Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
File: fQtE5JJUnht9pTLIDDSIUMWkToA.mft (raw, json)
Hash identifier: +baRfRmqOAxiahoD/iIXY7h/VeeaQPVxpQ1wrMrL27k=
Subject key identifier: 1C:00:69:EF:06:45:FA:67:E6:2F:C3:4E:55:38:EC:01:66:9B:B9:EB
Authority key identifier: 7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
Certificate issuer: /CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Certificate serial: 0197402DE7E9C212B4CAF3A737C75DE7B65D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
Manifest number: 1579
Signing time: Thu 05 Jun 2025 13:00:39 +0000
Manifest this update: Thu 05 Jun 2025 13:00:39 +0000
Manifest next update: Fri 06 Jun 2025 13:00:39 +0000
Files and hashes: 1: Vh9zdU6UPXBw1wsGMQVn_pjjotw.roa (hash: RHQ7Mk9Ul2niP+vY1weS4xjGH8dOqLq3Efjab5Bc1HU=)
2: fQtE5JJUnht9pTLIDDSIUMWkToA.crl (hash: VuvHf7oMiyGYVOtmpSXixn4U2o5HYpCzNQk4Qr7FP+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:40:2d:e7:e9:c2:12:b4:ca:f3:a7:37:c7:5d:e7:b6:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Validity
Not Before: Jun 5 13:00:39 2025 GMT
Not After : Jun 6 13:00:39 2025 GMT
Subject: CN=1c0069ef0645fa67e62fc34e5538ec01669bb9eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6c:32:88:a5:d4:62:2a:f0:68:b9:0a:56:d3:
d9:8c:55:b6:7e:28:35:17:20:ad:15:ce:00:98:72:
41:da:39:2f:23:78:04:ec:98:e6:ba:cf:67:28:2d:
c3:0e:da:d8:32:45:01:17:b4:7b:9e:86:85:c7:6b:
45:de:aa:48:2f:48:be:eb:78:9d:61:2a:10:7c:ee:
08:7b:90:54:fc:3a:28:73:20:1d:1b:29:4e:fa:ce:
72:d9:ee:89:17:37:d4:f1:01:c2:21:69:66:20:ac:
3e:bb:4a:23:e9:67:d9:95:2c:10:11:06:ca:55:d7:
67:e8:da:21:8f:5e:a4:cd:2e:4f:8f:30:05:d7:22:
48:54:ea:2a:95:2a:34:87:e1:a0:52:33:25:a8:4d:
78:90:9d:33:48:f3:93:98:b3:8d:6c:2d:a6:21:f6:
8a:8a:d2:14:f2:ca:22:9b:a7:2e:02:7c:87:73:68:
c0:12:29:9f:3d:bd:ca:d2:1a:f0:01:29:24:6b:37:
59:34:c4:ab:e7:a6:f2:ee:62:f1:10:75:1a:62:53:
63:79:84:8d:92:de:58:b3:a4:40:f0:61:5b:f9:fa:
72:ab:81:44:5e:8e:a0:59:78:36:dc:e8:2f:c2:06:
4a:71:78:51:f1:c0:11:b4:12:03:e5:83:0f:67:c2:
1c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:00:69:EF:06:45:FA:67:E6:2F:C3:4E:55:38:EC:01:66:9B:B9:EB
X509v3 Authority Key Identifier:
keyid:7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:0d:78:22:bf:25:d6:5c:cb:35:f2:ff:5a:e0:74:a7:b6:d5:
1d:24:e5:19:32:6c:57:ee:f1:71:10:76:4f:05:6a:cb:d8:42:
fe:83:5e:44:8d:79:9e:66:75:6e:68:00:bf:71:e0:bb:98:c5:
d0:e0:60:18:6e:f0:a5:d6:89:b3:77:6a:a5:01:44:be:4c:a0:
20:63:53:96:28:c2:5d:3d:5f:a6:82:24:74:ba:dc:a6:f9:89:
49:b9:ca:37:70:a4:7c:c5:76:a4:07:96:d1:fa:77:4f:fa:23:
36:0c:88:e9:46:06:05:ff:57:31:a3:de:8b:80:ff:c2:4c:ec:
7f:71:42:22:94:58:45:db:6d:30:d2:40:a5:0b:48:9a:8a:00:
c2:d2:8d:59:bd:bd:df:81:03:c5:77:b2:62:b1:d1:d8:3f:3d:
5e:bf:45:d3:0a:a9:6a:4c:f3:f4:96:26:e1:86:66:4b:c8:b7:
13:32:e0:22:58:13:ec:29:04:0a:95:c4:d2:19:77:86:1f:6c:
14:b8:2b:08:b9:30:e9:e0:97:f2:35:90:97:7e:d0:98:fe:64:
bd:ea:e8:50:4b:75:2d:90:d5:c8:66:f1:4b:6e:6b:98:3a:98:
12:90:41:4f:e4:05:a3:ae:76:a0:d9:e5:fb:92:83:44:c2:80:
f8:7a:3a:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:11:16 2025 by rpki-client