Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
File: rFPL63FQhLMioaFJyW4JxA7W2IM.mft (raw, json)
Hash identifier: FiPe7U+PgQiSGML+K2V4laQqOHCfGY2rBf5CwPN+qpg=
Subject key identifier: 7A:A8:2D:5E:08:E1:B7:C0:79:E3:48:54:42:23:C7:3C:C0:F4:D1:23
Authority key identifier: AC:53:CB:EB:71:50:84:B3:22:A1:A1:49:C9:6E:09:C4:0E:D6:D8:83
Certificate issuer: /CN=ac53cbeb715084b322a1a149c96e09c40ed6d883
Certificate serial: 01974B56862ACC8970E61B9D3738F55F375C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
Manifest number: 11A4
Signing time: Sat 07 Jun 2025 17:00:50 +0000
Manifest this update: Sat 07 Jun 2025 17:00:50 +0000
Manifest next update: Sun 08 Jun 2025 17:00:50 +0000
Files and hashes: 1: Wfce3ZtHFc99tmFyN64Q-vZ2RpA.roa (hash: Y3X9Ri7kJ6o/ebs+JUXNiJ+ZA7lhHw1uv9ydtQHMGRI=)
2: rFPL63FQhLMioaFJyW4JxA7W2IM.crl (hash: slVyqwBdU7WIUCfYOulHN6sRz99y0Ymbvp9Z3pOTmdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 17:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:86:2a:cc:89:70:e6:1b:9d:37:38:f5:5f:37:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac53cbeb715084b322a1a149c96e09c40ed6d883
Validity
Not Before: Jun 7 17:00:50 2025 GMT
Not After : Jun 8 17:00:50 2025 GMT
Subject: CN=7aa82d5e08e1b7c079e348544223c73cc0f4d123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9b:ec:c3:d9:c9:b1:58:94:0d:3d:f5:08:8d:
af:b7:3f:63:f8:c3:4e:f2:5c:51:4a:bd:6c:62:9a:
02:cd:36:42:ee:74:b2:11:91:91:86:b1:55:77:5f:
53:72:a3:fb:e7:47:1a:ab:c9:2c:65:c1:5a:d7:92:
82:52:4b:7a:5f:7b:86:59:7c:82:cc:31:4c:15:91:
fb:04:39:23:4f:7a:49:d2:7b:3f:27:df:33:98:ea:
0e:11:35:d5:19:0f:b8:c6:83:d4:98:6a:5d:99:f9:
f2:4b:54:9f:86:26:18:04:29:b8:ce:e1:ca:87:77:
02:46:2e:1f:d6:f7:5a:93:b4:d3:06:43:63:38:ee:
7e:80:b6:ea:6d:1c:34:bd:3a:b1:9c:56:0f:41:2d:
32:4e:80:ab:b3:8f:46:91:86:9a:36:43:a8:e2:62:
39:6e:de:da:c1:e0:fe:ec:9d:01:17:1f:98:1f:54:
c8:32:3c:72:0a:dc:7f:3e:ba:4d:07:e8:ee:dd:e0:
d6:9d:ea:f8:d2:ae:0d:2b:aa:58:d8:44:dd:76:18:
30:d1:7e:b9:b5:76:15:5a:97:ee:83:e7:52:e3:d4:
e8:c1:48:43:cc:f4:ac:9f:c7:f4:b5:14:39:04:fa:
38:b8:ea:a8:b7:e9:5b:4b:bb:9d:a3:bf:dc:65:3f:
ff:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A8:2D:5E:08:E1:B7:C0:79:E3:48:54:42:23:C7:3C:C0:F4:D1:23
X509v3 Authority Key Identifier:
keyid:AC:53:CB:EB:71:50:84:B3:22:A1:A1:49:C9:6E:09:C4:0E:D6:D8:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:88:0a:b7:03:76:ba:fb:32:8f:4e:13:94:03:41:a6:1b:f7:
03:71:0d:51:a3:bb:79:0a:c9:5e:37:e2:33:66:c8:5f:a6:26:
d6:77:bd:12:6d:cf:00:fa:32:42:97:7a:7c:22:af:8e:e1:51:
df:41:e4:18:60:48:5e:1c:b2:fb:2b:0c:df:4f:f6:4e:52:e4:
90:b0:33:56:00:64:e7:95:1f:e1:a2:dd:9b:10:58:06:62:b3:
6a:1f:30:14:0d:68:c9:fa:ab:13:9c:82:19:0e:97:77:0d:d5:
bf:ca:d0:ff:58:72:a4:bf:33:19:bf:10:84:92:5b:f8:08:04:
57:3b:2d:d7:0d:c4:70:d2:ce:b9:1e:4c:d6:5a:da:d4:34:2a:
f9:71:0a:b4:d6:4b:b6:c9:11:42:53:e3:d6:c7:92:63:8f:83:
e3:6e:a3:fe:54:ee:5d:f0:a0:a4:98:c1:e9:87:20:57:03:5e:
77:bd:cf:18:0f:6c:a9:7a:26:e0:30:b8:95:36:6d:bf:f5:52:
ea:9c:1c:8c:96:de:b3:a0:2b:fa:59:9e:4e:a8:32:4c:20:a6:
2b:5b:e2:0a:a8:44:46:54:b3:10:ff:f3:e3:cd:8a:60:84:01:
cf:db:70:79:57:c3:6d:31:43:41:66:15:d3:be:58:0f:1c:31:
fb:66:3b:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:10:25 2025 by rpki-client