Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
File: sH-v24bTjze_DCbT8nMf3vaxTko.mft (raw, json)
Hash identifier: ooP9jLV4bKQPKuXMxJxyk+6QRZTTkOeCeGGIsFV7ZlY=
Subject key identifier: 66:B8:1E:A2:4A:26:67:22:D2:91:84:9D:35:8B:DF:23:32:5A:B2:E1
Authority key identifier: B0:7F:AF:DB:86:D3:8F:37:BF:0C:26:D3:F2:73:1F:DE:F6:B1:4E:4A
Certificate issuer: /CN=b07fafdb86d38f37bf0c26d3f2731fdef6b14e4a
Certificate serial: 0197B7453EE07D140A2CF46146804406F4C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
Manifest number: 0712
Signing time: Sat 28 Jun 2025 16:00:57 +0000
Manifest this update: Sat 28 Jun 2025 16:00:57 +0000
Manifest next update: Sun 29 Jun 2025 16:00:57 +0000
Files and hashes: 1: 6JrlKE6-D36PVGMwp7ew7z1aOA4.roa (hash: T1fYyT20nJ5YneHKV99StH98ng47eu4G5rhmxnPt+y8=)
2: sH-v24bTjze_DCbT8nMf3vaxTko.crl (hash: n1xi8yUOHPUR6h+/qQZmGQgfV+Hrm6B8iee/kUnbTTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:3e:e0:7d:14:0a:2c:f4:61:46:80:44:06:f4:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b07fafdb86d38f37bf0c26d3f2731fdef6b14e4a
Validity
Not Before: Jun 28 16:00:57 2025 GMT
Not After : Jun 29 16:00:57 2025 GMT
Subject: CN=66b81ea24a266722d291849d358bdf23325ab2e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:30:11:c4:a3:21:eb:16:1e:54:ea:12:01:ee:
71:0b:06:fb:ba:ab:82:0c:1b:a5:84:d3:c1:23:25:
8e:a9:c9:dc:5a:af:4c:8c:be:80:c3:9f:b2:89:b2:
26:dc:e1:f7:1f:47:44:bf:85:ce:89:a4:14:52:50:
86:f4:8e:b8:ed:35:22:97:4f:31:bb:1f:a5:64:93:
98:c0:f7:62:4e:a7:52:fe:90:60:08:81:20:c9:94:
6a:e7:8d:04:40:46:ac:de:94:c9:fe:4d:11:9d:10:
6b:03:40:2f:b4:05:64:c3:98:4e:aa:d1:f0:60:64:
23:28:31:51:79:5b:e4:f2:fe:7d:3c:9e:d8:4a:46:
89:55:80:56:88:fd:3b:7e:a5:6d:60:47:c9:6f:4a:
00:05:b1:79:15:22:da:c7:b3:c2:17:ae:09:4b:f0:
b4:21:ce:12:72:48:89:02:5f:8b:00:8b:cc:49:ad:
65:00:c4:cb:eb:e3:4d:7e:0d:72:2b:ec:d7:b6:05:
28:e7:ae:4d:1a:eb:0e:24:6d:95:7b:02:0d:09:f1:
48:85:b3:38:e8:f3:61:d4:06:83:6d:fd:1b:74:d9:
25:dd:97:a3:87:1a:27:7b:40:fe:ae:df:88:d7:1b:
45:85:a7:f9:0f:bb:a8:eb:b6:7f:0f:ae:0b:69:a0:
43:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B8:1E:A2:4A:26:67:22:D2:91:84:9D:35:8B:DF:23:32:5A:B2:E1
X509v3 Authority Key Identifier:
keyid:B0:7F:AF:DB:86:D3:8F:37:BF:0C:26:D3:F2:73:1F:DE:F6:B1:4E:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:7b:fa:45:0e:67:50:51:75:1a:21:bb:05:2f:e1:b0:0f:e8:
fc:8d:2a:7a:db:60:26:72:e1:2c:11:01:b5:8a:b8:62:b6:a1:
6e:9a:1b:5e:ee:72:7f:53:98:4c:bc:92:81:b5:16:a5:24:b4:
24:15:e7:77:67:3b:e0:13:71:bf:83:f0:1c:07:68:0e:6b:c5:
6d:66:5e:56:d4:35:da:c5:41:8d:43:c9:2d:5e:8b:18:b8:c9:
68:66:c0:e8:3f:cd:d2:b1:d1:82:ab:12:d0:a9:a8:05:2a:15:
26:59:e8:cd:88:ef:93:6d:39:85:f6:ac:f6:94:9e:89:8c:1c:
2b:c3:b3:9c:0f:00:ed:b8:09:10:67:bf:84:52:cc:1d:6b:92:
27:0b:ee:22:83:45:ce:ae:ec:d5:b3:e4:e8:10:0f:55:f0:2d:
36:a5:17:0c:b6:da:87:15:c3:2e:95:5f:ef:3b:a0:be:70:96:
75:54:0a:93:d0:38:78:64:e2:8c:3d:e6:2d:4d:9e:65:b2:bb:
98:60:f3:91:70:2f:30:9c:bf:bc:e4:4a:59:36:e4:9d:35:3d:
92:87:b1:28:6c:35:63:60:37:ac:75:f3:cc:13:d1:b0:00:e5:
12:c9:d6:38:a3:16:df:67:ad:30:8f:11:c1:3f:b8:c7:26:8d:
35:c3:75:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:41:33 2025 by rpki-client