Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
File: fD2KpDg1BKMa_0sAaBCga88DBa4.mft (raw, json)
Hash identifier: FNeJJLzgOhwAtMuUlEiF46r6+pAo+9wx0qmJh1LAlHo=
Subject key identifier: B0:CE:76:19:84:3D:8A:BF:54:14:A8:51:84:5D:FF:91:E8:A2:AE:F6
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 0197586CF6F52F1F9615386597EABCB255D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
Manifest number: 115F
Signing time: Tue 10 Jun 2025 06:00:25 +0000
Manifest this update: Tue 10 Jun 2025 06:00:25 +0000
Manifest next update: Wed 11 Jun 2025 06:00:25 +0000
Files and hashes: 1: 8L2O5GlhNp_lrqBMRrzhkCl_FU4.roa (hash: MpUCXGi4iU4O/s2W0Ri/evmaR2tEREi873mtgHCWuJE=)
2: fD2KpDg1BKMa_0sAaBCga88DBa4.crl (hash: srd3grzosMX43NkryROufDPRkmEfxpFutFX20uPf0W4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:6c:f6:f5:2f:1f:96:15:38:65:97:ea:bc:b2:55:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: Jun 10 06:00:25 2025 GMT
Not After : Jun 11 06:00:25 2025 GMT
Subject: CN=b0ce7619843d8abf5414a851845dff91e8a2aef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:63:3c:9c:0f:af:a4:05:c8:43:2f:fb:e4:02:
96:7c:eb:d1:a0:c8:53:b4:57:cb:fe:74:43:2f:44:
17:e2:ee:96:e2:8c:e2:3f:6b:d4:66:5a:93:f6:12:
66:e4:79:31:27:f6:fb:0e:f1:99:d8:ff:88:98:ec:
21:ba:85:91:d7:76:09:d1:aa:4d:78:2b:67:18:91:
a4:d7:fb:a3:7b:c0:d6:58:3d:46:a4:34:30:9b:c8:
d7:1e:8a:19:7c:43:ea:79:44:f1:29:67:a5:66:a4:
53:57:29:3b:d6:c3:c6:bf:24:55:30:9e:34:1f:02:
cb:22:4b:31:bd:1d:6c:58:7e:1a:67:02:e9:a4:f6:
2a:f4:6d:7f:56:b5:a7:f5:6e:b6:03:a4:f1:f0:84:
f1:f5:90:9c:85:af:ac:82:14:aa:70:32:c3:d1:dd:
e8:37:ee:4a:e2:39:73:8b:48:ea:fd:13:08:6c:26:
6f:ec:2d:3e:40:e7:c8:07:8b:8a:74:d2:9d:20:7a:
09:cf:5c:6d:86:84:41:b9:23:9a:d4:8e:0d:38:da:
11:f1:f8:95:f3:c4:84:19:94:b2:9d:c2:31:5d:ee:
58:05:ec:f1:15:15:e0:49:7c:1b:e5:08:ea:0d:59:
6b:ee:8a:1c:2e:8d:58:0f:54:cb:02:6f:48:03:a8:
97:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:CE:76:19:84:3D:8A:BF:54:14:A8:51:84:5D:FF:91:E8:A2:AE:F6
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:a4:02:87:1d:a9:65:10:15:78:51:46:f8:e8:06:a0:6f:08:
28:e0:a0:ba:02:62:de:4c:43:e4:9b:56:73:27:2f:ef:0b:c8:
c9:0d:43:92:89:2d:1d:ac:42:39:07:da:b9:67:da:ab:b1:ec:
c3:62:55:e5:68:14:12:d2:6b:b0:ed:99:7c:0c:52:8f:83:47:
87:f2:7b:47:c1:48:71:be:9c:a1:22:cb:8a:be:81:e6:92:73:
84:bd:90:73:8d:d7:78:9f:90:b0:58:a4:64:18:0a:85:7e:8c:
8a:51:7f:fc:3e:57:45:90:f5:5a:72:c1:be:0d:c5:ea:35:a0:
ab:bb:22:b3:52:e0:51:b6:06:87:87:74:31:84:df:75:fa:ea:
0d:15:98:04:27:cf:a4:91:56:2d:78:32:3b:f8:1b:cb:25:2d:
8f:cb:24:01:2f:4d:ee:0e:df:f5:3f:79:0c:fd:e5:09:6e:f8:
ba:98:f3:61:5d:f0:5b:4b:5f:05:2e:e8:50:5a:7f:5e:1b:65:
99:a1:e9:ee:98:80:50:03:43:eb:f7:32:e8:7c:34:fd:25:be:
de:2a:04:37:24:c7:5c:c6:71:36:7f:33:f5:2c:2b:ab:57:17:
87:de:7a:e8:f3:f1:de:ec:fc:69:45:75:6a:fd:d4:6d:bf:1f:
21:37:be:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 10:00:22 2025 by rpki-client