Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
File: cF3hUpBmZK56yfIIesTQBoWl1_A.mft (raw, json)
Hash identifier: aHH8W6KGkedqZSNxGD2f2j+cIyxwpn3H9ClqJm3kU+0=
Subject key identifier: 2F:D6:4A:78:12:59:EB:C2:E7:31:DE:88:CF:12:72:01:1A:89:07:86
Authority key identifier: 70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
Certificate issuer: /CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Certificate serial: 0197499EDD8A325D71BFA3B22C035809D3C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 09:00:37 +0000
Manifest this update: Sat 07 Jun 2025 09:00:37 +0000
Manifest next update: Sun 08 Jun 2025 09:00:37 +0000
Files and hashes: 1: TKoxALo9u8PRYJQQjNMDBzOManE.roa (hash: e6LRQQhGn2Pm43QUsi5AMgfehOrdW1tISUFnEIiJny4=)
2: cF3hUpBmZK56yfIIesTQBoWl1_A.crl (hash: vA4Xz+Aj4H9ZMnD7384IRbqPftEhnZIVmL4Z6gPZ+80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:dd:8a:32:5d:71:bf:a3:b2:2c:03:58:09:d3:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Validity
Not Before: Jun 7 09:00:37 2025 GMT
Not After : Jun 8 09:00:37 2025 GMT
Subject: CN=2fd64a781259ebc2e731de88cf1272011a890786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:60:c0:2a:ee:8b:35:16:82:d2:a9:d5:01:cf:
7b:9e:2f:f6:43:7d:5e:7f:10:f3:11:b7:b2:6c:02:
cd:00:c7:25:c5:10:1e:70:4c:83:a1:e4:51:bd:77:
b9:cd:6f:1f:46:bd:96:be:c7:f9:d9:47:0a:7c:77:
2d:c7:6a:ab:70:fc:ac:27:56:2e:3d:f5:fd:dc:c6:
6e:5d:e8:18:85:b9:3f:8b:a4:16:d9:b6:97:66:a4:
7c:9a:67:66:5b:20:2b:e8:96:7a:f1:77:d9:df:fa:
9f:4f:9e:30:87:3d:61:1b:33:84:75:8e:6e:a2:e2:
22:30:b3:6e:e6:97:db:3d:6d:54:9d:00:a3:e4:09:
53:18:d0:45:e9:8d:40:ec:fe:20:d1:0f:22:86:b1:
df:5f:a1:1e:da:8f:f8:d8:9c:da:20:8c:c9:cf:67:
01:61:52:2c:92:a6:26:cb:59:c9:ba:ac:4b:cd:99:
c3:9b:fb:44:c9:df:7d:7d:55:05:0a:c8:5e:be:75:
56:03:07:de:ad:33:47:a3:1c:cf:0c:fd:3b:de:04:
46:50:78:f1:63:ab:e8:bd:ad:7b:c1:a5:31:1a:af:
49:8e:ec:02:ac:55:14:45:dd:76:91:51:e4:74:03:
24:a3:fc:be:f4:15:68:e6:85:41:02:34:ad:8d:87:
81:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D6:4A:78:12:59:EB:C2:E7:31:DE:88:CF:12:72:01:1A:89:07:86
X509v3 Authority Key Identifier:
keyid:70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:94:2c:d7:d9:9b:69:51:4b:f9:36:8b:c3:40:d0:9d:95:04:
38:40:5c:4b:08:17:35:32:36:1b:de:e8:a9:43:0f:38:64:71:
b0:b6:09:c2:d1:a1:c7:d8:0c:f0:ae:e4:ea:f6:fc:cd:b6:b8:
c5:18:12:d0:f1:bf:29:bc:8d:c1:30:23:41:95:3c:f3:6d:0d:
bc:06:7b:02:f2:55:5e:74:0d:e2:11:0d:b7:3c:eb:6b:3e:0b:
51:fb:11:09:8f:8c:4e:5f:7a:ca:10:51:fc:ad:0d:9f:cc:16:
c2:25:2c:36:20:89:f5:7d:20:0e:2f:c3:d2:ea:44:e2:34:72:
1d:66:8e:14:c1:df:bd:16:ef:42:6d:cb:1a:bc:5a:72:af:cb:
12:85:4e:7e:66:ca:07:cb:27:57:90:c4:bd:80:50:a5:49:11:
c6:ee:b5:11:ef:6c:4f:74:fa:5e:be:44:55:17:3b:51:cc:21:
50:90:0f:0d:95:fb:0c:f7:c1:88:2c:5f:b7:e5:2b:e7:f1:76:
8a:22:7d:0f:31:c1:ea:2b:ad:f9:80:a4:7d:e7:bb:99:b6:cc:
61:22:71:04:f2:52:eb:0e:63:45:62:7d:7f:b8:8c:b0:b3:fc:
42:d0:d5:af:0a:e3:2a:7f:ec:d7:ef:97:65:90:5d:ad:22:30:
8e:97:f2:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 17:56:09 2025 by rpki-client