Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
File: h4R32LYtCfmui_29gSpT-X7UxXY.mft (raw, json)
Hash identifier: okFDzCJRlSbgrNHKFCECfzM1pw6d26Odd2hBVNkhwks=
Subject key identifier: 5D:7B:13:D9:75:9D:70:4E:0E:1A:88:CB:1B:04:0F:0D:6C:A4:1B:B6
Authority key identifier: 87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
Certificate issuer: /CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Certificate serial: 01976F9A4BA96BA2E302D45B4396F37B8D5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
Manifest number: 03B8
Signing time: Sat 14 Jun 2025 18:01:12 +0000
Manifest this update: Sat 14 Jun 2025 18:01:12 +0000
Manifest next update: Sun 15 Jun 2025 18:01:12 +0000
Files and hashes: 1: 1-chTvEPLKpclBFunFsZudwhteCw.roa (hash: Mk7QbJ14tNyeCXu9wD1n7MpPtkSCXANni+lDYxJDiAk=)
2: h4R32LYtCfmui_29gSpT-X7UxXY.crl (hash: G6d8DHIG2wIb4RV6ZD8i6dDEokEkvPWMpFruU2fCK5I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 18:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:9a:4b:a9:6b:a2:e3:02:d4:5b:43:96:f3:7b:8d:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Validity
Not Before: Jun 14 18:01:12 2025 GMT
Not After : Jun 15 18:01:12 2025 GMT
Subject: CN=5d7b13d9759d704e0e1a88cb1b040f0d6ca41bb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6f:79:d2:df:86:e2:7f:12:41:09:1d:6c:da:
77:5c:b1:38:23:87:a7:fa:ca:f5:77:36:91:53:69:
e5:c8:a8:2d:f6:f8:57:6b:2e:3f:f9:3c:0b:0b:eb:
c8:f6:f9:30:d8:2c:dd:d1:27:3e:58:9e:5c:ff:f0:
43:26:78:3d:11:81:33:2e:f6:3d:e7:15:92:5a:40:
c7:89:00:ba:ef:98:25:c5:11:75:28:a8:7f:f3:e4:
fd:db:7a:b2:b2:4b:e6:d7:3a:da:39:f6:d3:5e:fb:
bf:89:6a:6b:b4:23:50:c7:06:f7:37:12:d2:26:9b:
ec:e0:b2:0f:60:8f:2e:13:6a:c0:af:0c:28:be:68:
67:5b:07:ab:3c:b5:21:3e:1e:ff:6c:39:b7:77:ee:
60:9c:27:80:f5:63:5c:66:0a:b3:e9:e1:05:30:51:
76:c7:b8:83:db:4d:41:3c:f8:de:18:7f:34:7c:38:
35:2a:67:be:80:b3:8c:77:7e:8b:bb:1f:90:fe:43:
71:88:3e:15:18:06:c3:16:80:a7:da:fb:e5:9c:61:
72:7b:9c:42:dd:4b:a3:b2:61:60:76:35:45:26:bf:
6f:20:31:27:66:64:3b:72:7f:c2:be:2f:bd:33:df:
ba:d3:68:c1:78:cb:60:cc:06:23:3a:9f:28:b8:f4:
e3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7B:13:D9:75:9D:70:4E:0E:1A:88:CB:1B:04:0F:0D:6C:A4:1B:B6
X509v3 Authority Key Identifier:
keyid:87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:ed:21:17:d4:39:2f:d5:a3:29:2a:27:23:c5:88:77:21:3f:
7f:fb:c5:b1:15:83:c7:21:42:04:9d:39:1b:ce:f4:93:a2:98:
88:cc:49:d8:be:00:d2:0d:15:f2:68:9c:c6:14:b3:78:ba:c3:
13:9f:52:8f:a0:b7:e4:b7:0b:bd:9a:ff:82:07:4b:7e:35:e3:
0c:0a:c0:fb:2e:ac:db:76:62:7f:38:e1:e6:63:a2:7c:8f:cc:
8c:3b:8f:7b:ba:64:8c:62:08:6b:88:3b:36:47:7b:fa:6e:8a:
12:a0:c4:d2:ce:56:f2:4c:55:3d:4e:1a:26:af:ed:3c:cf:dc:
ec:e8:48:55:ec:1e:b3:e5:1b:f9:5e:09:f1:4d:e1:c2:b5:d2:
18:98:91:6e:5a:36:3c:0e:d1:b6:30:38:fb:57:58:ea:06:21:
bb:53:2f:1a:b0:bd:c4:9a:1f:5f:9a:4d:95:51:af:d7:9b:39:
15:4a:bd:98:01:ad:fe:13:08:07:01:fd:c4:ae:a2:93:7e:27:
80:4f:9c:84:8c:24:83:08:b7:b8:3d:14:38:d7:5a:dd:4b:01:
2d:b3:8d:82:70:57:58:94:86:50:ef:c1:5b:19:d6:fd:ee:fb:
5c:53:44:ce:1f:6e:2a:c4:96:73:60:b6:a8:42:44:81:ae:9a:
f2:8e:74:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:56:43 2025 by rpki-client