Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
File: FNlKazCSDR96LRUXG1CPkiZkduM.mft (raw, json)
Hash identifier: S0ITSf2wKDb/naszwZsSiKgWe5TBHxDfDeAlQ6sRh7o=
Subject key identifier: 8B:51:1A:DC:8A:90:7B:4D:39:13:D4:4A:B8:3B:40:5A:1F:F2:F5:9B
Authority key identifier: 14:D9:4A:6B:30:92:0D:1F:7A:2D:15:17:1B:50:8F:92:26:64:76:E3
Certificate issuer: /CN=14d94a6b30920d1f7a2d15171b508f92266476e3
Certificate serial: 019848C0292949E7136630638B40FB26D95D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FNlKazCSDR96LRUXG1CPkiZkduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
Manifest number: 1591
Signing time: Sat 26 Jul 2025 22:00:09 +0000
Manifest this update: Sat 26 Jul 2025 22:00:09 +0000
Manifest next update: Sun 27 Jul 2025 22:00:09 +0000
Files and hashes: 1: FNlKazCSDR96LRUXG1CPkiZkduM.crl (hash: 62vOSblEBRpa+quHoPs+ylYdBWuy24Js5CfxZozW7AY=)
2: Zlb5bVUIDERXo4xdSGjVMQ8TdNA.roa (hash: stdZJ0N6TnO5P8nlAhBGBijPlJ/mbcLMM3mJJx7zrV0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
rsync://rpki.ripe.net/repository/DEFAULT/FNlKazCSDR96LRUXG1CPkiZkduM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 15:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:c0:29:29:49:e7:13:66:30:63:8b:40:fb:26:d9:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14d94a6b30920d1f7a2d15171b508f92266476e3
Validity
Not Before: Jul 26 22:00:09 2025 GMT
Not After : Jul 27 22:00:09 2025 GMT
Subject: CN=8b511adc8a907b4d3913d44ab83b405a1ff2f59b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ad:e1:92:39:29:99:e4:9c:da:e1:90:75:6b:
1d:44:e0:24:a7:49:ec:69:97:7f:f2:ad:5b:c4:d3:
a7:8b:27:28:9f:0a:15:81:08:87:8a:ef:5f:46:3a:
92:07:84:04:4b:b3:46:9a:9e:ee:cb:70:03:95:a2:
97:a3:49:9c:4a:36:4e:32:5e:7e:08:1f:c4:49:7a:
44:a6:50:db:85:27:54:46:b6:65:44:c7:ae:88:b2:
de:31:72:76:79:67:b3:8a:01:d5:a4:cb:dd:ff:2d:
51:54:c7:0e:cc:de:d3:87:21:3d:6c:fd:fa:b8:46:
4b:17:ba:e9:24:e1:e2:f2:51:2a:09:ca:b4:e5:e9:
7b:eb:3e:e6:ce:62:5f:2d:d5:1a:89:36:a5:36:24:
8c:98:b5:73:1a:b1:16:14:fa:f3:e1:47:de:37:05:
8c:95:58:33:51:fc:36:e7:23:e8:87:89:7e:f9:68:
64:9e:95:77:40:84:76:4c:6a:0b:a8:58:f1:b5:ce:
df:40:f3:aa:6a:a0:9e:f4:b0:01:b2:60:60:b9:82:
28:a5:8a:f9:c4:f2:bc:8e:bd:0d:ac:48:d1:da:c1:
10:dc:97:40:e3:0c:f2:04:83:9a:d3:e0:84:f3:0c:
41:d2:c9:df:80:20:82:d4:61:52:c0:b4:01:1a:2b:
c1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:51:1A:DC:8A:90:7B:4D:39:13:D4:4A:B8:3B:40:5A:1F:F2:F5:9B
X509v3 Authority Key Identifier:
keyid:14:D9:4A:6B:30:92:0D:1F:7A:2D:15:17:1B:50:8F:92:26:64:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FNlKazCSDR96LRUXG1CPkiZkduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:25:a4:29:71:35:c3:1e:18:a0:84:e9:44:31:fa:63:54:c4:
8b:ae:c1:5f:31:ac:71:bd:9d:79:f6:be:db:d5:88:0b:1b:19:
b9:ab:50:73:64:23:7d:22:de:41:9e:48:85:50:cc:0c:77:ad:
23:c9:42:40:06:3b:58:c0:67:45:99:6a:b6:59:2a:ce:06:cb:
11:c7:95:a0:79:a5:ea:13:65:ea:ca:e9:ba:ff:ea:22:83:13:
ff:a0:5f:be:74:c7:e8:43:38:23:5f:7c:c7:73:74:27:5c:20:
08:8f:7a:d2:df:94:9b:21:dd:d1:86:c0:dc:88:99:4e:b7:02:
3a:b6:4b:61:6e:f2:1d:d1:41:10:67:d5:87:71:15:61:46:f1:
f8:ea:ad:df:ed:2d:54:e2:a0:6c:e5:a1:b9:e1:03:95:84:c4:
50:53:46:8e:63:2d:0f:a0:e0:df:14:1a:d9:6f:ba:77:ad:d6:
24:0c:f3:c5:69:87:0b:a2:f4:59:84:a0:e2:de:7b:68:40:7c:
b7:8f:36:24:0a:76:38:9a:13:22:7a:0f:bd:25:90:36:f5:c1:
78:34:c0:6c:61:bf:d5:dc:23:2f:b7:2f:fa:fa:8c:3b:3b:bb:
ba:ad:b7:d0:00:ac:93:84:61:fa:18:ef:bc:13:c9:61:24:6c:
33:c3:cf:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 00:47:22 2025 by rpki-client