Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
File: H0MPwJpxOySayqdniRHo0eMjOv0.mft (raw, json)
Hash identifier: LS67LGgWKRIyKniiPj75dK6HKdQTyA6S9/c07lD5qSE=
Subject key identifier: A6:8C:78:D4:29:1F:A4:C5:85:42:3F:EE:64:07:4A:75:7A:EA:5B:92
Authority key identifier: 1F:43:0F:C0:9A:71:3B:24:9A:CA:A7:67:89:11:E8:D1:E3:23:3A:FD
Certificate issuer: /CN=1f430fc09a713b249acaa7678911e8d1e3233afd
Certificate serial: 0197B5FBC5445E727C6C7FE128B31841881A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0MPwJpxOySayqdniRHo0eMjOv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
Manifest number: 13FF
Signing time: Sat 28 Jun 2025 10:01:05 +0000
Manifest this update: Sat 28 Jun 2025 10:01:05 +0000
Manifest next update: Sun 29 Jun 2025 10:01:05 +0000
Files and hashes: 1: H0MPwJpxOySayqdniRHo0eMjOv0.crl (hash: VjSqTq11Fq/ENAFifIqHkH8s3sF03K85We1c+Ro4GHo=)
2: z1mTOG8VE9-v8P-Co5yPmIlf6B0.roa (hash: qAv01E+pevkkYz421oysRUur++ptzgLO7RhPrCkAgu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0MPwJpxOySayqdniRHo0eMjOv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:c5:44:5e:72:7c:6c:7f:e1:28:b3:18:41:88:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f430fc09a713b249acaa7678911e8d1e3233afd
Validity
Not Before: Jun 28 10:01:05 2025 GMT
Not After : Jun 29 10:01:05 2025 GMT
Subject: CN=a68c78d4291fa4c585423fee64074a757aea5b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:41:a4:c3:1f:43:5a:ac:1f:0c:ad:52:30:d9:
94:73:60:48:f4:3a:9b:45:a7:43:4a:01:8e:1a:03:
b3:57:18:c3:79:b6:dd:1c:bd:52:a3:63:cb:cf:55:
be:29:ea:65:1d:9a:d2:49:cf:cc:15:fb:fa:d9:9b:
20:45:e8:03:37:e1:19:d0:ba:0b:36:cb:d8:85:a9:
41:2b:12:93:3c:d0:e9:9a:fd:36:71:a9:84:19:45:
4c:93:c1:ff:1e:e8:3f:df:5e:a9:25:9f:3b:71:12:
4b:af:b4:1b:61:70:ee:02:39:f2:54:57:ad:80:35:
28:fe:ee:05:a5:85:aa:fd:12:8f:35:3a:32:9a:6c:
c4:75:c1:42:54:ca:aa:25:52:c7:14:86:c3:01:c8:
eb:af:19:57:97:31:62:0f:3d:7c:ce:a2:c4:ab:41:
93:c9:8b:db:c3:60:7e:c8:26:ed:b0:9c:71:01:4d:
63:89:ec:c6:24:5c:23:8b:63:d4:53:7a:05:9f:3d:
60:93:ff:0e:66:c1:2f:9d:54:d8:c0:94:e6:47:6d:
9d:5a:0c:d4:08:21:c9:15:98:4b:bb:dd:b1:15:10:
99:09:3b:7d:d1:5e:a8:98:f7:8a:5c:5d:5d:ef:d2:
fc:9f:d6:f9:88:9e:38:a5:43:9a:f4:1a:6c:22:49:
91:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:8C:78:D4:29:1F:A4:C5:85:42:3F:EE:64:07:4A:75:7A:EA:5B:92
X509v3 Authority Key Identifier:
keyid:1F:43:0F:C0:9A:71:3B:24:9A:CA:A7:67:89:11:E8:D1:E3:23:3A:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0MPwJpxOySayqdniRHo0eMjOv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:02:8d:b8:12:1a:ed:ef:18:03:ce:e8:fe:08:11:0c:81:ac:
cd:56:29:53:04:95:c6:83:2b:ec:43:d8:ce:73:cf:0e:0c:4d:
32:aa:60:f9:ee:c6:f0:c6:d4:4b:60:85:37:b0:f9:3a:ff:64:
30:06:31:24:3c:b6:8e:4f:fc:28:85:69:3a:d0:1d:97:8e:0f:
a2:6e:c9:64:00:0a:7f:be:ab:aa:ba:7a:d4:16:1a:7b:16:e8:
36:59:ff:c6:c4:34:09:3a:74:7c:21:a4:d4:01:80:07:2d:bd:
48:60:68:39:a4:35:b0:9b:98:51:17:91:e5:57:f2:1b:63:1a:
56:f7:5a:0f:e9:e0:94:bb:dd:c1:8d:88:53:f3:4c:cf:ce:09:
8c:28:47:71:06:e3:66:89:ba:5d:7a:f8:ed:92:34:51:4f:7a:
08:bd:d6:e1:c7:3f:01:38:a9:15:f1:4c:a6:ce:31:1a:cd:00:
5c:57:1c:d4:e3:ab:88:da:29:be:9b:f6:a8:5d:01:da:67:27:
36:dd:99:a9:c4:2a:34:6b:9d:7c:3f:c9:06:8f:f6:63:d2:80:
89:a1:a1:2a:f5:d9:4b:19:f1:ee:79:bb:d8:b1:6b:e3:27:e4:
4d:f7:8a:e7:f3:39:f2:14:ef:cc:1f:03:ae:24:3a:12:bd:4d:
05:2d:56:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:55:54 2025 by rpki-client