Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
File: FZjXXo4y1ehH30qho1wpNEyXbiY.mft (raw, json)
Hash identifier: flfmTW1EQ960pv+hDnhr7AvQN/P9/CZLXnF7aaIANfg=
Subject key identifier: 5A:C1:01:9E:B4:80:F0:04:5C:D1:FE:06:D7:46:33:57:12:79:6C:97
Authority key identifier: 15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
Certificate issuer: /CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Certificate serial: 0196C2DDE3342B9981C745A3A8C5E0746FD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
Manifest number: 0F09
Signing time: Mon 12 May 2025 05:00:43 +0000
Manifest this update: Mon 12 May 2025 05:00:43 +0000
Manifest next update: Tue 13 May 2025 05:00:43 +0000
Files and hashes: 1: AIRZFXDpY9mQ7Mvu8kYb8OBEtUo.roa (hash: d5gxdyXpVK75f5B2dssNKeXHA5IUThR6PGmkaU8utQY=)
2: FZjXXo4y1ehH30qho1wpNEyXbiY.crl (hash: ZdlKt2G2/WfY0LVxT9uSAZAMG2FdM9GNmx4QKEmYXkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:dd:e3:34:2b:99:81:c7:45:a3:a8:c5:e0:74:6f:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Validity
Not Before: May 12 05:00:43 2025 GMT
Not After : May 13 05:00:43 2025 GMT
Subject: CN=5ac1019eb480f0045cd1fe06d746335712796c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:58:72:ea:44:11:69:c9:06:c0:c5:a8:76:da:
86:c0:da:50:13:f0:28:7d:01:e3:15:d1:fe:b6:96:
7e:c5:23:a7:8d:e5:78:76:fd:e0:31:24:5a:da:1f:
50:5d:d1:f6:9e:fb:9f:1a:3d:d5:65:e1:11:dd:25:
81:f8:3e:7e:d2:60:23:f5:fa:55:9a:67:f0:ae:75:
80:b1:74:b5:a7:6e:35:4a:e9:c9:f9:ac:a0:f4:05:
9b:17:49:a1:5b:e5:70:95:92:07:2d:be:4d:86:5b:
6f:a2:87:c6:ea:6f:19:33:8b:c9:43:21:43:4f:e8:
63:6d:f0:75:c0:cd:a5:3c:a8:ae:a9:7d:f5:85:e6:
3b:b2:d6:bd:3b:12:c6:23:e4:7b:27:33:0a:b2:c5:
ba:f0:d5:35:52:c2:b2:3f:89:52:80:07:b2:8f:62:
a8:b1:69:3f:e6:4e:f8:9b:37:58:90:4a:a7:79:7a:
f5:f8:e2:c6:3b:c6:b8:7d:8f:70:8a:6b:b5:2d:88:
73:7b:8c:db:63:93:45:e0:7b:32:24:49:26:a6:e0:
64:f6:32:21:fc:34:e8:76:6d:e1:c3:b5:de:a5:c0:
93:6c:e0:98:d4:18:1c:48:24:25:4b:b5:a6:17:14:
bb:17:5b:ce:a4:de:53:68:96:0b:b7:fa:d1:f8:9f:
a9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C1:01:9E:B4:80:F0:04:5C:D1:FE:06:D7:46:33:57:12:79:6C:97
X509v3 Authority Key Identifier:
keyid:15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:60:a1:68:fb:3a:6e:c6:ce:c2:81:80:d8:f4:2f:13:88:25:
c2:cb:e6:01:67:15:85:04:4b:0b:79:42:fe:5e:4d:15:74:39:
88:d1:18:c2:fd:ed:69:82:5d:19:99:4a:c6:2f:65:ce:fa:bc:
43:67:d4:da:0e:95:c9:0b:b4:54:41:05:97:8d:fd:c7:00:3c:
39:d3:23:8a:01:be:e7:89:90:71:85:43:66:4e:20:8b:6b:2e:
53:80:c1:4b:16:01:4e:3c:bc:fc:4a:c3:97:be:30:f9:1c:bf:
4b:fd:03:24:fb:5f:19:ae:e8:b2:8f:3f:2a:3a:4a:d1:fe:c1:
12:b1:c5:f9:6c:e7:cc:55:a8:98:8a:af:60:e4:c6:2a:e3:10:
41:24:b7:2d:43:40:01:f5:62:cd:18:c2:bb:6a:f2:37:68:05:
4f:b1:d6:1a:6a:04:73:3f:bc:79:b8:75:57:9c:93:a1:67:ff:
6f:4f:aa:b1:3b:f5:9f:51:d4:db:7d:59:03:b0:39:65:aa:80:
37:bc:f1:bc:8c:4c:82:55:c8:c6:1c:5e:33:b7:11:8a:25:9a:
ff:64:95:34:7a:4f:33:5d:9e:e5:10:3b:05:03:ff:f2:97:ea:
49:31:88:b5:b7:2b:b1:26:3d:1c:63:ee:84:ba:13:2f:cd:66:
04:6f:8a:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:52:48 2025 by rpki-client