
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
File: h3OqvdPia0S3mDfBRwq44XQV6o4.mft (raw, json)
Hash identifier: k5sdK9n1nlSJR4F6ZX7HM57o/ydLYXXM3jm1y5MrWTU=
Subject key identifier: F2:70:73:CC:7E:DA:3E:6A:E6:FE:89:0B:0B:30:A9:E2:8E:84:36:6D
Authority key identifier: 87:73:AA:BD:D3:E2:6B:44:B7:98:37:C1:47:0A:B8:E1:74:15:EA:8E
Certificate issuer: /CN=8773aabdd3e26b44b79837c1470ab8e17415ea8e
Certificate serial: 01988B7D39E90BF68E6A571E2F5A3F08DE87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
Manifest number: 020F
Signing time: Fri 08 Aug 2025 21:01:36 +0000
Manifest this update: Fri 08 Aug 2025 21:01:36 +0000
Manifest next update: Sat 09 Aug 2025 21:01:36 +0000
Files and hashes: 1: h3OqvdPia0S3mDfBRwq44XQV6o4.crl (hash: ojSDxyyLg5gxYuI2IFCeMz4ytFsdFLTTPInpvob6d3Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7d:39:e9:0b:f6:8e:6a:57:1e:2f:5a:3f:08:de:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8773aabdd3e26b44b79837c1470ab8e17415ea8e
Validity
Not Before: Aug 8 21:01:36 2025 GMT
Not After : Aug 9 21:01:36 2025 GMT
Subject: CN=f27073cc7eda3e6ae6fe890b0b30a9e28e84366d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f1:71:d5:aa:f6:6e:e1:ce:ab:63:42:6c:0c:
2f:29:76:7f:24:ef:ff:3f:12:7d:94:7a:33:1d:85:
58:58:01:39:8d:3c:72:67:26:74:35:92:49:e4:fb:
94:ed:a4:e3:e4:ed:c6:f7:93:5f:17:4f:30:a9:c9:
1f:31:06:a7:4b:39:5a:d0:f9:e9:de:70:1a:de:24:
3c:81:4a:a5:db:6c:ca:1f:68:b9:2d:35:4d:54:53:
31:61:f8:3e:de:ce:16:c8:74:6e:35:fc:06:59:50:
c4:8d:86:64:2c:c6:f6:5c:60:68:12:44:fc:e6:09:
aa:7b:04:92:ad:7c:6c:dd:41:ed:ac:4a:b8:47:77:
fe:d4:9b:db:ee:71:59:04:07:9d:7b:11:41:68:71:
75:e5:30:78:0f:46:87:7a:b0:7b:33:2c:93:36:0b:
84:ca:fd:4d:79:bd:e7:9c:89:13:44:07:f3:1a:46:
e0:d6:5d:7d:0b:1e:86:0b:0e:16:f2:5c:9d:f1:f6:
bd:81:e7:ba:ed:52:aa:0c:85:ef:c5:a9:23:5f:26:
10:da:b2:af:7a:d7:14:b0:88:81:00:ee:aa:a2:47:
b1:b7:e3:4f:18:67:d0:ba:56:ec:75:41:d1:4b:07:
32:3a:0c:aa:cc:17:80:0b:46:42:f0:23:68:c5:41:
3a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:70:73:CC:7E:DA:3E:6A:E6:FE:89:0B:0B:30:A9:E2:8E:84:36:6D
X509v3 Authority Key Identifier:
keyid:87:73:AA:BD:D3:E2:6B:44:B7:98:37:C1:47:0A:B8:E1:74:15:EA:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:5f:10:c8:53:0e:2c:2f:bd:66:da:fc:44:f6:50:96:50:a5:
fe:7d:d2:b3:10:2c:d7:6a:14:ed:64:2c:25:17:ce:e7:04:fd:
bb:e5:a4:7a:2d:15:a7:8c:04:bd:07:73:59:be:3d:66:38:85:
b1:5f:d2:e1:c7:cd:cd:90:4e:2e:5d:b2:30:35:21:15:2e:c2:
49:9a:4f:ec:4a:01:01:e0:55:3a:02:47:93:da:c0:3a:2f:44:
56:bb:da:7d:54:34:94:fe:a1:19:3c:91:a1:11:04:32:9e:bc:
66:df:3a:ac:34:4a:7d:7d:60:b8:8c:ff:50:e5:15:1e:45:ff:
f9:f6:71:d0:bb:e0:59:ee:16:3d:48:80:6d:38:0e:ca:96:09:
b2:0d:64:94:62:72:01:4d:86:1c:1e:12:fa:02:fb:f3:c0:3b:
74:4f:6b:9d:8e:2c:24:7c:52:98:03:14:eb:e7:8d:02:db:7a:
25:19:f1:8d:82:01:06:14:19:52:b7:8c:43:c0:88:28:ee:cb:
a9:65:5b:9b:2b:0c:0a:48:6d:52:89:f0:cf:b9:97:cb:74:e0:
7c:7a:cb:b9:e1:38:87:62:e9:64:1a:dc:76:d2:03:be:eb:76:
e9:16:c2:2b:8c:ca:74:fa:f3:7f:a0:0e:42:af:48:fe:e1:d9:
c3:d2:c1:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:50:20 2025 by rpki-client