Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
File: h3OqvdPia0S3mDfBRwq44XQV6o4.mft (raw, json)
Hash identifier: aiUIJDGEloOciuq3xFUf4qs+C/12O/zswRxNs1INa1I=
Subject key identifier: 45:F7:DB:99:50:F5:B7:14:3D:4A:CD:BB:6F:F8:C6:BB:5D:BE:DE:D2
Authority key identifier: 87:73:AA:BD:D3:E2:6B:44:B7:98:37:C1:47:0A:B8:E1:74:15:EA:8E
Certificate issuer: /CN=8773aabdd3e26b44b79837c1470ab8e17415ea8e
Certificate serial: 01976DABFA4B728E0B0DAE23BDF3A1922789
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
Manifest number: 017B
Signing time: Sat 14 Jun 2025 09:01:16 +0000
Manifest this update: Sat 14 Jun 2025 09:01:16 +0000
Manifest next update: Sun 15 Jun 2025 09:01:16 +0000
Files and hashes: 1: h3OqvdPia0S3mDfBRwq44XQV6o4.crl (hash: QiQs+yzWdGFA+ssusbZ3In7TewXVUnRXH+yKFalCxXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:fa:4b:72:8e:0b:0d:ae:23:bd:f3:a1:92:27:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8773aabdd3e26b44b79837c1470ab8e17415ea8e
Validity
Not Before: Jun 14 09:01:16 2025 GMT
Not After : Jun 15 09:01:16 2025 GMT
Subject: CN=45f7db9950f5b7143d4acdbb6ff8c6bb5dbeded2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ad:80:ab:17:51:c3:6d:7a:4a:1d:03:34:b7:
db:58:39:9c:0e:08:f7:cc:03:22:14:a1:2d:04:9f:
4d:62:78:ce:12:3f:c3:93:2b:a0:55:ff:b6:a7:49:
9d:8a:7b:f8:ad:60:26:aa:50:f0:76:2b:1d:6f:34:
ee:31:bd:ff:90:c4:c2:fa:ca:00:fe:6d:ae:81:b3:
4c:48:a8:ca:8c:20:12:a4:ea:97:89:e8:bb:28:90:
ac:5f:a8:67:e5:12:9a:52:e1:8c:79:a9:13:69:b5:
c6:74:f3:8f:54:12:c5:6d:30:ff:57:72:37:4d:31:
e1:fe:64:06:c0:a8:10:fc:e5:15:f9:63:d1:81:05:
cb:ac:75:65:57:49:b3:9a:bb:1b:5e:60:82:25:93:
b9:2f:8f:21:bf:9b:b7:e2:e3:c8:64:c5:0c:bc:9c:
4e:4a:0a:0e:19:e2:87:4b:32:d4:4b:25:ad:30:1b:
3f:09:e3:04:7b:ba:20:1c:79:ed:86:ad:56:bc:5f:
b8:b9:6c:2b:bd:c9:c9:02:b2:70:d2:ef:07:cd:56:
bb:4a:88:86:13:ad:f4:66:4a:8f:d0:8d:85:e6:d3:
a3:a3:ad:4b:d5:c0:15:0e:35:bd:45:8e:6d:42:7a:
d2:fa:97:03:62:6b:c6:ba:e0:09:9e:44:93:0e:9e:
d6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F7:DB:99:50:F5:B7:14:3D:4A:CD:BB:6F:F8:C6:BB:5D:BE:DE:D2
X509v3 Authority Key Identifier:
keyid:87:73:AA:BD:D3:E2:6B:44:B7:98:37:C1:47:0A:B8:E1:74:15:EA:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:db:15:85:f3:93:36:5a:e3:1d:df:2c:4a:7e:70:fe:fe:32:
3d:8a:b6:b5:ba:b2:b8:ce:4a:6b:66:98:73:7b:39:b3:1d:3b:
5f:83:76:21:aa:01:ae:46:a7:62:90:7e:19:b7:3e:91:15:c4:
2c:4b:69:31:07:94:37:66:ea:96:56:cd:c0:7f:72:01:3a:e4:
53:87:ee:b7:c9:e6:da:a8:23:b6:d4:7d:f3:cb:e3:9a:2b:11:
bf:1e:c3:39:e4:d8:b5:d7:a1:70:26:ca:47:d7:55:e1:da:56:
ae:cb:86:59:99:b7:e4:bc:87:95:9c:3c:33:e9:2f:39:5c:b1:
46:98:4d:4a:5d:7c:28:e6:e3:26:2d:b7:66:25:bb:59:1b:db:
d3:1e:ed:97:47:fd:75:17:55:e7:e1:4f:6f:6d:d9:90:77:db:
e7:ec:18:cf:14:a0:3a:96:57:34:81:35:a7:a2:6c:03:c5:40:
36:74:01:4a:57:2e:43:09:28:4a:55:51:d3:dd:c7:11:98:e7:
88:4e:44:b9:d3:73:51:b8:c5:a0:92:16:d3:0b:03:30:20:80:
93:6a:df:b7:c4:64:37:94:da:41:f5:f0:9c:e0:a8:7e:95:f6:
27:2e:33:a0:45:6c:52:8c:d6:a0:8e:f3:dc:e0:45:9a:27:62:
a0:77:81:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:51:55 2025 by rpki-client