Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft
File: k7Hqu-XuDASWgOKryVU0OexkPAs.mft (raw, json)
Hash identifier: 1P4NEtfnaTu44I2IEOc1iDijKiYuiEq6qsfNpRfgEO4=
Subject key identifier: 1B:6A:F3:E4:56:DC:8F:CF:99:06:5E:CE:2B:A1:35:D9:0A:21:BD:94
Authority key identifier: 93:B1:EA:BB:E5:EE:0C:04:96:80:E2:AB:C9:55:34:39:EC:64:3C:0B
Certificate issuer: /CN=93b1eabbe5ee0c049680e2abc9553439ec643c0b
Certificate serial: 01974B1F231CED33A4D29947509504BB8A31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft
Manifest number: 0F30
Signing time: Sat 07 Jun 2025 16:00:21 +0000
Manifest this update: Sat 07 Jun 2025 16:00:21 +0000
Manifest next update: Sun 08 Jun 2025 16:00:21 +0000
Files and hashes: 1: PQ_yvQsZl8a1BJZelz18O8KYziI.roa (hash: a9+EgNIf1zhqdc2reiY/K2IYhXxlOzKE9JswUeuIGNI=)
2: k7Hqu-XuDASWgOKryVU0OexkPAs.crl (hash: b+4ryIXvwT8vJjiWQhnOdOjztHtrPKJhGcEXOZfG1Gc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:23:1c:ed:33:a4:d2:99:47:50:95:04:bb:8a:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93b1eabbe5ee0c049680e2abc9553439ec643c0b
Validity
Not Before: Jun 7 16:00:21 2025 GMT
Not After : Jun 8 16:00:21 2025 GMT
Subject: CN=1b6af3e456dc8fcf99065ece2ba135d90a21bd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4b:b7:c6:b8:21:ee:01:73:bc:37:8b:6f:08:
a0:ba:52:32:e8:64:fb:5f:b7:a8:00:64:4e:90:bf:
1d:93:a1:76:25:4d:d4:d0:52:6e:c8:31:38:e8:33:
65:87:a6:8f:f1:45:99:b6:c3:12:90:22:57:d6:8b:
de:c0:0f:2e:f7:86:e1:f9:bc:45:89:c3:72:36:03:
4b:4d:d0:ca:41:d9:a3:22:8d:96:8a:46:8e:1d:22:
e3:73:65:4d:5b:b0:89:bc:3b:4e:bb:fb:ae:9e:5f:
68:32:2b:93:54:bd:a8:6f:1b:e0:64:c8:81:83:22:
99:48:86:bc:cf:58:6d:67:97:d1:c9:ec:63:32:83:
ba:f2:1b:37:5d:e0:47:54:57:01:7d:a3:fd:9f:08:
a9:c5:3d:c0:c8:d2:24:b5:98:ee:f4:06:37:88:14:
92:06:ea:d2:9f:61:98:22:6f:15:2a:02:20:05:50:
75:12:8e:9e:ea:18:08:a4:c5:e3:9e:52:80:48:fa:
37:59:79:c1:ac:23:d8:61:43:ad:e7:48:d2:54:b6:
76:2d:84:ff:ac:1c:68:c3:fd:d1:5c:01:2c:1f:e6:
21:95:e9:89:f4:9b:e3:7b:d2:ad:37:a2:bc:c7:0f:
f5:37:cc:f8:04:09:07:fd:23:69:84:71:d4:33:dc:
05:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:6A:F3:E4:56:DC:8F:CF:99:06:5E:CE:2B:A1:35:D9:0A:21:BD:94
X509v3 Authority Key Identifier:
keyid:93:B1:EA:BB:E5:EE:0C:04:96:80:E2:AB:C9:55:34:39:EC:64:3C:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:db:14:08:ff:89:22:ad:e8:19:c6:cc:1a:92:b4:28:07:a1:
ad:66:87:91:c0:e9:87:df:d9:8a:4f:2a:c3:f5:95:09:ef:fb:
3c:fb:32:cc:5c:a5:e6:4b:bd:c8:c5:a0:90:84:67:e2:ae:0a:
92:07:32:05:68:7f:45:02:f8:c2:79:24:6a:54:26:19:39:88:
57:ad:ec:a6:eb:f5:d4:26:4a:3d:a6:f2:73:53:6f:01:32:6b:
9c:f6:29:8d:6c:36:8a:c7:47:22:be:a5:c2:d3:53:30:5b:9a:
e8:c7:60:b4:5b:18:5d:0d:ff:ec:84:fd:21:eb:f6:63:b7:db:
9b:4f:50:20:9f:b0:16:b7:60:ca:46:3e:a5:d2:1f:9a:8b:a8:
ed:57:de:33:65:63:b6:56:2f:d6:12:f0:6d:29:bb:e6:80:20:
82:15:22:49:9a:16:56:fc:2a:47:d2:53:60:38:63:a4:72:61:
45:52:4a:24:69:c9:45:90:f2:a0:a6:19:7c:1c:dd:a9:8c:22:
bc:bc:5f:bc:cf:45:dd:3b:41:33:b5:6a:aa:aa:bb:37:01:1e:
06:66:cf:26:18:15:15:6a:fa:83:80:8b:ca:33:89:0e:75:1e:
9b:bf:24:b5:62:f6:53:89:34:57:59:b9:a8:94:e6:d9:6e:26:
c5:1d:20:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:06:43 2025 by rpki-client