Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
File: h7-ak2z5rSjsWNt5imD9cd9sN_M.mft (raw, json)
Hash identifier: aZULXuOmFRduIBNaiiiqY6D+ZAmwlf0waEZCPxaJlV4=
Subject key identifier: 01:A1:D7:8C:E7:3D:2E:57:CB:DB:8C:76:03:2A:61:8C:6F:6F:CD:95
Authority key identifier: 87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
Certificate issuer: /CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Certificate serial: 01976D3E26A0E0ADF72CF7579F8548C25EAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
Manifest number: 0E50
Signing time: Sat 14 Jun 2025 07:01:19 +0000
Manifest this update: Sat 14 Jun 2025 07:01:19 +0000
Manifest next update: Sun 15 Jun 2025 07:01:19 +0000
Files and hashes: 1: h7-ak2z5rSjsWNt5imD9cd9sN_M.crl (hash: XBk9WRbR7bsEOKCbGcD96OeBCmhpWzSe6lXA+fxUXyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:26:a0:e0:ad:f7:2c:f7:57:9f:85:48:c2:5e:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Validity
Not Before: Jun 14 07:01:19 2025 GMT
Not After : Jun 15 07:01:19 2025 GMT
Subject: CN=01a1d78ce73d2e57cbdb8c76032a618c6f6fcd95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:78:dc:72:9d:40:55:91:b1:42:e5:87:2d:b3:
cd:68:1a:80:a8:16:0c:17:1b:56:e3:3c:0f:dd:01:
61:a1:83:d5:26:71:02:ee:01:f8:0d:71:e5:94:57:
d2:bb:c6:c7:8f:cb:de:2b:85:9b:cd:3b:d4:7f:e9:
70:c1:7c:af:3a:45:61:4f:4f:2e:08:8b:ff:09:34:
2e:c4:24:8e:e4:2a:b2:4c:5c:b7:6d:04:f7:45:64:
d1:02:db:79:49:d3:a8:99:9d:15:a9:5a:84:b0:4e:
13:28:6c:71:8f:2a:d8:a3:ae:02:68:2f:2a:4d:ac:
5f:f5:cc:ea:24:e2:12:55:8f:57:58:ff:33:ff:7e:
28:b3:60:09:d3:96:85:8a:4e:64:b7:2e:ed:c8:fe:
58:4c:8a:d4:b0:e0:5f:2b:98:bf:a1:b2:ab:dd:8a:
a6:e9:fe:60:d0:95:31:c1:b1:18:b7:f2:e8:13:c0:
ef:56:a0:56:5f:1b:03:ce:1c:da:40:a3:e3:88:1f:
db:4c:34:cc:9f:a4:17:ed:a1:6b:4c:17:c0:da:a0:
0b:d0:9a:97:67:62:f6:ac:0b:5c:9c:df:8e:d0:ee:
82:24:3f:a2:51:9d:ed:76:39:e6:4b:f8:79:cc:83:
52:0f:a2:31:72:b3:78:65:ae:f3:10:d3:4d:32:58:
ce:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A1:D7:8C:E7:3D:2E:57:CB:DB:8C:76:03:2A:61:8C:6F:6F:CD:95
X509v3 Authority Key Identifier:
keyid:87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:73:d0:bb:da:dc:cd:7c:c9:41:49:76:3c:72:63:06:fb:5e:
fc:21:a0:d9:e6:51:8b:23:ee:f2:2a:bb:a1:d6:f1:3e:aa:57:
76:28:dd:84:f7:79:23:4d:c3:42:d9:66:79:5f:61:57:7b:16:
