Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
File: h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft (raw, json)
Hash identifier: 9vTG3+M3TcOCu45BuxqtwZfYvn/JedO3ZZ9FjGakqXI=
Subject key identifier: 25:27:00:FE:4A:9F:F9:B6:88:7A:73:C8:FA:F5:41:3B:50:16:B8:CE
Authority key identifier: 87:F4:5E:3A:40:69:D4:F5:EB:D5:F6:E6:42:1D:8D:3C:AB:E3:09:21
Certificate issuer: /CN=87f45e3a4069d4f5ebd5f6e6421d8d3cabe30921
Certificate serial: 01974B1F733F3A4ACC04C5A095E3E556EF68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
Manifest number: 112A
Signing time: Sat 07 Jun 2025 16:00:41 +0000
Manifest this update: Sat 07 Jun 2025 16:00:41 +0000
Manifest next update: Sun 08 Jun 2025 16:00:41 +0000
Files and hashes: 1: EqmxfEPR61JZ1PILd4aiLsGlGKg.roa (hash: o+GN8e0CITe+H1MxoXkf/yVp/P7VliN/bKmtLSSdiwk=)
2: h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl (hash: 3wnOtuIFPrnKDBR7k7q0Ju781IEL9I1U0lVqiI6lUVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:73:3f:3a:4a:cc:04:c5:a0:95:e3:e5:56:ef:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87f45e3a4069d4f5ebd5f6e6421d8d3cabe30921
Validity
Not Before: Jun 7 16:00:41 2025 GMT
Not After : Jun 8 16:00:41 2025 GMT
Subject: CN=252700fe4a9ff9b6887a73c8faf5413b5016b8ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1c:e6:42:34:4c:f9:66:9c:7d:36:02:4d:f3:
f6:f8:f2:90:a6:a5:ea:6a:bb:cf:79:35:04:1e:b4:
12:5b:b1:c8:13:bd:ba:00:ec:16:6a:b8:25:2e:37:
68:6d:05:83:6b:35:6e:5f:6a:1f:48:0a:88:6b:5e:
f7:85:7e:db:a1:4c:ce:0c:9b:ae:77:10:fd:5f:c0:
67:49:28:99:28:bb:8b:87:40:6d:2c:4c:f0:24:80:
22:29:c5:2f:fd:d6:b2:9c:c8:9b:9f:28:00:2d:02:
a8:c0:bd:6d:f1:ad:dd:af:60:39:a5:7d:22:78:23:
6c:a9:92:ab:9a:7b:1c:74:49:b8:f1:e3:e5:d6:dc:
65:4e:0d:a8:58:0d:c4:c7:0c:9b:53:91:ae:51:96:
f7:6c:f0:e7:3d:e9:4c:ac:7b:78:23:e2:50:df:30:
c8:60:18:29:70:7f:7c:d8:b3:cb:2f:1f:9f:4c:47:
d8:0f:15:05:7d:d7:a7:32:10:92:12:93:f4:17:e6:
6b:1b:1e:9a:13:18:ec:e3:a6:86:6a:5e:73:e1:bb:
13:e0:f7:0b:2d:59:6e:4a:0a:7c:d4:3e:ee:d0:03:
d1:1e:0f:7a:a8:2c:a5:bb:90:54:ed:d8:67:58:10:
1d:19:19:74:8f:f9:d4:d3:d2:55:42:7b:b7:c2:5b:
18:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:27:00:FE:4A:9F:F9:B6:88:7A:73:C8:FA:F5:41:3B:50:16:B8:CE
X509v3 Authority Key Identifier:
keyid:87:F4:5E:3A:40:69:D4:F5:EB:D5:F6:E6:42:1D:8D:3C:AB:E3:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:d2:b4:79:e6:17:92:02:e6:3d:0e:ea:d5:ff:f1:12:43:e9:
03:78:36:3d:d2:a1:04:e9:56:bd:0e:aa:e3:c9:06:dd:6b:32:
cd:6f:f1:30:a3:06:cc:64:ff:7c:f3:98:06:65:14:91:fc:f8:
86:46:db:50:06:75:0c:13:c8:2f:1a:50:a5:80:b4:db:c3:a2:
f6:7b:79:77:fa:c7:42:b4:14:b3:42:3d:3c:97:31:e0:18:c5:
9c:5e:88:bc:68:62:dd:b9:5b:3a:28:7c:2d:bf:8c:11:b7:e9:
ce:9a:90:da:4a:c2:aa:c8:d6:97:6d:bf:a6:2d:0c:06:85:70:
ae:2e:e6:e1:ea:7b:9c:42:4f:d1:61:f6:00:5d:e0:f1:52:fd:
0b:d2:44:b4:dc:00:92:c9:be:20:c7:a8:f0:96:6c:ec:be:e1:
b2:73:12:9f:37:f7:3a:f6:29:21:e5:0d:8d:b9:08:ef:b2:0d:
3b:a7:ec:88:fd:b5:57:24:4a:0c:20:74:25:d8:f9:f9:03:56:
19:5d:ea:b5:bd:8e:50:2e:6a:6e:c1:0b:3c:9a:57:8e:54:c9:
d3:4a:25:15:50:05:2f:69:68:fa:ca:f2:7b:37:7b:86:50:6e:
65:a3:91:4b:4c:1d:70:41:ac:44:1a:df:38:21:0a:0b:f8:60:
cf:8b:0b:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:53:50 2025 by rpki-client