Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
File: fQtE5JJUnht9pTLIDDSIUMWkToA.mft (raw, json)
Hash identifier: OcGcOGl8CGLOifMGVl4haxhWJVQQKqo5NELAnI0BBK8=
Subject key identifier: 63:21:56:6E:2A:47:80:7D:04:6F:9C:EF:66:11:01:C6:51:AB:92:7A
Authority key identifier: 7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
Certificate issuer: /CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Certificate serial: 0198C6495A0546A63039EEC740DE82117B06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
Manifest number: 1643
Signing time: Wed 20 Aug 2025 07:02:32 +0000
Manifest this update: Wed 20 Aug 2025 07:02:32 +0000
Manifest next update: Thu 21 Aug 2025 07:02:32 +0000
Files and hashes: 1: Vh9zdU6UPXBw1wsGMQVn_pjjotw.roa (hash: RHQ7Mk9Ul2niP+vY1weS4xjGH8dOqLq3Efjab5Bc1HU=)
2: fQtE5JJUnht9pTLIDDSIUMWkToA.crl (hash: G+wlbld2yueOlnVIJX/eYAXnyRmCkg3Dr9/vvdSB2n0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 07:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c6:49:5a:05:46:a6:30:39:ee:c7:40:de:82:11:7b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Validity
Not Before: Aug 20 07:02:32 2025 GMT
Not After : Aug 21 07:02:32 2025 GMT
Subject: CN=6321566e2a47807d046f9cef661101c651ab927a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f4:a8:76:b8:a3:45:80:d7:c7:1c:ae:47:1c:
34:70:47:43:6f:a2:6f:9d:4b:32:22:1b:77:7c:70:
41:7d:bb:0b:37:5e:09:91:8b:6f:6f:0d:e8:d1:7a:
cd:ba:fb:9f:fe:b5:e0:da:85:d4:3e:83:ba:31:d1:
ca:43:21:8c:89:10:04:74:24:ae:8b:db:57:d8:cd:
08:38:bb:15:1f:50:ee:ae:13:b0:38:d7:c6:b8:53:
70:fa:e6:48:20:cc:5e:0b:1a:13:ed:6d:a0:a9:48:
be:ae:ce:7e:c2:e6:01:03:54:5f:a1:9d:47:93:ce:
1d:94:3a:99:a1:7d:05:2b:06:de:3c:a7:8a:da:f3:
19:e8:a5:7e:84:d7:df:00:85:92:3f:7e:0f:e5:f3:
40:e0:50:ac:58:63:14:7a:55:11:1c:05:16:08:4f:
e9:38:55:4f:8a:fe:c1:41:d4:ff:32:10:b7:7f:bb:
f1:83:c2:69:57:37:e3:5d:ff:05:38:4c:ce:95:49:
74:10:d0:05:36:0a:40:c8:a8:86:24:9e:3e:9d:8e:
7c:5b:ff:1d:15:88:4f:2e:03:d8:cd:06:a2:bd:1b:
ec:4c:cf:11:dd:05:0e:c8:1f:7c:e8:a4:ef:ba:ca:
5e:1d:a7:49:fe:41:8a:69:5f:78:aa:0c:ed:d7:56:
4a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:21:56:6E:2A:47:80:7D:04:6F:9C:EF:66:11:01:C6:51:AB:92:7A
X509v3 Authority Key Identifier:
keyid:7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:95:2f:c5:0d:d3:ae:e0:54:67:99:82:4e:23:be:e0:8a:95:
eb:04:35:19:99:b0:68:90:13:c8:9d:9c:7a:8c:ce:f3:fa:96:
b8:b8:7f:08:42:e2:fb:af:36:ae:09:d5:24:fb:79:83:db:16:
43:9c:6d:5e:28:13:62:8c:b7:eb:0a:0f:c2:5a:36:23:55:99:
71:e1:4f:08:01:20:9f:ba:7e:52:9f:3a:8a:6a:69:75:a8:1f:
ad:71:c9:34:c9:c8:e1:4e:d5:d8:62:c0:4d:c4:d8:42:db:c7:
fb:b2:46:b0:61:5e:4f:2e:39:fa:fd:2d:52:d2:1a:aa:c5:88:
e0:2d:4e:49:25:72:fc:dd:e0:f2:eb:67:54:03:ee:fb:6e:48:
d8:91:1c:db:2e:5a:86:95:87:ce:67:c1:e8:ad:88:1c:82:3d:
50:7e:cd:ad:a0:4c:60:e6:9d:bd:d2:57:1d:82:a4:35:33:3e:
6f:a5:0c:6d:ae:cc:80:0c:23:f3:71:ed:f8:a3:da:51:eb:32:
7c:48:97:5a:38:b5:84:c9:48:3c:a0:f3:b1:4f:f8:6c:a2:43:
bd:0a:63:d9:31:60:02:38:64:bd:e6:9a:df:a7:dd:c9:93:12:
9f:3e:a0:65:4f:41:16:a7:05:72:74:e4:d5:66:21:b1:c6:f9:
3a:4e:3a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 20 13:11:02 2025 by rpki-client