Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
File: fZK2dHUnB1UTaoo8qALKEsisfnc.mft (raw, json)
Hash identifier: GFPXjpPqolcPVfr1YRKs5H+YNpeywels2bOwoazRfbU=
Subject key identifier: 2B:2E:43:6B:D7:F6:AA:95:D5:EA:41:0E:AC:AA:EF:1C:C2:86:8B:A9
Authority key identifier: 7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
Certificate issuer: /CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Certificate serial: 019748C30F88136AD873257022F5C5BB103A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
Manifest number: 0CA3
Signing time: Sat 07 Jun 2025 05:00:32 +0000
Manifest this update: Sat 07 Jun 2025 05:00:32 +0000
Manifest next update: Sun 08 Jun 2025 05:00:32 +0000
Files and hashes: 1: 2CYNXB5qZHN7in7RGaGVmXvb7Xs.roa (hash: n74UAylTv760Shvrd+PI6ipCj4rV+2WaR3QnP3+8e6Y=)
2: fZK2dHUnB1UTaoo8qALKEsisfnc.crl (hash: KSi4TT/t/nA/5GRgBl7bkN9ZfhoUNI5z0wudTB93Adg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:0f:88:13:6a:d8:73:25:70:22:f5:c5:bb:10:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Validity
Not Before: Jun 7 05:00:32 2025 GMT
Not After : Jun 8 05:00:32 2025 GMT
Subject: CN=2b2e436bd7f6aa95d5ea410eacaaef1cc2868ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:cc:a0:9b:82:41:70:40:02:6f:53:3d:d9:cc:
2e:73:a9:f8:2e:7b:a9:48:4b:d3:42:93:ac:6b:ae:
89:c1:95:26:0b:06:90:77:3f:71:e8:4c:cd:cb:cf:
c5:79:70:f4:5f:02:3e:93:2a:59:b7:7f:51:d1:02:
ba:fc:72:ea:5a:2e:48:bc:00:8b:f9:c6:e1:4d:02:
8e:d7:52:10:af:8f:2c:54:a5:a3:22:32:61:4e:6f:
a0:8e:8c:86:cb:16:8a:7a:2d:e5:08:53:39:eb:11:
25:c6:db:73:b8:a1:34:22:e4:e0:76:fe:13:68:07:
36:8c:8f:71:5c:04:79:d2:5b:66:04:4d:6f:56:37:
28:34:07:3d:a8:9e:93:79:ed:88:57:da:53:d8:91:
52:b6:3f:fb:d4:7d:da:59:f2:c7:73:79:7b:92:37:
28:58:cf:c5:dd:73:4a:e5:32:32:58:2b:93:44:46:
f7:b1:9a:d6:9f:96:81:97:cd:8c:ae:dd:ce:dd:62:
16:60:81:34:78:bb:08:07:0d:6e:e4:d7:93:e5:17:
b1:0b:a4:7f:4d:1d:83:40:3b:8c:7e:87:42:50:a9:
e3:0d:53:ec:e7:e7:04:b2:4f:27:a4:5d:9a:b0:28:
36:58:dc:4a:15:77:e5:8a:f0:b3:5c:05:39:b1:21:
75:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:2E:43:6B:D7:F6:AA:95:D5:EA:41:0E:AC:AA:EF:1C:C2:86:8B:A9
X509v3 Authority Key Identifier:
keyid:7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:67:24:d8:97:e2:b9:91:26:01:e2:cb:66:8b:e6:42:fd:51:
a7:f5:ec:5f:cf:a9:a8:42:6b:b5:68:c8:6f:51:37:c7:e6:03:
6f:3f:c0:e4:68:13:de:35:e3:e8:31:10:64:2d:ef:4f:07:59:
06:88:ae:eb:35:1d:54:67:ad:17:a9:c3:c9:d1:7f:74:a7:ed:
fd:83:c8:4a:0b:05:1c:04:7c:e9:1b:ea:22:82:e5:bc:1e:b6:
38:29:27:ab:27:5a:e6:38:a3:66:b6:b0:ee:47:ad:f6:b3:3b:
97:de:6c:bf:33:ee:2c:6e:8a:f8:3b:f5:fc:06:c2:74:16:57:
39:85:fa:bb:73:c6:16:e6:cb:70:bb:95:01:af:70:9b:67:17:
79:e5:db:fa:54:d6:31:c7:d0:55:b5:a8:86:99:fa:74:28:40:
2b:e1:a9:a6:c4:0a:3e:ba:81:fd:d3:4b:4e:04:5d:e1:1c:19:
75:52:a7:67:1e:9d:fe:85:ca:c0:3d:96:03:11:3f:e2:85:a4:
54:8e:2d:b0:9a:ec:b6:3b:e8:54:e9:3c:fe:76:a0:fe:1c:81:
95:40:59:cb:b2:a9:fb:3a:94:b1:5a:33:32:22:1d:56:34:66:
7b:59:1c:fc:03:ca:2c:8a:1e:73:da:bc:89:b1:a9:16:ba:a3:
c1:07:26:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:44:21 2025 by rpki-client