Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
File: fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft (raw, json)
Hash identifier: nrUUOAhH3uqTO8k3xGJ88jyH18888NDTdZxOWzMzjRQ=
Subject key identifier: 17:4B:97:B0:13:73:BB:D3:E0:86:67:E9:C3:9B:11:CD:B0:72:3B:C0
Authority key identifier: 7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
Certificate issuer: /CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Certificate serial: 01963EAF7DBC846EBCBF079ED6C8AA44DA65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
Manifest number: 033B
Signing time: Wed 16 Apr 2025 13:00:10 +0000
Manifest this update: Wed 16 Apr 2025 13:00:10 +0000
Manifest next update: Thu 17 Apr 2025 13:00:10 +0000
Files and hashes: 1: 7IU0huufqQxYxItg8zFZPOwzYRM.roa (hash: I4C8M2jxvU1m60xK7AT2Uz7jOA8Cd0LrtZ3lmEnNBLc=)
2: fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl (hash: MoqKMEou1SU/GuFXpOf7BTFzoy+iV1MrDamMkus1M0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:af:7d:bc:84:6e:bc:bf:07:9e:d6:c8:aa:44:da:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Validity
Not Before: Apr 16 13:00:10 2025 GMT
Not After : Apr 17 13:00:10 2025 GMT
Subject: CN=174b97b01373bbd3e08667e9c39b11cdb0723bc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dc:c2:b6:3c:1f:3a:c0:a6:b2:5f:5e:8c:60:
f3:9c:f9:07:cb:f9:6e:75:74:16:21:ff:5f:08:42:
c9:33:95:2c:4b:09:03:9f:7a:dc:b2:77:cd:62:a8:
a0:10:72:f4:d4:24:8c:f8:25:f5:58:4f:a6:64:2e:
41:91:16:78:db:b3:93:b2:e9:74:69:ba:95:2a:a4:
e0:2d:59:90:f0:8c:4e:a4:c6:ef:11:3b:1d:79:f7:
82:90:79:ef:b0:95:5b:cc:b0:f5:89:6e:dc:19:17:
ed:71:0b:49:c0:61:22:38:de:fb:0c:d6:12:3d:c0:
4f:48:7e:05:2f:61:00:4a:f1:03:1a:da:63:34:81:
67:29:37:bb:b4:6d:81:46:d5:a8:ef:c7:6c:96:7b:
5b:f9:bd:bf:1e:20:19:ff:d0:d6:f0:5a:f8:52:6f:
6b:1c:8e:af:5a:8b:4e:4b:d8:87:47:30:6f:3c:d7:
43:9e:3c:0b:1b:a6:8b:01:e4:32:d3:ab:ca:fd:8d:
dc:7a:3e:27:7e:77:69:66:e2:97:18:e3:1a:7d:38:
4d:6b:2f:85:f6:58:59:95:a6:90:f8:dd:6c:a6:7f:
02:86:27:3f:09:12:3d:e8:40:1c:6e:16:8f:8d:2d:
c5:d3:c5:40:a8:08:c9:fb:0f:ae:9f:8d:ae:90:f3:
d7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:4B:97:B0:13:73:BB:D3:E0:86:67:E9:C3:9B:11:CD:B0:72:3B:C0
X509v3 Authority Key Identifier:
keyid:7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:ab:b3:b9:de:76:a8:13:5f:c3:95:0c:80:2a:80:14:8f:78:
cf:d6:25:54:a5:e6:fc:2c:cc:b6:84:1a:cd:17:d7:32:06:2d:
45:b3:0e:39:1f:ec:c4:2b:50:88:21:07:4f:74:11:19:f5:d3:
9b:5b:a3:6d:ec:95:34:f2:f8:e9:5c:42:68:ef:41:34:b3:89:
cc:c7:43:7d:d5:be:1f:17:90:f4:0e:d6:6e:e7:da:49:73:e3:
82:40:88:eb:fe:f1:f9:da:32:30:0d:2d:7f:44:af:f2:dd:8e:
d1:3c:29:96:00:fc:93:b5:f7:cc:9a:b2:21:81:37:35:da:d6:
f5:d4:51:b9:d3:3d:c4:24:82:3a:99:18:95:1d:d5:8b:28:1f:
a9:91:dc:86:45:b6:59:7f:40:4a:71:e1:61:42:41:00:2b:ae:
94:b8:10:a2:7e:cd:36:fe:1c:ed:ae:5b:57:b7:a5:77:44:f5:
47:c6:ac:dd:d0:e5:44:ff:b3:95:d6:1d:0f:a2:3d:23:6b:3b:
90:70:50:2b:7e:19:65:07:f2:a6:4b:4f:0f:a1:b2:76:13:0c:
79:ca:8a:a0:06:78:75:5e:67:61:7f:e7:96:9d:eb:88:f4:85:
c8:17:de:f5:b5:84:24:aa:40:75:8d:e8:47:92:db:13:75:be:
e3:2c:bf:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:21:31 2025 by rpki-client