Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
File: fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft (raw, json)
Hash identifier: FARf1VOSUZBvRfOPF8AGRr35Y/4OxtCnVESzqM8Hu3E=
Subject key identifier: DF:48:36:8D:22:3C:78:18:3F:B2:F5:FB:DC:0C:7B:7D:D1:90:20:1B
Authority key identifier: 7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
Certificate issuer: /CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Certificate serial: 0197643A46B38434799CCF07C1C2E0415168
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
Manifest number: 03D3
Signing time: Thu 12 Jun 2025 13:00:30 +0000
Manifest this update: Thu 12 Jun 2025 13:00:30 +0000
Manifest next update: Fri 13 Jun 2025 13:00:30 +0000
Files and hashes: 1: 7IU0huufqQxYxItg8zFZPOwzYRM.roa (hash: I4C8M2jxvU1m60xK7AT2Uz7jOA8Cd0LrtZ3lmEnNBLc=)
2: fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl (hash: Q76/sRpYP655aoSNXYnD5gF3eQMR7boHD+DMyIRqWlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:3a:46:b3:84:34:79:9c:cf:07:c1:c2:e0:41:51:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Validity
Not Before: Jun 12 13:00:30 2025 GMT
Not After : Jun 13 13:00:30 2025 GMT
Subject: CN=df48368d223c78183fb2f5fbdc0c7b7dd190201b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:50:56:b5:11:15:cd:fc:27:d7:02:18:4b:c1:
b6:64:33:9d:36:e7:4a:71:23:37:59:3b:ff:fe:4c:
10:b9:8c:56:b7:14:29:30:03:ef:5f:2b:a6:0d:48:
36:c7:e3:19:8f:b1:ca:39:b5:eb:16:53:08:fe:64:
8d:8d:8f:27:43:63:06:32:5b:ba:08:ed:d4:f2:90:
3f:b9:b9:e6:79:e6:04:86:cd:6f:57:d4:51:a2:1c:
93:eb:16:16:bb:90:81:7c:39:ba:4a:7c:eb:15:55:
78:3e:13:9c:75:03:29:5d:ef:ed:f9:69:5f:45:d1:
65:b7:e9:a7:78:84:f7:03:6c:fb:73:fc:ac:35:85:
6d:99:47:38:74:3d:00:11:bb:c4:e7:fe:1c:bf:f1:
88:f8:0b:58:45:8e:f9:17:85:b5:43:7b:bc:e4:29:
04:1d:87:bb:38:76:2c:ae:f0:61:80:f1:ff:6b:72:
4e:30:1f:ef:92:06:75:ff:de:99:ae:09:5a:20:4f:
df:aa:a6:b9:b0:89:30:c9:a5:94:72:2f:8c:4f:13:
dd:1f:1d:ba:e3:d7:6e:a0:e7:c9:39:a9:b3:f3:48:
94:9a:38:bf:62:40:25:82:ef:e1:f6:7e:b6:b8:98:
20:19:a6:5e:47:8b:1d:5e:d9:b4:1a:76:9e:7f:07:
66:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:48:36:8D:22:3C:78:18:3F:B2:F5:FB:DC:0C:7B:7D:D1:90:20:1B
X509v3 Authority Key Identifier:
keyid:7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:2a:84:8d:59:27:d5:4e:c5:f8:84:fa:07:0f:5e:61:21:88:
14:58:39:b7:a5:e0:d6:b4:ba:de:dd:5b:41:d1:96:97:2c:4a:
db:b6:ad:82:86:90:48:9d:b2:a3:4a:cb:69:17:15:f6:a9:37:
1c:60:70:ae:6c:20:44:c3:ae:a0:0c:fd:63:7b:87:1b:b9:04:
a9:b3:10:0c:a1:b1:b6:e5:49:cb:71:ba:86:7f:e0:64:cd:13:
fa:c8:24:4c:5e:0b:d3:a9:b3:10:87:fe:b4:b8:48:98:70:1c:
7f:ef:b4:37:f8:9d:33:62:42:8e:b9:76:12:db:d9:49:3c:f3:
3e:4d:09:82:62:88:07:cc:b4:13:3c:de:66:4b:f3:9e:11:06:
4e:51:e4:4f:68:2d:d8:ce:06:47:40:9a:93:9e:5d:11:91:39:
06:69:f5:87:af:65:3d:5a:9c:a7:66:6b:59:ce:16:6a:d5:2b:
1c:64:97:db:a9:83:cb:f0:bf:88:1d:4a:dc:9b:af:ef:bb:f6:
08:7c:42:b8:ef:2b:e9:13:8f:6e:5a:a9:ec:50:20:ea:e1:e5:
9b:94:9f:21:55:74:0d:5e:74:89:f5:9b:b3:fc:b8:78:89:b2:
b6:b8:ef:78:72:f7:f9:23:5b:29:ab:5d:10:1e:0a:61:fd:bc:
05:2e:f9:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 18:00:03 2025 by rpki-client