Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft
File: FXaJHPKx2OxWwDvHqW3pWKDgADI.mft (raw, json)
Hash identifier: cnBxcqlsmDDjHmoxaAvBaPZC89Xa1bR9H3+1aFTyg8M=
Subject key identifier: 7C:A6:1A:99:72:F3:8E:A5:30:26:F0:95:33:AE:F3:74:05:6E:14:B1
Authority key identifier: 15:76:89:1C:F2:B1:D8:EC:56:C0:3B:C7:A9:6D:E9:58:A0:E0:00:32
Certificate issuer: /CN=1576891cf2b1d8ec56c03bc7a96de958a0e00032
Certificate serial: 01974AE88CF9B50A085150C821295B5FCA40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft
Manifest number: 0326
Signing time: Sat 07 Jun 2025 15:00:43 +0000
Manifest this update: Sat 07 Jun 2025 15:00:43 +0000
Manifest next update: Sun 08 Jun 2025 15:00:43 +0000
Files and hashes: 1: FXaJHPKx2OxWwDvHqW3pWKDgADI.crl (hash: rD2nGu7oM/4SrpO37g3cbWqFXJvg596n18jxHy5zu2Q=)
2: pkUWU7hoqn1MoMfV_e6H2-KJHtM.roa (hash: pNc3IO7oSLkfW6eqPtj4TJMlIbS8z2hqWPYZAIIHzEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft
rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:8c:f9:b5:0a:08:51:50:c8:21:29:5b:5f:ca:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1576891cf2b1d8ec56c03bc7a96de958a0e00032
Validity
Not Before: Jun 7 15:00:43 2025 GMT
Not After : Jun 8 15:00:43 2025 GMT
Subject: CN=7ca61a9972f38ea53026f09533aef374056e14b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6d:63:6f:d3:97:eb:dd:c0:0f:2a:aa:34:af:
d4:86:64:9e:10:a3:30:63:8b:4d:67:44:60:9f:0d:
ac:c6:b0:2c:5a:ec:5b:5c:f8:57:2a:10:5e:9a:ad:
97:1d:d7:b2:44:78:be:7c:f2:4e:48:d7:54:ba:42:
e0:e8:38:df:06:a8:15:9a:bf:89:e9:4c:00:0d:cf:
df:aa:74:0d:c5:fa:56:6a:4a:e5:db:e4:98:53:ca:
fc:9e:91:c5:67:cc:4a:7d:ed:61:2d:0f:cc:7a:29:
60:63:6f:96:f4:62:76:20:9e:a7:e7:bc:a1:a4:81:
7f:33:c9:1d:e4:ad:a7:50:80:2a:d5:9d:7c:f2:c3:
ce:e5:91:80:c2:cd:2d:cd:74:7d:cb:97:e0:61:71:
ec:d1:c0:11:a4:c9:45:0a:ac:b1:d6:92:ef:aa:ad:
88:b1:54:08:36:dd:82:e1:a1:36:e7:a9:71:ab:23:
4f:ae:a0:40:1d:95:33:67:ce:4c:44:ff:15:5c:83:
d3:4d:dd:1c:30:0d:ec:0c:8c:ff:5e:a9:94:64:91:
01:12:de:0a:41:a7:fd:40:43:21:24:0f:1b:8c:a9:
2d:19:aa:8b:11:12:8c:98:e7:e0:06:2a:21:09:2d:
92:ac:e3:ed:59:c2:59:61:e5:6a:4f:a9:d8:0a:3c:
10:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A6:1A:99:72:F3:8E:A5:30:26:F0:95:33:AE:F3:74:05:6E:14:B1
X509v3 Authority Key Identifier:
keyid:15:76:89:1C:F2:B1:D8:EC:56:C0:3B:C7:A9:6D:E9:58:A0:E0:00:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:31:a5:e9:d9:d5:e5:72:f5:fd:16:6d:33:f0:3d:45:83:d3:
1e:db:47:04:73:80:4d:6b:31:2e:af:84:e4:05:ec:5a:df:29:
c5:9c:1f:7d:ba:ba:55:a5:6e:3d:6d:07:6f:50:70:d9:b9:ba:
57:66:22:ba:65:75:af:92:f3:65:3d:43:bb:87:d8:b6:f2:4c:
dd:7a:23:41:dd:c4:06:a1:a0:67:2d:ee:2d:a8:16:5b:73:a5:
e2:83:f1:6d:00:8b:00:ef:a6:2a:0e:11:d2:17:e6:bf:ed:f0:
18:5e:a2:1b:ad:29:8d:5f:31:14:c1:c3:c1:58:66:eb:a7:98:
a1:6a:a4:62:65:93:0d:e0:30:2c:88:ce:b2:66:a2:cf:a8:96:
48:bf:51:90:fc:6e:ac:2d:b7:11:cf:e1:56:8c:94:c0:4f:6c:
76:bd:a9:43:25:6d:44:59:da:84:e3:b5:7f:69:19:5a:8b:66:
4e:18:29:44:01:2c:e2:a2:2e:2c:56:88:09:50:5c:3f:cc:53:
90:41:5b:4f:51:70:06:5f:be:e1:7d:99:05:0e:10:25:8b:65:
c1:b1:b5:48:44:17:23:bc:52:9f:5d:ca:50:bc:03:05:41:b0:
c6:c6:4f:26:54:ec:d1:6c:ec:47:bb:f6:37:f7:55:2b:09:cf:
cc:bc:3c:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:30:50 2025 by rpki-client