e0:2e:68:4b:f7:29:a0:bf:b5:83:ea:ab:7f:93:a1:92:77:3f:
5a:ee:5b:75:6e:f5:71:f7:e1:b2:b1:77:6e:f3:65:61:d5:27:
ff:1b:e6:98:06:9a:45:7f:64:c6:d9:0a:48:04:02:77:93:d3:
98:da:9b:24:a2:08:ec:9a:7b:7c:88:4c:30:83:48:19:d9:40:
2e:31:80:47:36:17:f8:b5:1d:06:d7:69:e2:58:dd:1d:cc:f8:
80:66:aa:07:4e:5c:74:96:c7:0c:2d:31:b1:cb:d8:44:2f:76:
3c:bc:1a:d2:72:76:63:39:5c:4e:6b:3b:9b:f5:da:7c:40:87:
fc:d0:a4:55:fc:1f:70:4c:83:d2:ff:b8:2c:c5:c2:97:49:6e:
b4:bd:8a:98:3f:60:de:56:8c:23:dd:69:3b:ed:3e:17:fd:1a:
fc:69:7b:53:25:09:d1:eb:34:54:7a:b4:ad:b4:20:2c:ff:59:
05:9c:60:a6:79:27:66:73:c7:68:60:b5:69:ff:40:c8:01:ef:
47:3c:33:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtPiag4K33LPdXn4VIwl6vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3YmY5YTkzNmNmOWFkMjhlYzU4ZGI3OThhNjBmZDcxZGY2
YzM3ZjMwHhcNMjUwNjE0MDcwMTE5WhcNMjUwNjE1MDcwMTE5WjAzMTEwLwYDVQQD
EygwMWExZDc4Y2U3M2QyZTU3Y2JkYjhjNzYwMzJhNjE4YzZmNmZjZDk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13jccp1AVZGxQuWHLbPNaBqAqBYM
FxtW4zwP3QFhoYPVJnEC7gH4DXHllFfSu8bHj8veK4WbzTvUf+lwwXyvOkVhT08u
CIv/CTQuxCSO5CqyTFy3bQT3RWTRAtt5SdOomZ0VqVqEsE4TKGxxjyrYo64CaC8q
Taxf9czqJOISVY9XWP8z/34os2AJ05aFik5kty7tyP5YTIrUsOBfK5i/obKr3Yqm
6f5g0JUxwbEYt/LoE8DvVqBWXxsDzhzaQKPjiB/bTDTMn6QX7aFrTBfA2qAL0JqX
Z2L2rAtcnN+O0O6CJD+iUZ3tdjnmS/h5zINSD6IxcrN4Za7zENNNMljOiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAGh14znPS5Xy9uMdgMqYYxvb82VMB8GA1UdIwQY
MBaAFIe/mpNs+a0o7FjbeYpg/XHfbDfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDctYWsyejVyU2pzV050NWltRDljZDlzTl9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy81NmM2Y2ItYTM2ZS00ZTFjLWE0MzIt
NGY5Nzc3MmIwMTgwLzEvaDctYWsyejVyU2pzV050NWltRDljZDlzTl9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy81NmM2Y2ItYTM2ZS00ZTFjLWE0MzItNGY5Nzc3MmIwMTgw
LzEvaDctYWsyejVyU2pzV050NWltRDljZDlzTl9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW3PQu9rc
zXzJQUl2PHJjBvte/CGg2eZRiyPu8iq7odbxPqpXdijdhPd5I03DQtlmeV9hV3sW
4C5oS/cpoL+1g+qrf5Ohknc/Wu5bdW71cffhsrF3bvNlYdUn/xvmmAaaRX9kxtkK
SAQCd5PTmNqbJKII7Jp7fIhMMINIGdlALjGARzYX+LUdBtdp4ljdHcz4gGaqB05c
dJbHDC0xscvYRC92PLwa0nJ2YzlcTms7m/XafECH/NCkVfwfcEyD0v+4LMXCl0lu
tL2KmD9g3laMI91pO+0+F/0a/Gl7UyUJ0es0VHq0rbQgLP9ZBZxgpnknZnPHaGC1
af9AyAHvRzwzJw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:18:38 2025 by rpki-client