Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.mft
File: H7SyOkTfxa5WnnTPuw8D6Se1YeI.mft (raw, json)
Hash identifier: z/ZQrZ1l8epGr9fohCniogBmJLLySSfNmqBMEdL1kzM=
Subject key identifier: 21:02:5D:D0:CF:42:46:B6:C0:F5:6D:9C:D7:ED:63:03:F7:94:88:6F
Authority key identifier: 1F:B4:B2:3A:44:DF:C5:AE:56:9E:74:CF:BB:0F:03:E9:27:B5:61:E2
Certificate issuer: /CN=1fb4b23a44dfc5ae569e74cfbb0f03e927b561e2
Certificate serial: 01967BD78192AC965C599CE72B10279BE40A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H7SyOkTfxa5WnnTPuw8D6Se1YeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.mft
Manifest number: 0C87
Signing time: Mon 28 Apr 2025 10:00:42 +0000
Manifest this update: Mon 28 Apr 2025 10:00:42 +0000
Manifest next update: Tue 29 Apr 2025 10:00:42 +0000
Files and hashes: 1: H7SyOkTfxa5WnnTPuw8D6Se1YeI.crl (hash: KYJ8Ud47OCH6U7tUSLi0BoHMGh6RAkF3bG0blPO5Ux8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/H7SyOkTfxa5WnnTPuw8D6Se1YeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:d7:81:92:ac:96:5c:59:9c:e7:2b:10:27:9b:e4:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fb4b23a44dfc5ae569e74cfbb0f03e927b561e2
Validity
Not Before: Apr 28 10:00:42 2025 GMT
Not After : Apr 29 10:00:42 2025 GMT
Subject: CN=21025dd0cf4246b6c0f56d9cd7ed6303f794886f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6e:78:8a:fa:d9:4a:ec:7e:37:2f:7d:d5:63:
96:f5:49:ec:00:5c:48:60:25:ac:84:ab:21:63:23:
ac:c7:a3:76:18:d9:99:20:ea:63:91:6d:da:9f:bf:
d4:1e:76:f2:24:1b:3f:8c:19:62:cc:85:72:94:17:
a4:ae:3b:ec:c0:92:73:12:86:f8:ef:bc:48:f0:74:
a3:98:68:b8:4c:1e:94:48:02:17:90:19:f6:d5:62:
48:45:13:a9:4b:b7:e8:1c:d0:69:5d:52:d6:42:85:
0d:a2:cc:22:28:cc:39:2a:9d:9f:c3:3f:5e:5c:23:
1d:9a:bc:25:a2:c9:b0:d6:18:7b:f0:57:5c:2b:b9:
e8:49:38:c0:b9:d9:0b:20:f3:c8:ec:59:26:be:1d:
df:6f:76:53:1a:8f:4d:88:a7:ed:87:98:8a:10:17:
03:2a:6c:30:77:39:1d:25:bc:13:76:2e:0c:56:54:
c0:de:2c:7b:f3:2b:f3:b7:f0:10:85:b7:93:a0:d4:
37:6c:c3:2b:6e:dc:b2:1d:fb:40:7d:14:c2:a7:3a:
98:16:e3:39:8c:f4:6b:1a:1e:7e:f4:60:ec:b0:29:
df:3e:87:4f:32:c0:52:84:fa:87:07:31:d6:5a:2f:
7c:57:75:53:57:1e:54:8c:8d:71:5a:3a:20:05:4b:
a1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:02:5D:D0:CF:42:46:B6:C0:F5:6D:9C:D7:ED:63:03:F7:94:88:6F
X509v3 Authority Key Identifier:
keyid:1F:B4:B2:3A:44:DF:C5:AE:56:9E:74:CF:BB:0F:03:E9:27:B5:61:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H7SyOkTfxa5WnnTPuw8D6Se1YeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:1f:ce:a9:c6:ba:08:37:7c:cf:9a:74:c6:5e:36:09:91:75:
