Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json)
Hash identifier: 45hCekKf+xEtrM21T5Ort3GT02UHAr509iJAaXWbbCs=
Subject key identifier: AC:93:13:D1:07:5F:73:F6:42:87:8F:AB:85:97:C8:2C:FC:DC:B0:F0
Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Certificate serial: 0196C3B93610819166CC9BB6846426DA2BDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
Manifest number: 153F
Signing time: Mon 12 May 2025 09:00:16 +0000
Manifest this update: Mon 12 May 2025 09:00:16 +0000
Manifest next update: Tue 13 May 2025 09:00:16 +0000
Files and hashes: 1: B9gQbAB9xsN6pQfQdJIwTw0mN8w.roa (hash: x4fcMnOhpMuR2+7kVYptH+8Mn3pldQm1ilWOcm4WRJw=)
2: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: OxJ0Yy38blQZwPbyqReBende4xFQyZ5RRIkpys8sb6I=)
3: jKTi0IFy2Gsl-io5IjP67e8YnpY.roa (hash: zmbRyxceh2NVjEHPxC/G8V+VaBl1rJ3CnIcL4cBiYPg=)
4: li9wgS4CzymH0Pk4gTdAaGRdlAo.roa (hash: kP4uhWCvNqfaCH4owPFsoej6RgMi05GSx/V0iC7WmCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:36:10:81:91:66:cc:9b:b6:84:64:26:da:2b:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Validity
Not Before: May 12 09:00:16 2025 GMT
Not After : May 13 09:00:16 2025 GMT
Subject: CN=ac9313d1075f73f642878fab8597c82cfcdcb0f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:13:19:3f:f8:75:ab:30:13:e5:63:c4:fe:7b:
bf:b8:29:6d:43:19:e2:1b:b9:08:2c:00:44:67:8f:
98:02:62:f8:e9:d3:ea:8b:75:bb:2b:a6:35:a2:56:
51:83:2d:5e:81:15:28:17:b6:e8:79:63:d7:57:c0:
0a:7d:61:f1:01:6e:42:4f:ff:6f:f7:71:ff:d8:33:
f4:24:fe:95:11:09:b2:a9:9a:38:4f:0c:7a:9b:9f:
6e:9a:62:26:c0:ed:4e:03:26:91:fb:fb:fb:7c:5f:
48:04:d5:5a:50:ef:32:92:10:0e:c5:79:92:3d:b0:
b7:d5:94:58:10:7a:d2:a1:3b:ca:29:74:af:4a:76:
93:8c:5d:6c:0b:f3:40:13:3e:74:c4:5d:8b:44:30:
63:4f:d6:e8:1d:fe:85:22:a5:b5:05:28:53:d4:3a:
94:0a:9e:e9:18:7a:9c:20:41:e4:f3:84:aa:56:b9:
a9:71:71:5a:a7:88:a2:b2:df:7a:1c:0a:7a:41:08:
bd:09:f9:4d:06:ec:b2:60:18:99:ff:a8:49:7e:05:
6a:84:e2:65:e7:85:ac:25:1e:b6:a2:dc:98:af:89:
bf:c2:3a:c2:b8:4a:18:a8:75:63:da:ad:84:a5:9c:
7e:ea:29:df:ec:48:eb:de:23:43:83:6b:a8:7c:dd:
79:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:93:13:D1:07:5F:73:F6:42:87:8F:AB:85:97:C8:2C:FC:DC:B0:F0
X509v3 Authority Key Identifier:
keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:42:c5:d8:1b:fd:f5:f5:da:c6:6c:57:75:6b:a9:ae:4d:c6:
43:39:2e:45:ab:e3:d4:87:20:c2:93:b3:65:8b:a9:6a:ec:c0:
30:e7:7d:99:05:75:4e:10:af:42:eb:75:9b:a0:c5:06:36:a9:
0b:fd:1d:71:00:10:7c:1a:56:28:44:c0:ff:2b:3e:98:95:b9:
f0:e2:88:4e:65:9a:4c:1b:b9:9f:79:2e:c7:a0:be:18:96:de:
59:31:50:f3:b5:a3:db:dd:b8:d6:dc:89:fa:9f:26:3e:b5:ed:
e5:ea:7e:f4:2b:0e:ae:8c:54:5e:b3:d7:ee:d8:22:67:95:eb:
ae:75:4a:17:39:17:6c:d5:40:19:37:1a:00:3b:3e:10:f3:74:
f7:e4:17:ac:9c:ca:d3:d9:62:ce:f6:9e:0c:ac:58:0d:df:c0:
6c:02:25:b0:e3:ad:ce:bf:ac:13:17:d7:4a:66:39:f7:c9:1b:
99:48:3f:5c:60:94:2c:17:dc:e0:be:8c:b7:57:a1:45:81:6b:
3a:64:85:74:7d:29:a1:ed:dc:ca:c3:9f:c2:1d:e4:66:97:14:
75:40:84:14:e2:0e:80:40:fa:3c:ef:6a:29:32:e6:52:95:5f:
f6:aa:3a:ab:94:84:b5:ba:69:f2:71:c7:37:e9:6a:13:53:94:
5e:93:f8:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 14:39:31 2025 by rpki-client