Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.mft
File: 1-h1U4VhawJfD-R3vwDPdpXIuoeY.mft (raw, json)
Hash identifier: 7YjHZteF83iYz4wAbo8F8j9t+L/tUKPIP6zf/qw6RZY=
Subject key identifier: C6:73:E2:35:1F:92:BB:7B:29:8C:A9:44:15:6D:23:79:E0:70:5D:91
Authority key identifier: FA:1D:54:E1:58:5A:C0:97:C3:F9:1D:EF:C0:33:DD:A5:72:2E:A1:E6
Certificate issuer: /CN=fa1d54e1585ac097c3f91defc033dda5722ea1e6
Certificate serial: 01974A43CDD803A76E8E2B5D2A7806E4656B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-h1U4VhawJfD-R3vwDPdpXIuoeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.mft
Manifest number: 32
Signing time: Sat 07 Jun 2025 12:00:46 +0000
Manifest this update: Sat 07 Jun 2025 12:00:46 +0000
Manifest next update: Sun 08 Jun 2025 12:00:46 +0000
Files and hashes: 1: 1-h1U4VhawJfD-R3vwDPdpXIuoeY.crl (hash: i3tS96pZTczt8ARZ1NRopMQHfeIoeFwBkXW5api69ps=)
2: aw0urpJM4p93PhWqM7da0_3Fozc.roa (hash: y+1M15neToXwBCTOLJI0dSNYHmOEXNHkxHoQ5Af6Zqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-h1U4VhawJfD-R3vwDPdpXIuoeY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:cd:d8:03:a7:6e:8e:2b:5d:2a:78:06:e4:65:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1d54e1585ac097c3f91defc033dda5722ea1e6
Validity
Not Before: Jun 7 12:00:46 2025 GMT
Not After : Jun 8 12:00:46 2025 GMT
Subject: CN=c673e2351f92bb7b298ca944156d2379e0705d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:db:93:cc:a7:80:f6:84:17:b9:d3:00:53:76:
a4:b2:9f:da:d3:c5:00:d3:f9:56:cc:47:0b:27:0d:
34:b3:e4:59:1a:c7:72:b1:ed:1d:36:98:c1:84:6c:
a9:5c:9f:f0:b6:a1:41:ae:2c:2f:0d:0e:a2:97:e8:
be:e8:88:b7:b8:1c:15:28:95:5e:9f:78:e1:1a:97:
3c:05:a6:97:e2:23:a3:05:fc:ec:ab:02:68:e9:1f:
0e:11:74:89:cb:27:8b:82:2b:e1:86:16:76:5e:84:
ff:34:36:98:4a:85:2d:28:5a:0f:1f:e0:54:5b:c7:
35:af:87:e8:c5:db:69:c8:97:87:c6:a3:7b:40:6f:
ff:21:8e:9f:25:09:2a:76:90:85:fe:ab:71:28:06:
bb:0d:14:bb:79:7f:6b:ac:48:bf:a3:7f:aa:11:2c:
c5:fd:7e:bc:28:ef:80:4d:69:12:99:b6:8d:bc:40:
cb:31:15:9e:18:e1:7c:9a:32:47:e5:b8:60:9b:d8:
37:5f:e9:d6:c0:9b:5a:95:db:2a:75:00:a7:d4:61:
d8:ff:c3:6e:71:79:43:95:f3:61:d7:80:e1:af:7c:
2e:f9:77:7c:f1:f6:d2:29:1a:a3:b4:56:02:97:45:
5d:68:6b:94:dd:77:14:ef:bc:ef:e7:cc:97:c1:9b:
07:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:73:E2:35:1F:92:BB:7B:29:8C:A9:44:15:6D:23:79:E0:70:5D:91
X509v3 Authority Key Identifier:
keyid:FA:1D:54:E1:58:5A:C0:97:C3:F9:1D:EF:C0:33:DD:A5:72:2E:A1:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-h1U4VhawJfD-R3vwDPdpXIuoeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:31:9a:c0:ed:8d:e5:d8:c1:26:fb:d1:c3:f0:2e:6a:3e:ca:
3e:c9:14:48:e7:ef:20:12:2b:fc:0f:f7:35:20:83:7d:3a:53:
08:d2:42:66:10:d3:4d:bc:97:94:77:4b:7c:a3:5a:2b:51:9d:
ef:1a:e3:c4:b9:28:f3:a8:8e:d3:67:4d:1c:c8:87:94:bd:89:
a0:6d:e5:37:fd:f1:5e:ac:32:47:b2:41:ca:e2:c0:ea:58:be:
6f:7f:8b:51:9c:11:c8:6c:0b:9c:4e:23:3e:fc:ab:7b:70:61:
63:68:40:17:c4:f8:e8:48:b6:fb:0b:77:a2:8b:97:f0:71:53:
2c:ab:73:87:57:8b:dc:9f:60:80:cd:cf:69:96:73:2f:87:2b:
ed:4c:3d:8a:3b:c7:0b:a8:dc:1c:c4:1d:33:c2:8e:09:02:ff:
83:1b:1f:24:30:e1:b2:c3:ea:cd:35:e5:db:67:e2:0d:3b:b8:
d8:a1:b4:c5:95:78:25:01:6e:07:2e:35:9e:50:9a:7b:cb:f3:
d6:07:f7:00:7e:d1:c0:02:a8:41:8e:59:3e:84:13:cd:56:cb:
5b:b5:c5:70:93:16:35:70:e0:06:86:d8:9f:8a:8b:48:44:52:
e0:28:91:60:bc:90:10:e9:97:a7:81:81:c2:52:cd:34:1e:d5:
d2:44:8a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:32:27 2025 by rpki-client