
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
File: FAa0-f1RaOt3gegksUU-mfXmVTw.mft (raw, json)
Hash identifier: 4xnx+V61Q/fjPnJX5VNDADuPUWAlcTfjQFDWaykCbec=
Subject key identifier: 6D:04:0E:DE:26:DF:81:3C:97:51:70:27:D0:8A:5B:A2:57:71:FE:3C
Authority key identifier: 14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
Certificate issuer: /CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Certificate serial: 01976139799A644701CCFC08BA81E1A6B2F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
Manifest number: 1587
Signing time: Wed 11 Jun 2025 23:00:45 +0000
Manifest this update: Wed 11 Jun 2025 23:00:45 +0000
Manifest next update: Thu 12 Jun 2025 23:00:45 +0000
Files and hashes: 1: FAa0-f1RaOt3gegksUU-mfXmVTw.crl (hash: JIK9QIkK9pUQ9RgRHqaq8PeAIhZS+QMTeFsezADFGp8=)
2: c3go-15xGcBaQkyMFCkLYeR3zYQ.roa (hash: 4H2iOu8gLLffNi536xCsuCivAwnItfPi2vTZ/W207ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 21:26:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:61:39:79:9a:64:47:01:cc:fc:08:ba:81:e1:a6:b2:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Validity
Not Before: Jun 11 23:00:45 2025 GMT
Not After : Jun 12 23:00:45 2025 GMT
Subject: CN=6d040ede26df813c97517027d08a5ba25771fe3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:db:f0:18:39:e0:43:71:53:d8:26:0f:d3:64:
af:b7:69:d3:af:dc:16:06:a5:69:f2:e3:4a:23:73:
e4:d1:33:1e:67:77:0f:7f:b7:bf:e0:ad:81:50:4b:
0c:73:f3:a7:90:18:f4:6c:81:ad:3f:23:db:95:61:
9c:bf:06:0a:b8:cd:bc:36:64:d6:e8:dd:ee:7e:f2:
12:0f:15:a3:15:fb:e7:51:7b:23:35:dc:a2:11:91:
70:c8:d7:63:c4:b7:b2:54:44:cb:95:0e:85:66:5f:
5f:02:31:32:58:fc:f6:3f:36:04:6c:c4:fd:8d:f1:
30:1b:25:87:f7:74:cc:f1:de:c7:2d:4e:c7:7b:25:
77:fa:04:8b:8b:17:68:05:ef:b7:69:ab:b0:a2:30:
34:f8:86:e2:f6:5b:27:26:8b:03:84:48:b8:a7:0e:
68:59:ac:e8:34:25:7a:d6:41:4f:1c:84:fe:ed:d1:
df:58:6f:01:10:92:99:47:8d:e5:24:c0:fe:64:25:
a1:a2:3a:b9:15:71:58:9a:19:6b:44:e7:49:31:bb:
aa:4c:49:36:7e:65:84:64:c9:f7:c8:a9:b0:7e:2c:
1a:3e:81:ee:17:da:9d:2f:a5:f5:6a:a6:40:d5:be:
cd:73:a5:3c:a2:cd:7c:4f:b3:17:93:a1:2e:fa:32:
58:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:04:0E:DE:26:DF:81:3C:97:51:70:27:D0:8A:5B:A2:57:71:FE:3C
X509v3 Authority Key Identifier:
keyid:14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:66:46:2d:a9:0a:bc:2b:f2:2f:b5:cd:c0:f7:bb:93:23:23:
a6:68:26:bc:c1:09:71:c0:19:ae:dc:35:a3:74:6d:b3:0c:aa:
ea:c1:b7:ba:94:36:0b:17:f6:7c:c9:07:85:f0:88:56:fa:5e:
4e:d0:a0:c7:b3:5b:07:ea:7f:dd:74:2d:77:97:11:49:49:12:
ad:5f:46:6d:81:48:a8:ec:ca:9c:08:6c:11:e9:7a:fd:93:d9:
23:c1:63:2f:81:f5:16:96:b9:2d:37:25:28:bf:27:48:ea:9b:
49:d7:22:3d:f8:9e:3d:b0:bf:67:79:06:3c:5e:46:a5:6e:e2:
8a:6e:d6:f6:7c:88:ee:1d:65:29:4b:1b:44:fc:86:0e:d0:83:
2a:e5:6b:03:6a:13:ae:ff:17:25:41:44:6e:67:5b:f4:fb:ff:
ce:78:30:f5:93:c7:06:b4:0c:f4:08:6f:de:c6:15:3c:ea:6e:
cb:4d:f3:93:dc:80:34:f8:ff:07:6e:ac:df:e3:04:11:da:82:
5c:ef:b5:27:69:ff:05:fd:e6:4f:c2:53:eb:c2:60:c3:c4:ae:
6d:5d:e8:ed:95:50:93:c9:c1:32:19:52:b9:3c:6d:dc:c9:36:
f2:b5:d0:03:16:8a:5e:e2:55:23:a7:3a:5b:a0:91:07:70:a3:
47:43:a1:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 04:11:20 2025 by rpki-client