
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
File: FAa0-f1RaOt3gegksUU-mfXmVTw.mft (raw, json)
Hash identifier: l7TK83s3taXdqqvkhCb7OOvZodsynoqqGDrsI1O0/pM=
Subject key identifier: 82:66:47:B7:B6:50:4F:4F:77:03:DD:AA:02:B8:F6:22:A7:6B:B7:CF
Authority key identifier: 14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
Certificate issuer: /CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Certificate serial: 019768F30CC9CD6C71745AA00E3C2CFEC0F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
Manifest number: 158B
Signing time: Fri 13 Jun 2025 11:00:48 +0000
Manifest this update: Fri 13 Jun 2025 11:00:48 +0000
Manifest next update: Sat 14 Jun 2025 11:00:48 +0000
Files and hashes: 1: FAa0-f1RaOt3gegksUU-mfXmVTw.crl (hash: c6V4QhnDRrWybKJCY2ZW75GI+vHVBDqkUYTJNSMhGQg=)
2: c3go-15xGcBaQkyMFCkLYeR3zYQ.roa (hash: 4H2iOu8gLLffNi536xCsuCivAwnItfPi2vTZ/W207ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f3:0c:c9:cd:6c:71:74:5a:a0:0e:3c:2c:fe:c0:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Validity
Not Before: Jun 13 11:00:48 2025 GMT
Not After : Jun 14 11:00:48 2025 GMT
Subject: CN=826647b7b6504f4f7703ddaa02b8f622a76bb7cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:70:c2:23:a8:a8:5e:e2:42:a4:7b:b7:d5:d3:
b6:bf:eb:0c:51:5f:42:e2:92:1a:e5:cc:a7:0b:75:
87:d5:b6:f8:38:ce:b8:e2:af:db:dd:57:60:e4:17:
60:77:5f:0e:1a:46:a4:1e:4d:1f:a9:b7:e8:d9:90:
ff:d9:02:cd:b3:ea:a0:10:b6:11:8e:5a:1c:74:a6:
69:36:76:9f:0e:41:5c:c5:7c:52:26:d6:75:68:7e:
7b:93:b7:36:51:71:be:35:76:9e:9a:f9:54:1a:e7:
25:28:51:62:57:4c:be:d9:4d:4d:2f:82:6b:5a:b7:
42:0c:c2:21:3d:28:11:04:2a:84:a9:1d:7c:4c:c0:
b4:b4:43:17:b9:0c:7d:cb:48:35:66:ff:ac:06:38:
c7:49:db:cf:38:ce:c3:b4:89:de:10:ce:49:d4:8b:
34:77:30:70:c0:1b:ac:61:75:09:49:02:58:76:6f:
0d:a6:c2:20:2e:bf:58:fe:e7:0c:a3:04:77:94:c3:
b3:ee:08:ce:3f:08:ad:3a:91:ea:f3:9d:8b:cf:1b:
b0:92:e4:af:d1:28:8b:e2:a2:e3:b6:dc:03:1a:3a:
3e:16:6e:52:c4:02:e6:8c:32:a9:b5:c6:e7:52:08:
f3:72:cc:68:8e:f7:00:e4:18:a0:10:c3:c5:12:5b:
c2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:66:47:B7:B6:50:4F:4F:77:03:DD:AA:02:B8:F6:22:A7:6B:B7:CF
X509v3 Authority Key Identifier:
keyid:14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:80:76:15:7f:fd:b5:f2:f1:5b:3e:f7:ff:cf:fc:06:a8:94:
09:9d:4b:3f:6e:36:d4:40:4a:c0:32:a6:39:71:65:7e:9b:c8:
61:7e:b9:d0:1a:c7:58:4e:ad:2d:a2:dd:a4:b8:a5:1e:58:d1:
8f:2f:c6:db:db:9c:23:d9:70:92:51:4e:74:1b:3e:b6:c7:69:
1c:ae:45:93:88:81:8a:ab:6c:56:e1:5b:d5:b5:05:82:bf:11:
20:b6:74:7d:c6:3f:25:c5:15:7d:15:e4:cb:41:51:0c:89:a3:
94:df:51:5d:76:8d:8a:da:88:f2:ad:3b:f3:1d:a2:98:cb:da:
87:c5:2d:65:4f:ab:83:c8:02:10:f0:04:ed:5f:cc:56:32:ef:
8f:e6:1a:2f:dd:8f:6f:b8:5e:86:f9:6c:fa:e9:5d:2d:08:c6:
6e:09:a9:05:70:c0:80:b5:02:b9:fe:6f:6e:9a:b6:78:54:03:
3a:42:b3:f1:17:14:3e:fa:b4:bb:e2:ec:37:56:0e:3a:62:5c:
1f:be:1c:c3:80:22:e5:41:41:74:ba:b8:08:9a:1b:9d:49:9c:
21:5d:eb:81:9b:33:13:33:ec:03:24:1a:7a:df:ac:80:24:cd:
52:73:bb:7d:d4:53:5a:c0:1f:30:14:85:47:cd:4d:1e:17:12:
f4:d1:fc:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 13:14:16 2025 by rpki-client