Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: DCe8lpoyWK7+suLbOJF0ABNtAV+dTvk2ym8w/9XBwZ8=
Subject key identifier: 56:1F:2E:9F:1D:40:63:01:A8:BC:E2:2E:DB:63:30:49:5F:63:23:BA
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 01975121AC6F5062B66598F2FB27221342FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 0A34
Signing time: Sun 08 Jun 2025 20:00:50 +0000
Manifest this update: Sun 08 Jun 2025 20:00:50 +0000
Manifest next update: Mon 09 Jun 2025 20:00:50 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: qgJ/iFTiujXgJiMwqlC6BWnNdW4JfDFtPTTNRi/TL6I=)
2: k9VkkHu7wqpz0IelVxE8bU-qY6o.roa (hash: vCMb7FvkUh1quiKigDU5pU3f6Rl+/OZ8cn/L/kTas88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:21:ac:6f:50:62:b6:65:98:f2:fb:27:22:13:42:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: Jun 8 20:00:50 2025 GMT
Not After : Jun 9 20:00:50 2025 GMT
Subject: CN=561f2e9f1d406301a8bce22edb6330495f6323ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7e:df:fc:0c:f3:bf:dc:d6:53:fc:45:12:b9:
ec:87:9e:e4:37:b4:3d:7c:36:12:79:2c:95:12:51:
1a:03:83:7d:12:0c:28:4b:ca:6b:0f:45:aa:ec:d0:
77:6b:0f:e8:41:bf:5b:30:cc:2b:44:41:45:b7:c6:
12:12:9a:9e:e8:67:8f:eb:c7:f9:6e:07:23:9b:b1:
a7:51:ab:31:b7:ef:fe:e2:16:89:ff:70:48:5b:09:
cf:d6:8f:ea:3d:20:1e:a4:e2:a8:2d:a3:a4:3b:a3:
e7:7a:2d:f6:26:a8:1b:36:6c:bf:4f:0c:bf:91:b8:
38:fd:27:27:04:6e:80:ab:bb:10:2b:ca:e3:8d:89:
04:ea:0f:1f:d2:4d:68:41:72:e1:8e:9c:e1:e2:65:
db:15:c5:c8:14:4b:e8:fa:a8:a4:68:e9:db:dc:b2:
da:11:20:bb:c2:4b:35:98:54:34:2d:80:34:46:43:
c4:30:d0:74:52:43:57:6f:d0:f8:f3:75:72:15:b1:
34:27:de:27:15:ba:91:b8:c8:01:94:41:ea:51:c5:
3f:78:0d:de:40:2b:8c:d0:3c:d5:93:76:54:4d:1d:
6e:22:6b:91:94:6c:35:47:60:0f:be:fe:22:b0:39:
ba:03:a3:90:9b:16:8e:0c:2f:9b:c5:f2:e9:86:98:
b1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1F:2E:9F:1D:40:63:01:A8:BC:E2:2E:DB:63:30:49:5F:63:23:BA
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:e3:70:14:83:33:91:be:3e:db:9a:39:a6:93:0f:05:40:79:
94:f0:85:1f:88:69:83:c4:5b:77:fe:36:e3:cf:8a:f1:61:bc:
67:48:67:49:80:7f:41:0a:02:9e:40:a6:9d:a3:44:bb:19:13:
41:4e:00:70:89:c8:ca:a1:f1:52:33:4e:16:7e:ab:44:f4:12:
ea:b4:f0:bb:b4:d3:ec:7b:12:8b:57:6a:9e:4c:6b:dd:b0:9e:
ec:32:e3:4c:0b:8a:2e:c8:fe:d0:0b:f9:a7:e3:00:e9:9f:d0:
4e:bb:97:bc:ce:ed:9c:bd:66:56:59:b2:30:7d:ac:60:81:da:
c6:5d:b4:a5:76:69:ab:76:85:11:5f:4b:3a:16:8f:a1:5f:c0:
46:12:5f:98:68:10:24:10:41:36:d9:16:58:05:9b:17:79:54:
97:e0:57:92:00:58:e5:c8:4f:bb:c7:be:eb:87:af:b0:fa:61:
36:c4:f8:84:6b:4a:4a:8c:ae:e5:9f:8e:fa:0e:27:94:b4:d8:
aa:91:75:84:c8:f0:51:2d:25:39:51:08:55:a3:ea:2d:11:43:
23:6e:8b:49:7e:70:b9:f7:57:14:66:8a:7c:92:0b:14:c0:5c:
5d:6d:ac:8f:b9:2a:63:05:30:a4:ef:58:7e:6c:df:06:21:88:
07:84:0b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:16:18 2025 by rpki-client