Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
File: FyKJy7gXn9846fUyyc1ykbT1xC0.mft (raw, json)
Hash identifier: oyhIRrx/KTgfvTVbMbL60Yl6pfEGoBjqzMhrkpDMiIE=
Subject key identifier: 62:9A:C9:78:06:ED:8C:41:8D:D4:0D:6C:FC:4E:14:EA:D4:87:50:53
Authority key identifier: 17:22:89:CB:B8:17:9F:DF:38:E9:F5:32:C9:CD:72:91:B4:F5:C4:2D
Certificate issuer: /CN=172289cbb8179fdf38e9f532c9cd7291b4f5c42d
Certificate serial: 01974DE9E8D413C8F626D97C69211011B479
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyKJy7gXn9846fUyyc1ykbT1xC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
Manifest number: 0B6E
Signing time: Sun 08 Jun 2025 05:01:04 +0000
Manifest this update: Sun 08 Jun 2025 05:01:04 +0000
Manifest next update: Mon 09 Jun 2025 05:01:04 +0000
Files and hashes: 1: FyKJy7gXn9846fUyyc1ykbT1xC0.crl (hash: GY9SU9XeQ082453NF4i3uPVy6oRZQLEW9K+BYreXTrE=)
2: ejP-cqngAl2WeEUv13m8XETr7WY.roa (hash: LoPRyo03v+sBUkzNnzQYBljjeo3cKGIRbIW1IcB6h4c=)
3: jRgLBU0x04bcrCqoAsjc1LU66SE.roa (hash: nfzJrFphVt8WQGlI/qwAihviviH5Ky8UyaUYyOFvqY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/FyKJy7gXn9846fUyyc1ykbT1xC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:e8:d4:13:c8:f6:26:d9:7c:69:21:10:11:b4:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172289cbb8179fdf38e9f532c9cd7291b4f5c42d
Validity
Not Before: Jun 8 05:01:04 2025 GMT
Not After : Jun 9 05:01:04 2025 GMT
Subject: CN=629ac97806ed8c418dd40d6cfc4e14ead4875053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:5c:09:03:22:2e:a0:9a:01:cf:a6:24:ab:76:
e4:ea:75:7d:90:45:e5:b4:c4:1d:7b:21:ca:77:3a:
f3:c9:c4:64:14:71:5c:08:7e:d0:f7:20:a9:f1:b3:
1b:8f:c4:0a:e4:60:53:3c:c9:0b:8e:1b:76:52:35:
3a:34:b2:6c:d5:d4:0c:31:7a:e7:03:4b:ca:ec:af:
33:ad:32:f5:e7:8f:bd:b9:14:40:33:da:22:c9:43:
9f:a0:5e:37:46:ef:b5:68:15:7d:32:3f:e3:fd:52:
50:56:5a:79:56:2e:68:be:b5:ca:7a:19:9c:5d:1e:
94:c6:74:06:2c:c9:12:fa:14:e7:0c:18:4c:23:14:
49:17:a8:86:32:81:bc:6f:c7:8e:88:02:85:d8:c6:
76:10:14:de:79:b5:ba:88:4d:a1:d3:b7:34:ce:97:
fd:1d:21:b2:bf:e4:f2:44:df:2e:51:97:25:88:40:
32:51:23:d7:39:bd:52:8c:80:48:2b:f5:c6:20:9c:
d6:19:72:e1:e3:af:f8:b7:67:96:0d:f6:1b:8c:83:
5e:f2:10:e4:94:44:83:84:78:67:5f:d4:f5:7d:53:
25:bc:ca:ec:b1:c3:a3:c9:1f:6c:1c:5e:ab:d9:74:
f6:44:41:7c:b6:b3:51:41:0d:c1:90:40:91:7f:2d:
82:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:9A:C9:78:06:ED:8C:41:8D:D4:0D:6C:FC:4E:14:EA:D4:87:50:53
X509v3 Authority Key Identifier:
keyid:17:22:89:CB:B8:17:9F:DF:38:E9:F5:32:C9:CD:72:91:B4:F5:C4:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyKJy7gXn9846fUyyc1ykbT1xC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:dd:30:9e:1d:85:00:ca:96:5a:65:fc:f3:6c:69:b5:31:b3:
c7:11:c7:0e:58:d9:22:59:37:7d:95:39:29:1e:9c:f7:45:a1:
35:bd:78:ac:06:0b:be:f7:12:ee:00:4f:c2:0b:f9:32:11:b7:
3f:94:cf:3e:dc:83:81:06:98:1b:38:f6:d6:9f:8d:9d:9e:fd:
b1:7b:1c:fb:8c:1f:d0:ca:bb:c6:91:fe:5a:b5:5c:aa:40:ad:
f2:3b:b3:2f:3e:d4:e6:40:e3:4a:f5:6c:4c:ff:bb:94:f3:00:
b3:98:da:23:b2:9b:f9:52:1a:48:95:5e:9f:ef:b8:f9:a2:01:
cd:78:94:b7:c4:3c:3f:1e:9c:fb:f3:1d:0d:1a:b1:66:78:86:
e2:9d:f9:e1:25:a0:55:30:bd:04:23:b7:d3:3f:96:84:2d:bd:
c1:07:43:8d:cd:1f:64:1e:f4:29:22:b4:8e:07:fe:72:8c:db:
49:e7:78:63:7c:4a:e0:ad:0a:65:a6:8e:4a:4a:dd:7d:fc:79:
df:00:7a:b0:27:a6:7e:0e:26:93:b5:e7:96:de:7f:4f:23:e7:
af:9c:8c:53:84:74:c4:c9:09:c2:c4:01:90:ce:4a:c3:9c:02:
33:01:fd:02:7d:67:b6:af:ff:fc:7f:25:ea:7a:07:c0:ef:39:
85:12:13:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:39:16 2025 by rpki-client