fb:7f:96:29:ce:0a:0f:0f:aa:9e:f8:1a:77:2f:86:a1:5f:77:
d5:5b:8d:9b:29:3b:e8:dc:e4:65:c4:4a:bd:f6:f0:dc:f5:4f:
38:f1:8d:c2:d2:e6:ff:93:13:58:a6:ee:11:c6:e0:ce:dc:ac:
b9:0f:ac:b4:2b:d5:f6:bc:68:df:59:eb:c4:06:e9:75:ec:2a:
4a:85:a4:34:0e:13:61:9d:5f:64:4d:dd:b6:27:16:50:2d:1e:
b1:30:b3:09:7e:fc:a2:9e:b4:ae:e0:57:b5:96:9d:1e:d0:a7:
2b:9e:32:04:15:89:04:e0:95:20:dc:0c:ab:b8:3a:ae:ef:39:
f3:b4:c3:91:77:d9:22:e0:de:64:f6:09:3c:d9:d4:d2:21:6d:
2d:8d:3d:e1:81:31:ab:e1:c7:7e:05:b8:36:b5:f5:e7:ac:b1:
bc:30:5a:2d:f8:b3:61:cb:66:e3:10:d4:8d:5c:b9:2a:62:b0:
0c:c3:54:5a:b1:41:6f:6e:74:85:94:b5:98:89:b4:15:38:1a:
30:59:db:95:e0:1e:dd:0f:7b:56:6b:c1:ac:98:ea:9f:bd:20:
df:40:4f:3d:8f:85:c1:3b:24:c2:1d:ee:85:1f:04:a4:6d:4f:
1f:f6:7f:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ714GSrJZcWZznKxAnm+QKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmYjRiMjNhNDRkZmM1YWU1NjllNzRjZmJiMGYwM2U5Mjdi
NTYxZTIwHhcNMjUwNDI4MTAwMDQyWhcNMjUwNDI5MTAwMDQyWjAzMTEwLwYDVQQD
EygyMTAyNWRkMGNmNDI0NmI2YzBmNTZkOWNkN2VkNjMwM2Y3OTQ4ODZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl254ivrZSux+Ny991WOW9UnsAFxI
YCWshKshYyOsx6N2GNmZIOpjkW3an7/UHnbyJBs/jBlizIVylBekrjvswJJzEob4
77xI8HSjmGi4TB6USAIXkBn21WJIRROpS7foHNBpXVLWQoUNoswiKMw5Kp2fwz9e
XCMdmrwlosmw1hh78FdcK7noSTjAudkLIPPI7Fkmvh3fb3ZTGo9NiKfth5iKEBcD
KmwwdzkdJbwTdi4MVlTA3ix78yvzt/AQhbeToNQ3bMMrbtyyHftAfRTCpzqYFuM5
jPRrGh5+9GDssCnfPodPMsBShPqHBzHWWi98V3VTVx5UjI1xWjogBUuhrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCECXdDPQka2wPVtnNftYwP3lIhvMB8GA1UdIwQY
MBaAFB+0sjpE38WuVp50z7sPA+kntWHiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDdTeU9rVGZ4YTVXbm5UUHV3OEQ2U2UxWWVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zYmRlN2UtNjE5YS00ODRmLTlkNmEt
NDlhMjU0MmY2MzllLzEvSDdTeU9rVGZ4YTVXbm5UUHV3OEQ2U2UxWWVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8zYmRlN2UtNjE5YS00ODRmLTlkNmEtNDlhMjU0MmY2Mzll
LzEvSDdTeU9rVGZ4YTVXbm5UUHV3OEQ2U2UxWWVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlB/Oqca6
CDd8z5p0xl42CZF1+3+WKc4KDw+qnvgady+GoV931VuNmyk76NzkZcRKvfbw3PVP
OPGNwtLm/5MTWKbuEcbgztysuQ+stCvV9rxo31nrxAbpdewqSoWkNA4TYZ1fZE3d
ticWUC0esTCzCX78op60ruBXtZadHtCnK54yBBWJBOCVINwMq7g6ru8587TDkXfZ
IuDeZPYJPNnU0iFtLY094YExq+HHfgW4NrX156yxvDBaLfizYctm4xDUjVy5KmKw
DMNUWrFBb250hZS1mIm0FTgaMFnbleAe3Q97VmvBrJjqn70g30BPPY+FwTskwh3u
hR8EpG1PH/Z/fQ==
-----END CERTIFICATE-----
Generated at Mon Apr 28 15:34:30 2025 by rpki-client