Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
File: FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft (raw, json)
Hash identifier: g6WDskDK/UPEEPGTET6Im3+3wpNPqlW0xiwVNmhg9Uc=
Subject key identifier: 29:15:2D:4D:3F:60:3E:90:B0:A0:8E:54:55:28:3B:86:13:95:83:F5
Authority key identifier: 16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE
Certificate issuer: /CN=168a919a4a463f3ca2bba5442550fc247da90cae
Certificate serial: 0196AE44BA6D9A25C578220821CA6DE83A1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
Manifest number: 4C
Signing time: Thu 08 May 2025 05:01:01 +0000
Manifest this update: Thu 08 May 2025 05:01:01 +0000
Manifest next update: Fri 09 May 2025 05:01:01 +0000
Files and hashes: 1: FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl (hash: 87bszbHOxmEbNcD4Is3AZppBbNso553gZmZqUhCwnpc=)
2: ve2iEFS7yneK4NHtoTNszVB8cZo.roa (hash: g/XvhTcgORHoQzc25n1ZqGUd92LVhhds69w5ITmpr4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:44:ba:6d:9a:25:c5:78:22:08:21:ca:6d:e8:3a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168a919a4a463f3ca2bba5442550fc247da90cae
Validity
Not Before: May 8 05:01:01 2025 GMT
Not After : May 9 05:01:01 2025 GMT
Subject: CN=29152d4d3f603e90b0a08e5455283b86139583f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1b:0a:02:63:1a:c0:26:d7:69:16:b5:9f:09:
15:9e:02:1b:ab:36:ea:58:e0:17:0a:a5:c6:a1:93:
09:22:0c:04:a0:d4:0e:41:23:f0:5a:da:a3:70:85:
7f:6a:09:92:c3:8b:c7:39:72:f4:d1:26:1f:10:58:
5d:78:2f:db:0a:22:17:cf:b4:44:53:0c:4d:6e:3a:
00:dd:38:59:02:ca:ed:80:59:75:dc:0b:a9:32:46:
16:6a:b5:2b:62:bc:95:d5:44:83:25:2a:cc:92:56:
5b:66:ba:e0:3f:14:c5:e8:ab:47:bc:13:36:2b:13:
4d:55:fa:63:d0:5c:a5:eb:4d:17:f6:4a:99:ee:4e:
56:23:05:7f:79:b9:55:58:c9:92:e6:82:c8:9a:a2:
e2:85:d8:48:df:f8:a5:9f:6f:12:de:f9:c4:e2:a6:
db:f1:56:de:69:35:29:cf:f9:59:1f:2a:87:55:d0:
bd:ae:66:6c:1a:73:61:fd:ce:56:55:86:7f:05:53:
83:ef:c4:f4:14:68:70:87:61:0e:a6:dd:9c:bf:04:
3a:97:af:c1:3b:17:da:55:2e:5f:4c:6f:df:36:38:
ba:bb:4c:84:0b:a3:e1:ca:a6:61:64:e6:6c:85:31:
62:6b:45:cd:c7:a6:82:c8:31:0d:3c:b1:b5:ab:f3:
e1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:15:2D:4D:3F:60:3E:90:B0:A0:8E:54:55:28:3B:86:13:95:83:F5
X509v3 Authority Key Identifier:
keyid:16:8A:91:9A:4A:46:3F:3C:A2:BB:A5:44:25:50:FC:24:7D:A9:0C:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoqRmkpGPzyiu6VEJVD8JH2pDK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/fc0bd6-9868-4b49-9888-dcd6a39f80df/1/FoqRmkpGPzyiu6VEJVD8JH2pDK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:f2:f3:be:eb:b7:2c:10:1a:e7:1e:0a:1f:74:57:0b:01:9f:
98:eb:b3:97:b4:9d:83:79:fc:bf:b3:8d:b6:ed:8d:7d:7f:06:
1d:e7:81:dc:cb:2b:cb:5d:e6:c4:89:d4:b5:29:e5:a8:0a:7e:
36:01:5b:8c:19:36:17:51:0f:cc:3b:cf:25:df:82:49:ba:20:
3f:8a:93:e5:3a:71:1a:50:45:2b:db:e2:0b:28:bf:c6:b9:45:
c9:06:46:3e:29:7e:29:8d:1d:97:68:8b:14:1a:ec:ef:bf:c3:
1f:fc:b4:5b:39:8a:f5:5b:ef:ee:0c:f9:cc:ce:90:44:81:7d:
08:56:67:a0:47:94:77:79:39:56:31:f7:f8:c9:20:bb:54:bd:
85:b2:6e:19:3c:3b:b6:bb:71:6e:e4:42:7f:c0:fd:bb:92:6f:
da:39:70:d2:fc:05:a1:05:06:48:77:ee:00:62:c4:4e:8e:db:
86:95:e1:dc:06:ba:38:ba:62:2e:21:a9:17:11:22:92:fb:41:
82:a5:9c:65:a2:b6:e0:0c:60:af:39:22:4a:7f:61:28:2e:3f:
95:a1:43:f6:67:4a:7f:64:ea:18:42:64:dc:b1:2a:c6:16:af:
f9:52:4b:f9:6a:8d:fe:52:5e:f3:c2:9e:04:e9:1e:07:31:2c:
49:64:56:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 10:03:13 2025 by rpki-client