Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
File: h30YEASPQ3IFBuTBgg9v4I_3ym4.mft (raw, json)
Hash identifier: aSPq9XTDX4hb+VMLJaDV4MRBdXjyeEMQHpzKhK/tqAQ=
Subject key identifier: DB:BC:A0:9B:B9:08:34:82:C0:52:E0:A3:A8:28:63:A6:23:B5:8B:06
Authority key identifier: 87:7D:18:10:04:8F:43:72:05:06:E4:C1:82:0F:6F:E0:8F:F7:CA:6E
Certificate issuer: /CN=877d1810048f43720506e4c1820f6fe08ff7ca6e
Certificate serial: 019873E31195E40791601967F8EDF3893E65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h30YEASPQ3IFBuTBgg9v4I_3ym4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
Manifest number: 0BB1
Signing time: Mon 04 Aug 2025 07:01:57 +0000
Manifest this update: Mon 04 Aug 2025 07:01:57 +0000
Manifest next update: Tue 05 Aug 2025 07:01:57 +0000
Files and hashes: 1: BUF7f1UtiJtn_Bvl19qd2EwX0QQ.roa (hash: aqc2Xj2T1ZitA4dQvOlzNWa0gg3kBqNbkLQxtT41W0I=)
2: h30YEASPQ3IFBuTBgg9v4I_3ym4.crl (hash: yFOtjQK3M64kL97CxO2n7kojQgK+bw5f49SPYtN/v0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
rsync://rpki.ripe.net/repository/DEFAULT/h30YEASPQ3IFBuTBgg9v4I_3ym4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:11:95:e4:07:91:60:19:67:f8:ed:f3:89:3e:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877d1810048f43720506e4c1820f6fe08ff7ca6e
Validity
Not Before: Aug 4 07:01:57 2025 GMT
Not After : Aug 5 07:01:57 2025 GMT
Subject: CN=dbbca09bb9083482c052e0a3a82863a623b58b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:28:97:1c:db:d6:ab:4d:ee:57:a1:ae:54:eb:
e7:96:60:a1:49:6d:67:58:8c:95:66:b3:b3:2f:8c:
bd:6e:51:ce:d5:ba:5b:c0:4f:95:50:b1:52:bc:b6:
11:7d:0d:9d:f4:4a:70:65:5a:c0:6b:f4:79:15:a8:
60:c5:66:63:bc:8e:fb:46:6d:d0:6d:39:86:31:db:
21:c9:8d:d9:97:91:b6:3b:e1:62:27:61:41:06:5d:
d6:a8:52:74:cd:36:a2:7e:9f:28:e5:2c:1d:86:74:
33:b1:32:74:7b:12:d6:05:c1:66:0d:d6:aa:62:52:
ad:83:2d:6a:fd:70:d0:82:01:a6:de:0b:bd:87:bf:
81:b8:61:07:38:3e:6f:fc:df:36:2f:0e:47:58:30:
02:ca:da:c7:48:9c:51:66:c3:e1:1c:f3:b5:da:5b:
72:87:de:89:86:6a:e0:9c:25:48:7e:b7:0d:01:02:
7d:10:30:1d:0b:56:9a:ea:64:23:9a:66:bb:e4:72:
54:7d:13:dc:10:e8:2d:8d:c8:b7:5f:ea:43:c6:24:
bb:3c:ca:7b:23:ac:b7:52:bf:17:f7:c5:66:8d:e3:
0c:51:72:11:0c:65:3b:91:c7:d2:25:a5:e8:1b:32:
5c:41:30:2f:ca:ba:85:42:c4:aa:bb:f3:cd:ce:2a:
b1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BC:A0:9B:B9:08:34:82:C0:52:E0:A3:A8:28:63:A6:23:B5:8B:06
X509v3 Authority Key Identifier:
keyid:87:7D:18:10:04:8F:43:72:05:06:E4:C1:82:0F:6F:E0:8F:F7:CA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h30YEASPQ3IFBuTBgg9v4I_3ym4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:2b:9a:39:19:38:22:5d:c3:c0:9c:8b:36:88:8c:6b:c4:bf:
5f:98:67:91:cc:99:c4:eb:ec:8d:ed:87:26:14:cd:fe:31:a2:
f7:fa:16:1a:62:59:6b:3e:0d:a9:d3:dd:d2:29:6a:6a:0b:14:
e0:17:da:66:31:82:25:38:95:97:ba:5c:e4:cd:f9:ba:a9:80:
73:32:6d:62:f6:33:a8:75:79:bd:84:ee:b4:6b:b8:24:8d:1e:
76:86:4d:07:7e:06:f8:e0:87:57:54:69:07:38:b0:8b:18:a5:
e6:4e:dd:e0:90:10:44:66:85:48:66:63:47:74:f1:43:bf:46:
4e:99:6c:53:18:72:f7:26:0c:15:5a:23:9c:5d:c5:23:17:61:
70:2a:f0:d5:c0:5e:6d:c3:a3:e6:ce:88:d4:a9:ab:72:f6:ba:
54:64:15:c5:20:f4:59:64:9c:29:b9:9a:98:cb:97:64:ef:96:
cc:31:f2:35:69:52:cd:98:91:f6:9a:86:c1:f8:42:da:6f:cf:
ad:80:60:63:3d:7c:2a:82:84:a2:c8:85:f5:41:88:9a:5c:07:
70:e0:c1:b2:70:0a:62:2e:30:df:68:7a:06:7b:43:71:aa:c3:
16:c4:db:9d:2b:00:eb:f9:75:58:c2:10:af:c0:c4:3c:3f:2e:
c8:56:3a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:17:36 2025 by rpki-client