Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
File: FZjXXo4y1ehH30qho1wpNEyXbiY.mft (raw, json)
Hash identifier: Cdn3DkMB3FTJcN0TMhKKDc0/MwKDxt4EF9f/192sD/8=
Subject key identifier: 9C:46:4F:C8:AF:43:4D:5D:AD:2C:B5:8F:EC:CE:09:31:97:46:D8:99
Authority key identifier: 15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
Certificate issuer: /CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Certificate serial: 0197B632D24A5A5F003095C19597EDD34D0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
Manifest number: 0F87
Signing time: Sat 28 Jun 2025 11:01:13 +0000
Manifest this update: Sat 28 Jun 2025 11:01:13 +0000
Manifest next update: Sun 29 Jun 2025 11:01:13 +0000
Files and hashes: 1: AIRZFXDpY9mQ7Mvu8kYb8OBEtUo.roa (hash: d5gxdyXpVK75f5B2dssNKeXHA5IUThR6PGmkaU8utQY=)
2: FZjXXo4y1ehH30qho1wpNEyXbiY.crl (hash: ACl9KxCee0dZLiHZhoVqrszXcCBUtoU1AeDCVp06lG8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:d2:4a:5a:5f:00:30:95:c1:95:97:ed:d3:4d:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Validity
Not Before: Jun 28 11:01:13 2025 GMT
Not After : Jun 29 11:01:13 2025 GMT
Subject: CN=9c464fc8af434d5dad2cb58fecce09319746d899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:78:b0:59:9b:3c:93:d7:c0:3c:ad:94:30:38:
2a:81:12:9d:87:34:fd:29:b8:d9:67:e6:40:9d:8e:
78:c8:87:d5:77:c0:63:a5:6a:86:0a:01:f2:eb:90:
3a:1b:13:28:81:3e:b0:65:79:26:a1:98:78:4c:55:
ba:8e:4a:46:08:04:ca:4c:21:3d:5d:25:b0:26:12:
b6:39:81:fe:de:50:df:f6:71:8c:0a:1f:56:8f:1e:
eb:60:4b:65:77:ca:f3:67:08:7d:85:e0:2b:c7:2e:
e0:66:99:02:2e:51:84:ac:43:0f:23:e8:99:81:e0:
e1:54:7b:6e:c5:d8:5b:0b:18:36:92:a1:bc:3b:a1:
0d:8a:cf:a5:45:f0:67:19:ae:11:db:8f:0c:fb:c8:
b2:27:15:a7:bb:29:36:46:20:f9:cd:6a:aa:e7:61:
d8:fd:6c:a2:67:38:41:64:ce:9e:18:e5:96:8b:0a:
f3:89:12:a0:ae:4a:53:88:27:78:cd:9f:ff:e0:75:
22:fc:d7:ce:24:93:65:10:f3:47:dd:e2:08:b7:54:
98:b1:54:ad:d2:ad:d1:88:c7:43:3c:bb:50:dc:95:
79:8e:97:7e:65:20:e0:66:9a:b8:ad:e3:51:31:85:
96:fb:1c:99:38:05:65:9e:08:29:b8:4b:ac:db:6d:
eb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:46:4F:C8:AF:43:4D:5D:AD:2C:B5:8F:EC:CE:09:31:97:46:D8:99
X509v3 Authority Key Identifier:
keyid:15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:42:83:6d:ce:dc:dd:f1:f7:af:a3:9a:21:61:89:b4:f8:b1:
40:f6:2f:14:db:3e:ab:08:6a:3b:ef:df:44:fc:50:17:1e:4a:
95:34:04:d1:a1:08:6f:75:31:48:f8:40:27:c5:0c:25:b1:dc:
70:bb:36:37:04:64:b7:74:84:b7:f8:a0:0e:8e:34:6f:0b:5e:
ff:c3:74:b5:29:b8:7c:92:2e:5f:d1:05:e7:b2:92:b1:ce:6f:
48:39:3f:2e:d3:69:e3:c4:33:40:00:11:f5:72:d5:59:6f:84:
70:e8:60:88:34:06:e1:49:ec:1b:a3:76:38:b8:4c:e0:d4:72:
48:5a:eb:50:20:c3:66:a7:77:c6:6d:33:09:3c:3d:ae:36:2a:
4f:1d:8a:d7:a7:b0:f5:dd:d0:01:2c:e7:29:27:cd:f6:b4:29:
ea:53:06:52:8b:c9:cb:4d:2b:71:bf:ab:4e:24:20:da:a0:4f:
8b:68:ec:f6:72:04:d0:43:60:a8:80:a1:a2:ce:13:2a:30:4c:
05:7e:b2:e4:26:32:64:a9:f1:c1:5d:f0:06:c3:ee:ba:c9:6e:
84:36:ee:05:e7:40:47:9a:99:11:0a:64:33:6a:2c:a5:62:88:
27:45:3d:c3:75:82:86:b9:80:38:1b:0c:ce:ee:b6:42:31:c7:
41:df:b2:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:02:09 2025 by rpki-client