Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
File: pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft (raw, json)
Hash identifier: eg+rQ5FsM91JvNn0jG4XqtouqYfI1P+v8jwJm0bQhq0=
Subject key identifier: 72:A6:96:39:FD:02:95:77:AD:8C:4B:7B:06:C6:A5:7F:0E:10:A7:AF
Authority key identifier: A5:AF:C5:43:5F:CB:BE:34:8D:2B:56:01:6A:7B:C7:BC:AC:F1:B8:66
Certificate issuer: /CN=a5afc5435fcbbe348d2b56016a7bc7bcacf1b866
Certificate serial: 01974CD6C3BBD12ADEC3EDA1F98D9D558505
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
Manifest number: 094A
Signing time: Sun 08 Jun 2025 00:00:32 +0000
Manifest this update: Sun 08 Jun 2025 00:00:32 +0000
Manifest next update: Mon 09 Jun 2025 00:00:32 +0000
Files and hashes: 1: L_XmzwrYuu-3rRY_iMRM0yQHIg4.roa (hash: RmMXdLfBhblx+m1KktkkN/nQ0YOW2Tp0s4LZY86DblA=)
2: pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl (hash: SOe+CPKY12Jw3diFGbzx2wbsfSZ53TjDXJpK3snqsik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 00:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d6:c3:bb:d1:2a:de:c3:ed:a1:f9:8d:9d:55:85:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5afc5435fcbbe348d2b56016a7bc7bcacf1b866
Validity
Not Before: Jun 8 00:00:32 2025 GMT
Not After : Jun 9 00:00:32 2025 GMT
Subject: CN=72a69639fd029577ad8c4b7b06c6a57f0e10a7af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:96:9c:cf:fc:16:e1:e7:f1:8d:4d:81:57:46:
33:8f:62:09:0c:e7:b2:36:d2:94:65:d3:47:c2:14:
52:0e:c8:6e:87:c3:40:ef:e6:fd:2d:2d:27:5d:db:
33:71:3e:61:43:7c:54:11:1f:9d:5f:ab:5a:8a:ef:
21:ca:73:fb:b2:0f:27:42:f8:b9:70:fb:a1:cc:9d:
19:8d:97:f6:53:e2:82:22:ee:f0:74:71:1c:6b:3c:
09:b8:16:cd:52:8e:6e:5c:75:bb:4b:c1:b5:9b:54:
00:b6:3d:4b:c6:65:d1:43:a8:89:3e:df:0c:5b:c5:
b8:c8:8c:e5:68:b8:6b:25:b1:20:63:6f:70:d8:32:
ae:fc:7a:31:b4:7d:13:2f:7c:40:85:80:27:dd:9a:
7a:39:20:bc:91:3e:25:03:fc:5a:b5:0a:7b:27:40:
54:f4:87:ba:dd:d0:cd:ff:8e:33:38:87:38:46:b3:
86:fa:aa:7c:33:0b:c0:2b:c5:21:34:d3:db:08:85:
14:b5:fd:c6:79:49:06:a5:80:21:57:cd:c5:a2:3e:
4d:c3:0e:32:ff:55:d3:23:49:52:9b:3d:2d:9c:0f:
59:50:f2:79:0c:ed:2d:ce:3c:81:c6:8f:52:7c:ac:
88:18:3c:ed:f6:51:46:92:e9:71:17:bb:31:c8:46:
59:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:A6:96:39:FD:02:95:77:AD:8C:4B:7B:06:C6:A5:7F:0E:10:A7:AF
X509v3 Authority Key Identifier:
keyid:A5:AF:C5:43:5F:CB:BE:34:8D:2B:56:01:6A:7B:C7:BC:AC:F1:B8:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:b0:26:da:7b:1e:69:67:60:00:e7:79:07:87:eb:55:af:d9:
b3:25:ec:81:03:4a:ac:47:79:6d:eb:bb:c3:f0:c5:84:2e:5a:
42:f5:9f:a4:0f:d9:16:7b:b4:6a:e4:01:b2:a2:03:ac:54:ab:
05:25:bd:82:f6:94:61:fa:da:27:1e:32:44:02:1c:24:b7:58:
01:99:2c:26:29:a7:15:1c:f2:67:03:20:43:f0:c8:d8:2a:64:
42:9c:72:e6:4e:71:73:11:2a:8a:fc:3b:b3:5f:28:bd:be:ec:
c4:cb:f7:b3:1d:5c:23:e0:54:78:66:d9:98:0c:74:4d:2c:ff:
0b:47:a1:07:96:f8:a4:62:4c:f0:91:62:bb:6d:c8:19:0f:82:
1f:52:a7:fa:8f:f3:85:fb:2e:c2:ae:44:0d:e7:95:2b:6f:81:
61:61:b5:df:57:ad:be:5f:8c:50:99:0e:e3:13:b7:3a:21:e0:
2c:c1:de:02:25:15:d4:13:d7:26:0e:02:d1:7a:fb:00:7b:02:
9c:b3:8c:c1:46:ce:4e:56:3a:ff:aa:8e:e1:41:86:ba:4e:03:
00:d5:dd:22:0c:9e:fd:26:32:de:e2:60:ac:b5:34:5e:cc:8b:
9a:be:e1:28:95:a1:b2:78:17:f1:50:49:c7:73:0b:03:86:64:
1a:85:18:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:16:31 2025 by rpki-client