Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
File: fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft (raw, json)
Hash identifier: 0+bKoWhXkG61GaGwUJTKcQveBne/OALq1MIfNExw7lQ=
Subject key identifier: E2:13:A2:37:80:4D:BB:06:31:EB:F5:31:7A:67:F8:35:9C:E0:A7:8F
Authority key identifier: 7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
Certificate issuer: /CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Certificate serial: 019758A3F83DB586F28BCD687F7A938E0811
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
Manifest number: 03CD
Signing time: Tue 10 Jun 2025 07:00:30 +0000
Manifest this update: Tue 10 Jun 2025 07:00:30 +0000
Manifest next update: Wed 11 Jun 2025 07:00:30 +0000
Files and hashes: 1: 7IU0huufqQxYxItg8zFZPOwzYRM.roa (hash: I4C8M2jxvU1m60xK7AT2Uz7jOA8Cd0LrtZ3lmEnNBLc=)
2: fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl (hash: MfWaSg0X6b9RcgJOcTGpvZ4lRpqI64IeOQBgQGDLckg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 07:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:a3:f8:3d:b5:86:f2:8b:cd:68:7f:7a:93:8e:08:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Validity
Not Before: Jun 10 07:00:30 2025 GMT
Not After : Jun 11 07:00:30 2025 GMT
Subject: CN=e213a237804dbb0631ebf5317a67f8359ce0a78f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e7:6b:58:05:f0:b0:3f:6a:f4:40:8b:d0:a5:
bd:3d:82:8f:11:48:dd:c7:37:7a:fb:26:91:b4:42:
32:40:05:7f:6b:14:23:1e:8e:a9:4d:e8:c6:c8:1c:
91:12:5a:50:36:12:44:a2:fe:90:21:41:41:78:c5:
a6:cc:c3:79:99:9c:ed:ab:64:2f:2e:af:87:93:77:
ee:74:a9:cc:f6:b7:e8:2c:ef:5e:2c:77:0b:8e:ff:
32:ab:c7:e7:51:a6:d2:e3:6a:ae:3b:ce:76:95:ba:
6c:66:9e:e3:15:cc:85:e9:f8:d4:02:f4:04:1e:f5:
47:8d:be:75:66:6a:ff:68:6e:5d:d1:df:8b:ce:9e:
f1:3c:cb:ac:8f:65:53:51:e4:c3:ed:ba:bf:bf:0b:
f8:f1:07:1e:f5:81:b6:ca:ef:c4:9e:22:ea:ae:d0:
b3:99:32:52:85:bb:07:af:0b:06:d8:fb:9c:ec:e8:
3b:28:0d:18:6f:74:73:c9:01:8c:31:aa:31:80:55:
4b:fe:ab:b7:c8:ad:a8:1e:f6:d2:ca:9d:c8:7f:b9:
0c:70:c7:d8:e4:64:c7:fa:e9:52:fe:82:d0:d0:b3:
dc:34:66:0b:a9:ad:db:38:de:68:d2:80:16:12:e3:
0c:1f:97:57:88:92:c1:51:c1:62:27:51:38:89:ab:
a3:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:13:A2:37:80:4D:BB:06:31:EB:F5:31:7A:67:F8:35:9C:E0:A7:8F
X509v3 Authority Key Identifier:
keyid:7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:cc:54:d6:01:c1:0b:5d:5c:bc:1b:af:b8:f5:48:24:bd:92:
19:ac:51:a7:f4:4f:b4:3e:f4:ca:89:c8:d6:30:93:61:b2:53:
b5:3b:f4:73:19:8b:42:58:04:a2:8c:82:95:82:fc:fd:f3:57:
e8:16:59:ee:b1:f3:a0:15:38:d7:dc:f0:06:d6:91:42:99:42:
ae:0a:78:72:f7:69:19:7d:c3:4f:5e:ce:42:2e:fe:3e:31:09:
b7:f1:ec:9a:d5:ee:67:78:0a:1a:5a:a7:9f:20:6a:06:9b:9a:
76:07:e3:9b:7f:94:b9:f6:ad:fa:94:7f:de:39:90:2e:e6:ac:
ee:83:59:da:b1:1b:95:80:ec:b4:8b:3b:d7:bf:16:62:37:cb:
8b:92:9c:a3:87:60:1c:97:94:c6:e5:69:77:6c:6f:ac:c6:d2:
bf:4b:3a:51:68:8c:3b:0e:ee:b3:5a:2b:07:70:70:2e:19:56:
9a:57:6e:bf:22:c8:5c:b6:fc:3a:f2:a3:2c:7d:08:75:a7:8b:
b1:99:30:4e:48:8c:e2:ad:d9:e6:4b:ec:39:7b:6e:da:e1:eb:
12:9b:1b:dc:ef:74:51:49:f9:53:4f:b5:1e:0c:91:79:44:ff:
91:b3:ec:b3:b4:ac:17:5d:dc:0e:38:d1:78:5a:a8:a6:af:18:
91:04:bb:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 16:29:08 2025 by rpki-client