Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
File: FAa0-f1RaOt3gegksUU-mfXmVTw.mft (raw, json)
Hash identifier: hJegE2a14kCwMrI/QMABid2qup7+qFIZsC0NqPwJDQE=
Subject key identifier: 10:D2:FE:8C:35:49:42:E9:F8:22:1B:7F:2E:58:BF:68:8B:A3:16:8B
Authority key identifier: 14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
Certificate issuer: /CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Certificate serial: 01961132A774F285B159695FB5EB96BA2629
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
Manifest number: 14D9
Signing time: Mon 07 Apr 2025 17:00:54 +0000
Manifest this update: Mon 07 Apr 2025 17:00:54 +0000
Manifest next update: Tue 08 Apr 2025 17:00:54 +0000
Files and hashes: 1: FAa0-f1RaOt3gegksUU-mfXmVTw.crl (hash: Vevjmw1chfXloBWIdh1Thn52XUvL7u2uPmqrNaHBEwQ=)
2: c3go-15xGcBaQkyMFCkLYeR3zYQ.roa (hash: 4H2iOu8gLLffNi536xCsuCivAwnItfPi2vTZ/W207ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:32:a7:74:f2:85:b1:59:69:5f:b5:eb:96:ba:26:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Validity
Not Before: Apr 7 17:00:54 2025 GMT
Not After : Apr 8 17:00:54 2025 GMT
Subject: CN=10d2fe8c354942e9f8221b7f2e58bf688ba3168b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:75:9f:c7:ac:eb:63:52:3e:e8:f5:2d:5c:52:
c9:53:14:53:21:17:c3:d2:c1:3e:d9:ae:29:39:84:
54:6b:ca:96:f7:da:b4:94:09:53:8d:6f:ae:3a:b9:
9d:af:03:ad:44:a6:c6:98:ff:d0:89:c2:e2:58:3e:
fa:f4:82:74:34:88:b3:eb:bd:82:52:6e:f8:46:9d:
74:8a:c2:b0:af:13:15:8c:3a:99:ce:31:a7:4c:49:
e7:a7:69:e0:38:2d:0e:a2:22:85:d0:1b:85:fb:30:
0a:5b:86:b6:56:95:1d:07:85:8e:53:ff:8b:80:62:
c4:26:3f:f7:ff:c0:21:de:1f:aa:21:02:9a:22:69:
3b:a0:ea:a9:e0:3b:01:d5:e5:4b:ae:09:cb:fa:a2:
cd:15:09:d9:fd:59:40:17:1e:bd:92:f9:a9:bd:dd:
c1:b8:fd:0a:c2:98:a4:01:8a:b3:a2:46:62:8c:4c:
d4:db:2d:01:9c:55:c5:bf:9a:cc:7f:86:7b:14:a7:
de:c4:cf:d1:56:10:cf:3b:b4:05:f0:a9:1a:08:4a:
fb:3a:be:8b:94:11:17:3c:17:de:6b:06:97:82:ee:
6d:5e:75:76:80:7a:f8:14:6e:e4:46:1b:b0:e0:a6:
2d:c4:06:4f:64:0f:d9:e4:75:9a:fd:d0:bf:30:63:
cd:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:D2:FE:8C:35:49:42:E9:F8:22:1B:7F:2E:58:BF:68:8B:A3:16:8B
X509v3 Authority Key Identifier:
keyid:14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:c0:74:3d:a3:3e:86:0b:a3:26:93:68:b8:b2:87:2a:c6:6d:
05:0b:a3:17:6e:50:4e:33:aa:48:2f:99:be:19:c2:07:a9:a1:
61:6f:6d:3f:c3:97:7a:ed:9c:72:bb:cf:cc:e9:a9:f3:c5:63:
d9:52:34:93:c3:c0:bf:0d:07:73:aa:fa:c2:d4:d3:39:90:12:
2e:fd:88:ab:98:25:c2:7a:fd:12:33:4b:7a:04:af:48:d2:57:
80:d2:a6:1b:6e:38:47:06:e8:d2:60:1d:f8:de:60:33:31:54:
b3:f6:f8:6f:2f:94:38:a5:89:34:5c:8e:0d:6b:fc:c3:b2:69:
f3:b7:1a:2f:e5:e3:b2:82:94:d8:46:17:7e:51:00:97:06:10:
52:16:fc:96:cf:b5:f9:df:ca:48:b6:90:0c:b5:69:96:4e:4b:
54:24:49:c7:39:1f:a5:1b:49:f8:0b:65:9b:88:81:57:e0:b5:
45:a3:af:47:02:ad:55:f0:c3:9b:e7:5d:13:42:de:52:77:1d:
68:ee:d3:e5:30:40:d0:ab:ce:ed:b1:e8:29:54:79:6f:78:c3:
e3:47:4e:52:bb:f7:ab:71:fe:b8:9d:73:e3:da:d6:5c:d9:b5:
af:9d:c0:38:12:f4:0b:38:8e:cb:e9:9c:a2:75:ea:30:fe:bf:
d3:5e:b2:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:26:23 2025 by rpki-client