025 00:01:53 +0000
Manifest next update: Mon 30 Jun 2025 00:01:53 +0000
Files and hashes: 1: h3OqvdPia0S3mDfBRwq44XQV6o4.crl (hash: I2GtigMkmLIQiswVHZXk3584yF3IQ+6hLpKWjdZ0Z8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:8c:76:0a:67:6d:d5:02:ea:74:59:51:c1:21:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8773aabdd3e26b44b79837c1470ab8e17415ea8e
Validity
Not Before: Jun 29 00:01:53 2025 GMT
Not After : Jun 30 00:01:53 2025 GMT
Subject: CN=bc5c58062455f6d07da9281d544f9620cc3d85f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b9:7c:be:e0:3a:d2:80:87:5a:36:ee:80:de:
23:68:a5:68:ac:f1:14:c0:1f:20:82:49:4f:20:0d:
2a:39:41:1e:95:c3:7b:b6:82:8f:f5:fe:21:4f:db:
ab:2d:a9:e8:37:12:52:a2:51:78:75:81:bc:7f:4e:
1e:82:b2:18:0f:d7:00:d8:80:48:ab:55:50:84:e2:
89:ed:a5:5f:32:00:da:ad:1a:30:94:ce:31:9a:3a:
85:16:ca:09:11:2c:9c:e0:38:4d:e2:c5:7e:0f:80:
35:e9:c6:85:e2:c1:e8:73:b7:49:9f:4e:c5:9a:24:
61:4d:ad:f2:26:b0:a2:3f:46:d1:ee:4f:4e:58:25:
f2:bd:31:ec:64:a9:d2:e3:af:0f:86:f0:e2:b5:14:
d2:09:b7:d6:36:65:69:34:27:09:00:ce:2f:c8:1a:
75:28:4a:21:cf:74:99:2a:a9:d8:93:99:59:5d:ce:
e6:40:06:98:1f:bf:89:01:49:2d:46:b4:ce:b1:f0:
9c:ca:1b:be:11:18:ce:f6:57:ed:0d:17:6a:74:be:
56:a2:07:95:a7:9c:b7:60:3f:3e:a6:6d:46:5d:25:
f2:eb:6e:6e:5d:82:1e:61:c1:44:d4:bf:bd:42:aa:
d3:a2:c0:a1:b7:85:e5:c3:b1:2e:53:41:45:3c:2d:
df:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:5C:58:06:24:55:F6:D0:7D:A9:28:1D:54:4F:96:20:CC:3D:85:F4
X509v3 Authority Key Identifier:
keyid:87:73:AA:BD:D3:E2:6B:44:B7:98:37:C1:47:0A:B8:E1:74:15:EA:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:86:81:4a:87:aa:8b:af:53:65:c0:c3:d1:6e:0b:4f:c1:15:
25:4c:97:64:f0:4c:4e:00:cf:9f:03:44:7e:3b:d3:18:94:a2:
8d:85:5c:4a:49:ce:e5:a5:4f:83:1c:01:95:0b:ed:62:55:e5:
24:63:ff:a5:ad:28:c3:53:a4:02:1a:62:ff:f2:03:28:67:9d:
0c:19:f2:7f:27:24:a2:fc:7f:3d:c1:af:b1:87:2b:65:44:8a:
62:06:f1:a9:f5:f6:66:92:9a:03:9f:9b:f5:22:92:ad:4e:82:
1e:ad:57:3c:73:b9:de:fd:cf:09:7e:dd:97:3d:a8:a7:f9:8e:
0f:04:37:8c:8d:25:de:b4:54:6d:e6:03:d5:2a:25:18:e9:48:
96:85:bb:25:11:d6:b9:51:6e:75:e1:d0:8a:06:b7:ab:be:80:
6a:3f:57:3a:55:6e:c4:ba:27:b7:3b:f9:c8:41:96:b7:45:ea:
5c:5c:40:67:03:ae:27:51:aa:af:a3:32:ab:ea:df:8e:77:cb:
d8:06:a3:0d:4f:cf:de:a3:1a:e2:80:91:88:00:81:72:e5:cf:
40:b5:57:73:20:e2:e4:8e:bc:49:11:b4:12:48:3e:78:18:01:
2e:d5:a0:c5:0f:b0:f6:f5:fe:a1:81:7b:f9:56:b2:cd:14:55:
d0:92:2e:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:32:07 2025 by rpki-client