Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: KIXxr62lOkRDhVXzkQMDhS67M0CKLiWo5rO+gCrSYn0=
Subject key identifier: 85:4D:7B:30:2A:1F:C0:D8:4F:30:5F:11:36:B7:8D:01:97:E6:C6:D7
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 01977A5416BEC6533419E98E578E6BD78BC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 022E
Signing time: Mon 16 Jun 2025 20:00:20 +0000
Manifest this update: Mon 16 Jun 2025 20:00:20 +0000
Manifest next update: Tue 17 Jun 2025 20:00:20 +0000
Files and hashes: 1: c4kqcT1XSHJJ0FNREY_3KgQV5Zg.roa (hash: BFqJRUOC40P0vfCEnDcc5S1ZBpr8qXlnCPbjKvFWFf8=)
2: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: 9NJ+i6tiTeSKbMCCxdeeAuuNSacnANvcPv8D8hIrhdU=)
3: rHbDbOyUaIh8TDURqX1ieGWXWQY.roa (hash: GnpW8sbC72mBlbxSlssELbw/VvK2heRrWW+jN0rRSQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 20:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:54:16:be:c6:53:34:19:e9:8e:57:8e:6b:d7:8b:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: Jun 16 20:00:20 2025 GMT
Not After : Jun 17 20:00:20 2025 GMT
Subject: CN=854d7b302a1fc0d84f305f1136b78d0197e6c6d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d1:9d:c8:0f:7d:db:fc:24:e9:1a:bb:8b:92:
2a:9d:50:8a:a6:48:99:bc:b2:a5:f7:27:07:ca:01:
c6:9e:42:31:a5:3f:da:c4:50:ab:aa:08:a3:a6:32:
e3:ed:8f:5e:78:60:b2:27:13:0d:dd:75:e8:38:e1:
c1:70:4b:60:1a:ca:4c:6c:91:d4:ef:c5:9b:70:1b:
9b:88:1b:ec:71:45:e3:9f:4a:5e:67:15:88:c0:0e:
41:9f:e5:e4:eb:db:90:10:e5:f0:aa:05:18:44:c1:
32:44:19:c6:54:d7:73:c5:1a:56:1b:1d:c7:c9:ca:
7d:0e:57:14:3a:45:81:da:5d:d5:08:4f:86:bf:d9:
c9:25:3a:c7:63:3a:db:1e:63:40:ee:20:b5:ed:96:
bf:90:61:e1:70:cc:99:19:aa:60:6d:66:74:2b:11:
33:a1:6c:10:b6:0b:bb:24:f4:3b:55:15:58:2f:50:
09:36:2f:6f:9b:51:44:ee:86:56:10:a5:9d:0d:43:
1a:55:fc:e7:11:22:20:7b:c8:26:60:24:3e:74:1d:
90:ae:fa:b1:2a:10:9e:ed:7d:8a:6b:4b:ca:91:00:
06:45:f2:cb:76:8c:c7:ee:cf:39:50:1b:09:08:f6:
c2:55:19:80:6b:c6:75:07:9a:e2:cb:e3:4f:63:41:
33:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:4D:7B:30:2A:1F:C0:D8:4F:30:5F:11:36:B7:8D:01:97:E6:C6:D7
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:56:24:64:6b:9e:3a:cf:79:70:70:e9:b9:fa:4f:d1:91:86:
36:69:63:68:94:c2:d9:9a:5f:b0:76:1d:2a:04:fb:44:f6:d3:
dc:fa:be:b2:9c:4c:8e:cc:81:9c:f0:ff:e1:91:cb:e0:9f:6c:
00:d6:ec:c6:66:85:92:bd:7b:5e:da:ab:04:e5:82:1a:d6:40:
7c:32:b0:96:6d:c5:74:fd:47:87:19:7e:ff:d6:af:3e:11:e1:
fa:1f:c7:b0:5b:5c:54:4b:55:e5:ff:04:7a:4e:cb:c6:54:88:
bc:c7:17:a3:d9:7b:0d:ac:50:46:af:a4:d4:fc:a1:1c:0e:a5:
ae:a7:ff:d1:de:05:1c:de:09:7a:50:04:c3:1d:31:e9:16:ad:
3f:33:28:02:40:a9:ca:95:3c:54:5d:c9:7c:8a:aa:17:c3:87:
dc:66:9f:cc:79:23:e2:ed:d8:04:47:af:fc:25:d4:c4:cd:19:
df:fe:31:f4:55:9d:58:d6:0c:a5:7f:11:e3:eb:17:fe:23:f6:
cf:03:1e:eb:29:c2:a2:b9:36:e5:38:dd:b1:fa:be:b5:4a:4a:
06:c7:0b:b2:7f:4e:a2:68:35:b2:22:c2:ca:84:42:2a:e9:e4:
93:80:c8:4b:ce:28:64:d6:d0:38:59:2b:64:6b:8c:ab:b6:66:
0e:bb:3d:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 03:34:53 2025 by rpki-client