Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
File: h30YEASPQ3IFBuTBgg9v4I_3ym4.mft (raw, json)
Hash identifier: TiYc3HN+XrUE4TGwBMk1A8o1eTQuYWodTByXaQhFlHM=
Subject key identifier: A2:90:CA:FB:B7:9D:96:8B:5C:11:2D:52:1B:22:FF:D0:77:E5:C8:1B
Authority key identifier: 87:7D:18:10:04:8F:43:72:05:06:E4:C1:82:0F:6F:E0:8F:F7:CA:6E
Certificate issuer: /CN=877d1810048f43720506e4c1820f6fe08ff7ca6e
Certificate serial: 01976960A960F6F3BD3C0B10A5FE06770B7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h30YEASPQ3IFBuTBgg9v4I_3ym4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
Manifest number: 0B27
Signing time: Fri 13 Jun 2025 13:00:31 +0000
Manifest this update: Fri 13 Jun 2025 13:00:31 +0000
Manifest next update: Sat 14 Jun 2025 13:00:31 +0000
Files and hashes: 1: BUF7f1UtiJtn_Bvl19qd2EwX0QQ.roa (hash: aqc2Xj2T1ZitA4dQvOlzNWa0gg3kBqNbkLQxtT41W0I=)
2: h30YEASPQ3IFBuTBgg9v4I_3ym4.crl (hash: dyCfnY82x+qffspr6SOqfCtNGW1ZY2lL6cR+DfUpxsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
rsync://rpki.ripe.net/repository/DEFAULT/h30YEASPQ3IFBuTBgg9v4I_3ym4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:60:a9:60:f6:f3:bd:3c:0b:10:a5:fe:06:77:0b:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877d1810048f43720506e4c1820f6fe08ff7ca6e
Validity
Not Before: Jun 13 13:00:31 2025 GMT
Not After : Jun 14 13:00:31 2025 GMT
Subject: CN=a290cafbb79d968b5c112d521b22ffd077e5c81b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d1:e4:4f:fc:73:fb:e4:7b:be:a9:7e:63:d6:
fe:2c:22:82:9b:c3:88:a9:4f:7f:21:e9:d6:4e:6b:
7c:b5:cf:d1:bf:65:89:76:3e:b2:b0:2b:73:fc:25:
6a:be:43:21:61:4a:cc:61:de:f9:09:6d:ee:55:40:
e7:9c:d6:9a:e9:41:66:14:c7:43:da:88:8d:32:35:
28:36:e4:17:32:99:8a:73:25:fa:77:08:33:6e:28:
f9:3c:a1:f2:4e:ea:3b:a5:2c:ed:91:81:e5:d0:dc:
cf:e4:65:a1:9c:28:2d:e5:3b:74:c4:60:f4:54:b5:
3f:94:61:5b:1d:4b:db:5b:65:bb:5e:c9:3e:59:30:
31:62:a5:5d:0c:60:b5:26:5e:f5:30:4f:e7:fc:14:
27:f4:90:78:df:ca:51:6d:83:d7:f4:42:e2:b0:c2:
15:40:22:c6:28:40:e9:dc:67:ac:7c:e0:cf:f5:7a:
67:29:71:a1:50:53:5b:fa:42:1b:2a:91:72:14:9a:
d0:08:a1:2a:b2:d2:88:fb:e3:dc:c9:e6:4e:4a:dd:
e5:80:57:3a:51:0f:5d:b7:74:e1:04:29:46:0c:6d:
c1:d8:a4:94:b5:d8:56:af:07:e5:e6:56:85:29:f1:
59:a9:c6:d4:65:ff:91:0b:c9:71:8e:e9:f1:56:a5:
02:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:90:CA:FB:B7:9D:96:8B:5C:11:2D:52:1B:22:FF:D0:77:E5:C8:1B
X509v3 Authority Key Identifier:
keyid:87:7D:18:10:04:8F:43:72:05:06:E4:C1:82:0F:6F:E0:8F:F7:CA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h30YEASPQ3IFBuTBgg9v4I_3ym4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:08:36:8c:81:ba:08:f5:bd:36:21:5b:e6:65:7e:67:ed:12:
48:2e:dd:52:84:c6:71:ff:b5:8b:ea:ce:9d:10:29:42:51:f5:
41:1d:92:1f:30:d6:0e:98:17:22:18:c0:4a:24:f9:6d:33:12:
52:db:3e:80:4f:c8:af:15:99:8a:84:b1:59:db:a7:e6:be:a7:
b6:00:9c:c6:02:d6:56:95:e2:cb:06:6c:5c:74:e6:11:50:36:
e2:50:7a:68:ef:b6:43:e6:7d:37:39:73:2a:6c:66:1a:5b:1e:
24:16:34:8d:32:4a:57:a7:3a:5a:17:39:bf:aa:39:25:b8:25:
c0:d6:65:b9:47:c9:b8:7f:69:80:86:d4:0d:90:e6:b0:d1:4e:
20:dd:39:8c:76:51:f7:f8:ca:b9:5a:e1:dd:e0:39:24:0f:e9:
21:ad:0c:6a:14:1d:5d:54:98:ea:8c:05:ce:0a:e8:0d:d0:88:
07:2b:97:d5:f8:f9:50:4c:86:eb:fc:d6:06:1f:95:16:d2:8c:
24:91:46:a1:14:2f:e1:57:0e:a3:1b:17:f2:df:e6:ad:a1:df:
ee:4c:41:04:ce:cb:92:ea:aa:2e:74:97:fc:5c:ac:6b:48:bf:
a7:c9:23:19:67:94:b4:3b:07:57:10:48:ee:d8:f1:8f:0b:a4:
92:4c:d0:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:15:33 2025 by rpki-client