Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
File: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft (raw, json)
Hash identifier: 9r60SmWL8kDidqRAIlBESeJTYxp4V3gSl7YTYowLih0=
Subject key identifier: 94:04:48:54:0B:C0:80:1D:DB:DA:8E:23:2E:6F:DA:47:19:A0:95:1D
Authority key identifier: 7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
Certificate issuer: /CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Certificate serial: 01984A419171716182C933DB2459C126CA0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
Manifest number: 1602
Signing time: Sun 27 Jul 2025 05:01:07 +0000
Manifest this update: Sun 27 Jul 2025 05:01:07 +0000
Manifest next update: Mon 28 Jul 2025 05:01:07 +0000
Files and hashes: 1: W6ZuDAGnWoDaEzlWI7u6oQknSmA.roa (hash: OmbyY76V+595ZQjAafvVZcWcNGfzKgZ8Ut3VoJKhN9E=)
2: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl (hash: p7wCD1C3VeU4qmKZksS178Mi052lsv1DbZtNTjnI2To=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:41:91:71:71:61:82:c9:33:db:24:59:c1:26:ca:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Validity
Not Before: Jul 27 05:01:07 2025 GMT
Not After : Jul 28 05:01:07 2025 GMT
Subject: CN=940448540bc0801ddbda8e232e6fda4719a0951d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6e:37:cd:81:7f:19:c9:58:2c:a1:d6:05:4d:
2b:35:1f:13:9a:c5:23:df:f9:b6:34:63:2a:df:c7:
72:af:ea:89:ff:94:e2:94:e9:e3:67:19:09:5f:93:
ca:2d:bd:58:99:66:b4:89:d6:6f:3a:ca:57:27:c5:
84:1e:88:54:ff:a7:d7:9b:7b:2a:d1:20:3f:44:84:
d1:ed:a1:bf:6d:d4:15:cc:d4:c9:eb:2f:01:c5:11:
c8:6f:19:43:fc:ad:b6:54:93:bc:4a:30:76:e2:6d:
6c:20:61:a5:e7:47:62:70:a6:90:80:0b:8b:90:b3:
bf:ec:45:5f:98:4e:5f:8e:1f:96:cf:c3:6f:d0:7e:
de:ee:bd:8c:3c:f6:88:c0:7e:96:49:a5:fb:d4:4a:
84:2e:29:e2:14:19:45:64:2a:34:f3:3b:fc:b0:c6:
fa:66:a2:82:bb:67:ef:de:97:dc:3d:4f:c4:94:f5:
a5:c0:28:55:57:96:ab:c6:96:ef:41:da:be:93:4b:
a3:50:ee:90:36:0f:47:c6:c8:b2:64:86:2f:19:9c:
29:f4:3f:40:cb:89:54:a6:be:55:16:78:e7:2a:fa:
53:47:f3:21:40:65:ea:77:bc:84:f1:25:70:12:41:
44:d0:53:2d:b4:d0:76:45:82:63:4e:52:5e:0f:58:
75:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:04:48:54:0B:C0:80:1D:DB:DA:8E:23:2E:6F:DA:47:19:A0:95:1D
X509v3 Authority Key Identifier:
keyid:7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:23:72:fe:d5:55:e0:ce:42:26:fb:5e:e7:d9:d3:a2:44:48:
ad:ec:01:83:15:85:d5:bb:02:ce:26:81:6e:27:40:8d:ed:48:
48:a4:cb:2e:59:14:e8:44:72:63:f9:fd:7d:97:65:9e:c0:91:
df:bb:b0:c1:09:49:7a:11:38:df:5d:be:ba:85:7a:1a:63:84:
a7:94:e2:a4:62:02:8f:14:c2:19:79:ee:a5:c1:de:16:2c:2f:
d7:e0:4f:b4:6e:00:f4:8c:d5:3d:1f:cb:14:69:04:0e:4c:87:
57:9f:14:54:1e:cc:24:43:f5:3d:bc:e3:c2:8c:b0:62:e0:3d:
d4:04:75:78:c4:ad:30:13:a7:ee:16:56:71:42:cd:11:75:ca:
43:3b:9b:cb:6c:4f:86:87:41:6d:69:2d:65:39:27:5f:f7:c1:
b6:85:60:2b:58:ce:f5:4b:89:fa:59:0f:b1:76:0b:4e:a2:a5:
3f:9b:91:0d:54:7e:03:39:88:21:53:f4:50:63:f7:af:ab:2b:
b8:11:3e:15:db:a9:57:5e:2b:9f:0f:93:d3:75:3e:c6:14:ef:
44:42:1f:b2:58:60:bb:5f:86:9d:38:f1:ba:ed:49:36:86:a7:
8f:bb:36:dc:6e:e4:be:f9:d5:aa:6b:53:89:61:00:22:49:c7:
2d:d6:56:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:20:13 2025 by rpki-client