
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
File: FAa0-f1RaOt3gegksUU-mfXmVTw.mft (raw, json)
Hash identifier: 327DEjRS7AadPN7b5WHlbnXuuxhx3mJlwUCxAq/eoxU=
Subject key identifier: 73:37:5E:3B:D4:8A:9B:39:1C:48:24:CE:DF:10:8B:46:2A:BA:B3:63
Authority key identifier: 14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
Certificate issuer: /CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Certificate serial: 019770ACA8B9BFA7F34328A8930A07E3E98C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 23:00:52 +0000
Manifest this update: Sat 14 Jun 2025 23:00:52 +0000
Manifest next update: Sun 15 Jun 2025 23:00:52 +0000
Files and hashes: 1: FAa0-f1RaOt3gegksUU-mfXmVTw.crl (hash: 7A4KzE0VPpjio2u2UY5fGmy/JbiJxIHqcprbc4SyRZs=)
2: c3go-15xGcBaQkyMFCkLYeR3zYQ.roa (hash: 4H2iOu8gLLffNi536xCsuCivAwnItfPi2vTZ/W207ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 23:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:ac:a8:b9:bf:a7:f3:43:28:a8:93:0a:07:e3:e9:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Validity
Not Before: Jun 14 23:00:52 2025 GMT
Not After : Jun 15 23:00:52 2025 GMT
Subject: CN=73375e3bd48a9b391c4824cedf108b462abab363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:54:58:b8:94:76:32:f4:eb:e4:6a:f1:8b:52:
d5:0d:b0:d4:28:c9:20:51:74:cb:f6:30:ad:3f:63:
a7:e0:18:65:ac:9b:08:9c:b3:23:2f:96:a3:3b:43:
8b:8f:31:57:c3:f2:0b:53:98:c6:28:04:1d:fc:6a:
02:79:5c:53:0e:c6:91:b2:66:03:8f:8b:4e:af:70:
47:5a:15:76:3f:84:8e:1d:b9:b7:73:19:f3:37:20:
8a:c1:6e:ae:42:5d:19:72:5b:ee:b3:24:2b:b3:2f:
d0:4d:f3:82:6f:69:4f:51:65:a4:ae:72:f8:c8:03:
a8:bd:3e:25:34:dd:29:99:9c:37:bb:bb:94:24:17:
db:15:11:1a:d6:f6:d5:67:bd:3a:8c:11:18:66:b6:
8f:28:5a:b1:f4:bf:d8:88:6a:2b:07:51:d4:4d:44:
25:a5:d2:84:8e:b6:80:27:66:ec:31:b8:b7:bc:7e:
6c:38:66:f9:26:f3:a3:97:a7:b5:4c:81:32:cc:9d:
6b:9f:37:b6:40:3a:9b:34:e4:b9:92:d9:46:61:53:
55:6b:c6:d3:cb:7b:a7:51:f5:ae:07:ef:d4:79:a4:
7f:4e:7e:db:8c:f2:7f:4f:78:97:6b:21:0b:2a:b1:
d5:a1:36:9c:d0:0c:b8:03:d7:4c:14:b9:41:1c:65:
39:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:37:5E:3B:D4:8A:9B:39:1C:48:24:CE:DF:10:8B:46:2A:BA:B3:63
X509v3 Authority Key Identifier:
keyid:14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:6f:a9:33:63:62:f4:b4:09:e4:91:d3:92:9c:a5:1c:ae:75:
b0:0f:26:e0:4b:1f:20:28:9e:1a:cf:9d:52:ce:4a:ae:74:ee:
84:a7:a7:08:1c:4a:d1:00:31:6f:cc:66:e0:40:4b:6a:c9:c8:
a8:cf:f1:70:fd:23:06:f8:3f:84:64:b3:47:ef:66:d6:0d:8c:
3d:fe:d9:7c:c7:8b:6c:58:27:89:63:01:25:2f:9d:66:ef:01:
4d:01:85:af:62:11:28:b3:c4:b6:63:cd:a4:87:28:e9:fb:c1:
ee:c1:3c:95:ea:53:06:37:e2:1b:5f:be:87:c0:8d:c5:95:12:
b0:e8:3d:44:0b:20:29:0d:3d:0f:e9:16:8d:dc:9c:ad:03:62:
d4:8b:26:76:5d:4f:bd:e7:85:16:e3:4e:10:50:82:15:11:e7:
52:45:5f:05:4b:a1:f4:08:74:ab:1d:22:b4:c5:59:dc:04:d8:
0a:b1:e4:2f:ec:d2:28:9e:91:74:a3:42:66:9b:a9:16:d6:e6:
57:ea:6c:11:1b:ca:bc:9f:75:27:5a:0f:11:84:e7:b8:10:60:
1d:ab:4f:f7:59:c3:77:19:dc:75:10:fd:48:5a:47:d8:a3:e3:
c2:c1:b3:18:5c:c5:17:5e:da:33:fa:0a:8a:b7:70:bb:54:e9:
20:2b:38:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 10:11:17 2025 by rpki-client