Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
File: fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft (raw, json)
Hash identifier: +on3QUUcp6bVXLgY6pwtWOousH4KNwPbfCDJpppq0YM=
Subject key identifier: 80:A9:AC:CE:9B:56:C8:7A:F4:2D:59:7E:47:E2:24:1D:36:3E:58:42
Authority key identifier: 7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
Certificate issuer: /CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Certificate serial: 01965C15BA9082BDBBD48B8687DB8A179D37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
Manifest number: 14FF
Signing time: Tue 22 Apr 2025 06:00:49 +0000
Manifest this update: Tue 22 Apr 2025 06:00:49 +0000
Manifest next update: Wed 23 Apr 2025 06:00:49 +0000
Files and hashes: 1: JcAhZrilsZkvSyojajHWDjOF_6I.roa (hash: W7eqhWRP/GcuUd5Q71f0zaMk5StnfS4hfdbNGseVYE0=)
2: fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl (hash: /3lA9FKZhOu1/9Lr753kjZTUL5P8LpUncIa7ExKtKb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 06:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:15:ba:90:82:bd:bb:d4:8b:86:87:db:8a:17:9d:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Validity
Not Before: Apr 22 06:00:49 2025 GMT
Not After : Apr 23 06:00:49 2025 GMT
Subject: CN=80a9acce9b56c87af42d597e47e2241d363e5842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:dc:0b:20:3b:eb:70:b5:b5:95:76:6e:0b:ed:
a1:0e:c2:0a:e3:8c:2d:01:9c:64:54:23:5d:14:e3:
6a:7c:8b:40:d4:0a:d1:ad:48:70:4e:15:36:2b:e5:
61:fb:c8:2b:1f:2b:b2:7b:d1:c5:86:d2:dc:ff:c5:
0d:71:50:a8:45:57:1e:85:f9:23:c7:ac:64:6c:b3:
94:95:60:ad:17:9f:88:a8:0f:e3:0d:7b:51:63:5f:
bc:a2:0a:6b:ac:b2:c5:f6:04:a3:6b:b9:75:e9:03:
17:28:59:33:6f:b7:c7:29:8b:b6:a9:e1:71:85:a7:
46:90:40:6c:4f:99:88:00:9c:66:8b:22:48:4d:31:
6b:50:0c:76:b0:1b:71:66:b6:2d:03:5b:68:aa:61:
97:ad:e6:1b:d9:c4:b5:54:d1:dd:17:2e:72:97:43:
32:85:be:d8:75:6e:1e:c2:08:1b:f7:76:29:a9:d7:
36:1e:63:44:a7:0f:79:ef:0e:57:35:4e:24:f9:05:
17:ed:d1:b2:1f:53:16:19:fd:75:25:2b:08:6c:9c:
ab:65:fa:87:2f:30:27:d5:6e:d3:7b:74:72:65:c0:
5a:2e:20:d8:f4:31:d6:87:4d:cb:35:ff:c3:09:b0:
78:e2:39:32:c8:cf:c6:93:f3:8c:0e:28:e0:25:da:
d0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A9:AC:CE:9B:56:C8:7A:F4:2D:59:7E:47:E2:24:1D:36:3E:58:42
X509v3 Authority Key Identifier:
keyid:7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:83:d0:84:a5:90:ef:ee:fc:0e:95:11:bc:19:aa:98:d6:34:
50:ca:6d:8b:d3:56:f7:9d:a4:55:7d:d9:e4:94:2f:9c:f8:6f:
db:1e:fa:0d:0c:3f:08:19:bf:5e:8a:8f:3c:fd:01:27:45:e3:
e9:0e:43:80:e0:f0:2a:1b:30:54:5f:e4:67:c9:d1:f3:10:88:
62:4b:c0:15:7c:9a:3e:ea:e2:ab:9c:cc:27:7f:1b:a5:27:03:
f8:ae:dd:77:f6:a2:e4:31:ed:e8:82:a1:a7:23:af:90:cf:fd:
73:dd:eb:fc:16:3c:f7:03:3a:ba:30:5a:8d:5a:c5:89:66:d0:
52:17:6a:fb:ef:ae:cc:da:35:8c:9a:ba:cf:2a:c5:31:a6:e4:
81:bf:03:ad:c5:7b:59:4d:72:2b:0e:b7:59:68:f2:3b:f2:77:
06:6a:b9:c8:00:06:8b:67:af:98:2f:15:a0:57:bd:e1:7f:5f:
42:55:41:49:e1:a5:b6:59:0e:76:37:63:4c:d6:82:32:83:5e:
eb:d1:76:14:79:37:81:ee:1e:66:d2:1e:c4:9b:46:05:5a:74:
21:bb:14:ac:43:05:32:98:d2:f7:54:79:e9:e6:d3:c1:45:90:
29:da:61:5f:93:df:7d:02:f5:d4:29:1d:51:fe:62:df:35:b9:
51:64:28:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 16:01:02 2025 by rpki-client