Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
File: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft (raw, json)
Hash identifier: pL19wNv0f5W+/Us+8iEYj2dkulx6xZwqs7Jsj+CX2Og=
Subject key identifier: 3C:28:8D:87:C0:54:9B:66:A7:B5:66:09:92:A0:59:CF:CD:4C:84:51
Authority key identifier: 7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
Certificate issuer: /CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Certificate serial: 01974931338152444E1A215F036B4968CF30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 07:00:50 +0000
Manifest this update: Sat 07 Jun 2025 07:00:50 +0000
Manifest next update: Sun 08 Jun 2025 07:00:50 +0000
Files and hashes: 1: 1EKO08t3Z9nlIgriObmmD60gwS4.roa (hash: GhRL3PpvS/3V9MnssSh8wyX1VbIpwoy88Gmt2c9/PH0=)
2: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl (hash: efsyBSr7TWtdRIfRoPgIGhvLvMPlS4LX6m070OZgZMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:33:81:52:44:4e:1a:21:5f:03:6b:49:68:cf:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Validity
Not Before: Jun 7 07:00:50 2025 GMT
Not After : Jun 8 07:00:50 2025 GMT
Subject: CN=3c288d87c0549b66a7b5660992a059cfcd4c8451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d3:34:91:8f:21:19:6e:31:b8:c2:fb:49:2f:
ef:e0:3c:59:a6:c1:c8:65:f7:1a:d0:09:c0:53:aa:
43:e6:78:71:a9:da:6f:21:e1:4e:e1:a3:9f:c2:9d:
a5:59:a7:6f:6f:c9:8c:37:7a:ca:07:6f:e7:c3:9d:
e2:9a:0d:b3:be:34:4d:9b:bb:6f:16:b1:90:60:06:
86:ce:6d:64:02:dd:dd:d4:ff:04:5c:08:94:f6:6c:
1f:0f:0d:19:2e:55:53:4c:d2:61:81:14:3c:1c:61:
85:e3:f5:ec:8d:a6:36:f9:6b:f2:c5:0c:15:22:c1:
90:cc:bd:4e:b1:84:a8:bd:a1:e7:81:14:6c:ec:c2:
e8:f6:50:bf:f8:e5:89:67:ef:0d:8a:81:ca:4b:83:
2b:79:62:62:8c:ef:0e:86:63:01:51:08:43:bd:0c:
3a:14:4b:ff:77:c2:2e:e1:86:6c:46:ec:b7:31:0b:
14:f1:86:a2:69:d0:d1:ea:13:50:bd:4d:10:cb:dd:
80:a8:3e:82:cd:84:77:6e:a5:ac:00:53:15:13:d6:
4f:70:55:03:97:cf:5f:b9:ff:a8:9f:ac:15:5f:63:
b4:37:07:24:f8:65:35:96:a5:1f:4e:e0:76:dc:cf:
7a:f7:5d:4d:f2:c4:17:d1:53:61:6a:1d:31:66:27:
6f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:28:8D:87:C0:54:9B:66:A7:B5:66:09:92:A0:59:CF:CD:4C:84:51
X509v3 Authority Key Identifier:
keyid:7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:3d:c9:0a:49:0b:ae:6d:3f:62:c7:84:34:95:97:31:f4:1a:
61:92:84:03:23:88:b4:0b:eb:a3:92:52:3a:48:8a:27:3e:26:
8e:ff:5b:51:b1:f7:5b:f3:67:79:28:94:7b:f4:f5:4d:28:ff:
3c:0a:cf:19:92:62:f7:bb:e5:0a:99:c5:62:31:9c:7b:d9:24:
97:6b:85:2a:13:17:68:7d:33:34:83:8b:3e:83:5a:01:2e:8a:
88:fa:c1:e6:1f:98:45:ce:41:60:52:8d:d6:9e:ab:05:90:ee:
70:de:97:2d:42:76:9d:70:70:d8:0c:da:8f:fd:05:7a:5b:93:
11:f3:d9:9f:79:ff:b8:f3:e8:64:67:2b:a6:7a:df:61:83:5a:
65:0e:24:21:67:47:ed:f3:19:f9:c0:ec:77:82:91:fb:3f:f5:
03:5a:18:91:e4:d1:9e:ae:2f:22:84:aa:a7:c2:10:0e:54:90:
f1:1b:c2:89:55:02:96:62:df:95:1d:d8:9d:0d:61:00:23:34:
2e:f0:aa:fc:47:d5:dd:a7:18:97:2d:0b:40:b0:cc:8f:69:a8:
7c:a7:08:3a:c4:1e:65:a8:b8:43:56:8d:be:66:c3:be:91:7c:
c0:99:bc:ad:98:a1:d4:83:8b:0e:f8:a0:8f:69:d7:12:02:78:
f3:c0:c0:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:07:22 2025 by rpki-client