Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
File: h94IWXXeZYjgf-0TVROqOKztt2M.mft (raw, json)
Hash identifier: +u6E/J3a6JGRtwLquGmIgfaUZo3y1J3KGjlwU6u6wTA=
Subject key identifier: 4A:C8:28:BD:53:E8:33:61:15:B8:84:B0:B0:72:2F:4B:46:7D:B4:2E
Authority key identifier: 87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
Certificate issuer: /CN=87de085975de6588e07fed135513aa38acedb763
Certificate serial: 01977DC37CFBDD3C62F24E7E4A0CD7DCB301
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
Manifest number: 0980
Signing time: Tue 17 Jun 2025 12:00:52 +0000
Manifest this update: Tue 17 Jun 2025 12:00:52 +0000
Manifest next update: Wed 18 Jun 2025 12:00:52 +0000
Files and hashes: 1: 2z5OP5uOUPeCHEZvOlemyfzgiqA.roa (hash: Hk782ryuX9Xc6GFCRAe62b1gzyY4Vb/jeKK1cnQhmr8=)
2: h94IWXXeZYjgf-0TVROqOKztt2M.crl (hash: YQJg5v6J/9W//LKgf1xfQhgvDSXdE/tjts94jZS/Oc4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:c3:7c:fb:dd:3c:62:f2:4e:7e:4a:0c:d7:dc:b3:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87de085975de6588e07fed135513aa38acedb763
Validity
Not Before: Jun 17 12:00:52 2025 GMT
Not After : Jun 18 12:00:52 2025 GMT
Subject: CN=4ac828bd53e8336115b884b0b0722f4b467db42e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bf:bd:8f:45:f9:45:1d:d4:9c:b8:a8:7c:c7:
ff:3c:8d:ad:bf:65:54:18:a5:eb:b3:35:2b:78:ed:
d3:95:03:d0:d7:19:09:fc:74:d0:00:9b:e2:38:17:
9c:04:c0:50:71:eb:33:47:87:4e:40:bc:43:9d:f5:
d3:fb:27:01:75:6d:08:4f:95:67:39:ef:fd:e5:48:
85:84:a0:20:38:30:0f:1f:34:98:08:b2:9d:be:61:
e1:10:7d:46:43:f0:0a:1f:81:8f:07:d7:fe:f9:13:
3d:ce:28:e2:ca:87:63:a1:3b:a6:14:a9:64:08:77:
e0:02:09:83:1e:a8:ac:cd:52:8d:a7:9f:6e:b7:66:
34:5f:2d:e4:f0:5b:1d:3d:1a:ff:14:fe:e5:32:fc:
7a:c1:cb:04:0a:f2:2b:b5:7f:86:9b:ac:3e:c5:94:
16:54:60:0a:9c:ab:11:aa:9f:bd:4e:d1:90:4a:2c:
97:a9:69:16:b2:9e:af:07:96:4f:5f:ff:0b:99:b2:
ab:c3:cb:78:7d:1d:42:fa:9e:b9:a4:56:2e:90:2c:
3d:4f:be:41:38:07:68:d7:d1:47:ea:73:f4:56:dc:
2e:53:58:6a:54:b7:ed:8d:3e:63:93:15:9e:a1:c7:
12:39:dd:6a:3c:f8:6f:05:b4:ac:b5:fb:fb:8d:73:
be:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C8:28:BD:53:E8:33:61:15:B8:84:B0:B0:72:2F:4B:46:7D:B4:2E
X509v3 Authority Key Identifier:
keyid:87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:80:44:64:8b:11:94:a3:26:67:25:f2:2a:11:eb:e3:67:04:
d0:aa:30:1f:0d:b6:ad:cc:e5:81:45:5a:77:c1:88:3f:1d:02:
14:98:38:a2:f8:df:14:e2:66:bd:2b:de:c0:5a:83:18:d4:38:
b1:5a:cd:f3:e4:63:e2:02:54:a7:6f:33:b9:d9:2a:3b:28:a6:
9a:ae:18:58:fc:4e:90:24:12:8f:9d:c7:e2:68:ba:91:01:c1:
c7:a8:65:77:c5:a1:a0:d2:48:3e:f2:f5:a1:0c:74:5f:ff:5c:
8e:58:fe:0b:61:d3:a2:82:8e:91:f9:2c:33:71:d4:16:65:7f:
7a:7e:39:9a:9b:ff:a5:c9:ad:02:18:d6:8e:96:49:46:bb:d4:
50:a7:7a:04:c8:d6:29:3a:0d:ef:b8:81:fd:94:86:fa:37:30:
4f:ec:a1:93:35:3e:17:d6:46:d5:fe:b8:14:70:7e:ca:64:b6:
5b:f9:4d:42:bd:94:5b:88:5d:cc:fe:d0:8e:cd:b1:01:82:f6:
2c:5f:ae:ca:77:0b:e4:dc:8e:5b:95:9d:7a:30:82:79:c5:5d:
44:1b:79:ad:e6:54:87:c3:7c:0b:e2:9f:c0:bd:5d:bc:eb:7d:
cb:33:8c:74:e8:ae:a9:fd:20:8e:50:4b:84:72:e6:bd:af:07:
07:48:dd:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 14:34:28 2025 by rpki-client