Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
File: FMFDiPKGLX4nqH_m9gHjTzRXI04.mft (raw, json)
Hash identifier: JhQzSBmjHBNNvTzpBn7dMPvwdVwqpclxLotMo8sl/bc=
Subject key identifier: B3:6E:DA:49:74:85:08:69:31:DF:B1:04:13:2C:3F:B4:49:9E:7E:5D
Authority key identifier: 14:C1:43:88:F2:86:2D:7E:27:A8:7F:E6:F6:01:E3:4F:34:57:23:4E
Certificate issuer: /CN=14c14388f2862d7e27a87fe6f601e34f3457234e
Certificate serial: 0197B70EEAD06C52C7B21AFCF6AB415745C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
Manifest number: 0A2E
Signing time: Sat 28 Jun 2025 15:01:37 +0000
Manifest this update: Sat 28 Jun 2025 15:01:37 +0000
Manifest next update: Sun 29 Jun 2025 15:01:37 +0000
Files and hashes: 1: FMFDiPKGLX4nqH_m9gHjTzRXI04.crl (hash: Kle6gOKGmRAkXhhxzTz+SoprwJ4kKur4rgFyH0ZowfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:ea:d0:6c:52:c7:b2:1a:fc:f6:ab:41:57:45:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14c14388f2862d7e27a87fe6f601e34f3457234e
Validity
Not Before: Jun 28 15:01:37 2025 GMT
Not After : Jun 29 15:01:37 2025 GMT
Subject: CN=b36eda497485086931dfb104132c3fb4499e7e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d1:67:fa:44:49:6c:94:17:39:ca:43:cf:d3:
48:7a:69:5c:24:5b:a8:c8:95:7e:51:4d:7b:e2:8c:
f5:52:45:4b:08:07:da:d7:5e:17:2a:1b:43:b8:0c:
2d:53:72:07:e3:d4:35:5f:b5:b2:71:0e:1c:94:ed:
80:7e:3b:95:84:0f:47:39:9a:88:a9:9e:ad:16:40:
86:10:4f:b0:ab:a7:47:fd:0a:7a:c4:d3:13:df:e1:
ba:19:ad:35:15:15:69:61:3c:e7:5c:93:ec:67:f1:
94:05:a3:7a:59:63:66:cc:55:9f:84:2a:b1:ad:5f:
34:45:d7:35:05:02:1a:fe:e6:f2:3d:c4:02:e3:83:
49:7d:90:fa:0e:20:26:c0:37:02:a5:c2:27:01:35:
83:39:52:96:83:0c:3e:e4:0c:82:80:f0:1b:3a:c4:
f8:61:31:53:52:cb:e5:dd:cf:a1:80:59:32:54:cb:
f4:3c:65:02:b9:ca:bb:40:9e:a1:6f:3b:b7:b7:31:
f2:fd:6d:bf:48:46:bd:33:34:51:e9:a3:cc:cb:c6:
20:47:95:ca:43:b6:ed:50:97:01:fb:4c:d7:38:88:
b0:49:4e:41:10:58:68:f5:1a:48:6d:6c:d0:28:dd:
1f:25:d0:48:4a:cb:d9:b1:35:df:2f:c5:cc:21:06:
a1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:6E:DA:49:74:85:08:69:31:DF:B1:04:13:2C:3F:B4:49:9E:7E:5D
X509v3 Authority Key Identifier:
keyid:14:C1:43:88:F2:86:2D:7E:27:A8:7F:E6:F6:01:E3:4F:34:57:23:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:25:91:28:21:4d:7a:c4:a8:39:29:74:2d:2c:77:15:fd:a2:
d0:08:88:8f:ea:60:01:06:dd:fe:92:4b:47:b6:1b:f0:02:90:
41:8b:75:3e:a6:e9:d8:01:f0:fe:e0:43:a0:00:67:20:33:e9:
21:cf:6d:55:77:cd:dc:77:c6:8d:b0:81:1d:88:26:29:64:c6:
5c:85:8d:3d:b1:32:15:47:23:54:d9:c4:3c:77:28:65:7d:ef:
b0:e5:6e:44:c6:30:bf:a7:72:4c:1e:67:72:eb:99:90:49:c7:
64:97:d4:38:ed:5b:36:5f:0f:8d:29:e7:44:ec:ab:dd:bb:a7:
03:eb:50:b2:49:fc:07:d8:29:e6:2b:e7:7b:b7:6a:06:36:fc:
56:cb:de:9a:d1:88:a8:0e:40:ff:c5:51:aa:21:73:08:fd:94:
21:99:ba:68:d4:08:c2:10:d1:23:86:ab:e0:ab:69:e4:5b:d4:
a5:42:a2:2e:70:20:34:4b:bd:9a:2f:d3:b9:ad:86:87:88:40:
38:60:fd:9d:85:9d:9c:4f:9a:c9:ac:6e:d8:42:d7:4c:4d:96:
52:73:3f:49:5a:01:8c:77:75:e4:b1:e6:e3:4d:47:53:16:e7:
3c:6c:91:85:01:7d:be:c8:fb:6d:48:b0:76:cd:2d:f1:9c:8e:
6e:9e:72:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:11:32 2025 by rpki-client