Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
File: H7XBu67UTItq4_K1ZtAcwljfws4.mft (raw, json)
Hash identifier: 21BnaW7nedj4eQwKjf4I6kmKrhTi429x09SRD0zlqMw=
Subject key identifier: 47:BB:86:50:AD:35:79:B0:B4:BF:51:44:92:22:03:D2:29:9D:82:50
Authority key identifier: 1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
Certificate issuer: /CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Certificate serial: 01974779AE6C306A3975A300184F9F49AE6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
Manifest number: 1102
Signing time: Fri 06 Jun 2025 23:00:46 +0000
Manifest this update: Fri 06 Jun 2025 23:00:46 +0000
Manifest next update: Sat 07 Jun 2025 23:00:46 +0000
Files and hashes: 1: H7XBu67UTItq4_K1ZtAcwljfws4.crl (hash: hpqOfmMwT4dNnGvHWu4J2CQjo07KV1nGjpIyTtmEerU=)
2: MEWWY0epwShfEJbfHo9y4r51GYY.roa (hash: SGRcwmohz12gMReH4Cn9V8oKzsRQ7LvpKURqTZBMtCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:ae:6c:30:6a:39:75:a3:00:18:4f:9f:49:ae:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Validity
Not Before: Jun 6 23:00:46 2025 GMT
Not After : Jun 7 23:00:46 2025 GMT
Subject: CN=47bb8650ad3579b0b4bf5144922203d2299d8250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ed:78:51:b5:31:06:ca:fd:c2:53:4f:13:23:
44:c0:63:62:73:ed:1e:4b:71:d7:d2:24:5d:a4:57:
41:34:94:22:25:da:14:6b:7f:2d:ed:16:ef:a8:79:
db:9e:f2:f4:e8:b3:ad:11:6f:f3:86:6a:dd:20:06:
91:1e:57:85:c3:64:a5:39:e7:e3:c4:f3:db:2c:ae:
a0:96:e2:0b:32:aa:7d:0a:53:be:da:ce:de:e4:8f:
b7:b9:76:36:48:d2:bd:43:1f:fe:3f:07:cd:3b:df:
9b:6a:b1:ca:33:79:d2:ac:89:58:db:08:84:d2:7a:
7f:0e:f4:0b:b0:fa:25:f2:f3:7c:14:61:f6:b7:9e:
ae:d7:2f:de:c8:8f:5a:9f:14:d8:ad:c9:89:d6:fc:
e0:b9:71:44:59:eb:0e:e3:46:09:29:6f:04:46:0d:
61:d7:30:b3:c8:cb:c3:49:61:c1:86:20:a6:60:4d:
4b:8a:d0:66:f6:3c:76:73:fb:3f:95:d5:61:fe:25:
76:ff:33:5e:4a:41:d9:6c:4f:0e:8e:b3:74:b5:7a:
3b:6a:4e:7d:15:33:84:ff:e9:98:c6:36:fa:e5:ea:
bc:c5:0f:62:0f:96:b9:df:be:4c:c6:fa:2a:ec:db:
7b:cf:49:c6:55:91:27:6c:6c:8e:bf:d9:b2:2c:25:
07:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:BB:86:50:AD:35:79:B0:B4:BF:51:44:92:22:03:D2:29:9D:82:50
X509v3 Authority Key Identifier:
keyid:1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:a5:14:6d:a7:e6:94:70:a3:f5:df:25:cb:b4:03:20:c0:69:
d7:88:65:9f:54:7b:c6:f0:14:62:28:ea:b1:f2:0a:2d:85:9d:
29:bb:c7:57:a2:5a:df:80:c0:a0:3c:39:fc:c1:9f:76:82:77:
01:6b:11:16:d7:98:ba:0c:05:79:33:b1:0a:bc:5e:65:38:a2:
13:e5:be:73:0e:13:97:2d:41:a8:19:e4:a3:6f:49:1a:d9:1b:
42:6b:53:dd:59:62:24:4e:81:ac:cd:92:76:30:84:4e:d5:aa:
10:3c:46:bb:68:a3:a1:50:36:1d:9a:b9:e2:dc:99:85:ae:2c:
cb:a5:6e:8f:0b:35:1e:70:48:c2:26:8f:b0:de:b4:48:98:34:
84:51:44:4a:71:8a:b4:a8:05:37:d0:62:6e:74:6a:1f:f5:2b:
7d:7b:f2:9a:9b:30:d4:44:bc:48:11:c3:9d:6d:4f:30:4c:ec:
cd:b8:97:25:8d:7d:0b:0d:37:34:0c:66:70:d1:6c:1f:06:88:
42:5d:d7:d4:93:f0:dd:47:09:9d:a8:96:ab:cb:7d:fd:4b:54:
21:75:a0:1b:f7:01:70:58:d0:ad:fa:d4:bd:f3:e4:39:6c:ab:
6b:c2:82:1a:22:75:4a:ee:e2:68:92:b2:54:88:cc:2a:ca:71:
22:b1:94:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:38:42 2025 by rpki-client