Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
File: h1bSd2jhHZSgu837P7zXQNRaAPQ.mft (raw, json)
Hash identifier: zviFuXmaFn771PlwX2ok0hIB4SDzXX6lE3ylIu18cmE=
Subject key identifier: 87:18:C5:CA:B5:D9:CB:FC:FB:81:B3:FB:B1:F4:D9:6B:30:2E:93:31
Authority key identifier: 87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
Certificate issuer: /CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Certificate serial: 0197711A872799885F9A671AB5E49E13F091
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
Manifest number: 1073
Signing time: Sun 15 Jun 2025 01:00:53 +0000
Manifest this update: Sun 15 Jun 2025 01:00:53 +0000
Manifest next update: Mon 16 Jun 2025 01:00:53 +0000
Files and hashes: 1: b2XsYiMu1xHQndcNQ0ucXkzeN7E.roa (hash: uYxfaCmhcw362gqaEMF6PdCZbjIYOfXpyFCpshaBqpM=)
2: h1bSd2jhHZSgu837P7zXQNRaAPQ.crl (hash: sAIDI7zDLYEbVHMnGz87nbGl1ayQ2/a4p1sZ3GS4Suw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1a:87:27:99:88:5f:9a:67:1a:b5:e4:9e:13:f0:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Validity
Not Before: Jun 15 01:00:53 2025 GMT
Not After : Jun 16 01:00:53 2025 GMT
Subject: CN=8718c5cab5d9cbfcfb81b3fbb1f4d96b302e9331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:57:7f:ee:24:25:11:49:c3:d8:96:81:a1:b2:
d1:54:01:ef:2f:d7:c1:58:47:47:4d:21:eb:9e:e5:
5c:cb:55:57:9c:7d:a3:b8:fc:69:f7:ca:b7:a5:b5:
19:bd:99:ab:9a:0b:1e:c3:f6:0f:24:99:11:8b:f0:
96:4b:49:a9:25:4c:da:20:a5:19:0f:41:d7:09:af:
ff:5f:bb:85:55:50:24:c8:15:d1:af:86:6c:38:7e:
54:3e:08:00:cb:94:01:a7:3b:8a:ff:6b:91:92:86:
2b:2b:cd:20:19:7b:3d:6c:be:9f:e9:95:b5:d2:21:
33:be:b9:9b:38:f8:b7:19:ff:da:6c:4d:06:00:fb:
1c:e5:bc:59:01:84:9d:69:4c:9e:62:9b:f5:99:dd:
ec:b8:10:e1:bc:7b:92:b1:23:4a:6f:ba:bb:2d:41:
81:d0:c6:51:c9:9f:d3:57:59:58:18:a5:ca:ed:d3:
1b:75:86:45:fb:31:7b:80:a5:a1:9e:d6:f2:24:2c:
9a:a1:7e:d6:eb:b4:60:78:79:2b:cd:35:44:ee:de:
bb:14:0c:77:f0:7b:03:3a:e1:06:bf:01:b0:85:e3:
0b:71:54:33:a3:95:ae:f7:5a:33:65:e6:0d:c3:f1:
e6:44:ec:f3:1d:2b:ef:f7:bd:45:25:21:d1:fe:70:
66:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:18:C5:CA:B5:D9:CB:FC:FB:81:B3:FB:B1:F4:D9:6B:30:2E:93:31
X509v3 Authority Key Identifier:
keyid:87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:44:77:94:4b:bf:c3:cd:31:74:3a:2b:34:7c:4a:d2:5a:8f:
07:44:0f:89:0b:d2:e3:34:74:b3:70:1e:7e:1b:f0:ef:7d:93:
c4:56:5c:58:0a:34:3c:b2:b7:97:29:72:33:d3:06:21:61:37:
c9:f6:c9:b1:b1:70:c8:f9:94:03:9f:16:89:cf:7f:46:5a:c6:
8f:8b:bd:11:50:48:a5:64:a6:cf:12:50:7d:c5:20:be:cb:1a:
b5:71:3d:98:d9:ac:45:83:39:d0:a7:bc:fa:6e:a8:52:5b:1e:
00:83:4c:8e:8d:42:08:01:70:7f:de:cb:47:fa:ca:98:e8:de:
c5:73:4a:23:dc:e1:9b:46:d6:34:93:e4:fe:f4:f5:70:b9:b5:
08:fd:96:87:fd:00:1e:4e:86:01:7a:e9:87:a5:fd:31:76:a4:
7a:e4:b3:db:f5:2a:bc:05:19:3f:ad:10:58:7f:48:f8:aa:6c:
f8:6a:f8:38:02:90:d3:f2:4d:b8:88:5b:33:4e:aa:1c:e6:e1:
a5:cb:e1:8f:bf:d4:91:4a:4e:f4:a6:d1:2c:23:b3:15:03:b9:
c7:79:0d:12:f6:95:17:05:3e:65:e5:04:23:61:11:9e:11:16:
74:03:08:ca:42:a6:10:6b:1f:24:89:ae:52:26:56:11:6f:93:
67:c9:8c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:38:09 2025 by rpki-client