Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
File: FoYA36ydPRp15mMNaXEC8vITLEg.mft (raw, json)
Hash identifier: cOHPA+N5bUUVaTTu+toRgbxfUrb7EVcQDaiZ4QCuVdg=
Subject key identifier: D8:18:E0:75:72:A0:DF:03:D4:21:FE:9D:B0:68:3B:06:CE:54:52:16
Authority key identifier: 16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
Certificate issuer: /CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Certificate serial: 0197B7B335E0A84DA0D747B4F92C9B54C838
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
Manifest number: 15C2
Signing time: Sat 28 Jun 2025 18:01:04 +0000
Manifest this update: Sat 28 Jun 2025 18:01:04 +0000
Manifest next update: Sun 29 Jun 2025 18:01:04 +0000
Files and hashes: 1: FoYA36ydPRp15mMNaXEC8vITLEg.crl (hash: uYjGE/0/B0D4qpH1XJV+23NkSrDc72toD312agr/Xh4=)
2: UUcKOryc_ykhvD7v1VUPE00sScs.roa (hash: dAexA2neb3HcfI1bNYdykFIadotQ4NdMRRVIE6QTBe4=)
3: q7sVZrLDAVZQekWMRkAvaSDSl9g.roa (hash: RRTQ5jExs41DvyGCsYtTzal7l6KRuDTnah7ylDN5VEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:35:e0:a8:4d:a0:d7:47:b4:f9:2c:9b:54:c8:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Validity
Not Before: Jun 28 18:01:04 2025 GMT
Not After : Jun 29 18:01:04 2025 GMT
Subject: CN=d818e07572a0df03d421fe9db0683b06ce545216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:e8:0a:88:61:5f:e1:4a:f7:b5:43:23:dc:47:
17:f6:4d:b1:2c:8f:c8:62:94:08:c5:78:20:ce:69:
1d:64:22:43:99:a0:52:fa:5e:d1:ec:9b:a1:13:07:
1f:07:77:de:89:66:b3:73:fa:8d:85:80:6b:65:28:
0c:3b:39:95:6e:f6:c3:d6:48:e7:f8:ac:0a:e4:e8:
57:78:6f:ca:46:f7:68:9c:6a:b0:cd:0a:99:e1:41:
31:82:1c:ff:69:33:9e:5c:e5:cd:f4:2a:6d:27:f8:
8f:c6:64:8d:f8:69:9f:e4:41:31:a6:c9:12:99:d6:
e8:4f:43:0d:6e:7c:74:1c:56:9a:37:b3:3f:65:be:
9e:bf:82:33:62:9c:05:fc:c3:98:86:42:75:d7:23:
87:00:0f:19:10:27:c2:25:76:91:07:bc:a6:5b:7c:
8c:86:59:57:fb:0d:bb:b1:07:42:0a:98:30:84:08:
d2:05:5a:97:b4:14:ff:04:aa:7b:df:8f:3d:05:62:
92:02:bc:d3:98:4d:fe:69:eb:74:6b:7c:91:ca:13:
fc:db:ba:f0:33:51:b2:93:69:b8:8b:f2:92:07:f4:
65:d1:a2:5b:1e:ae:41:c2:c2:66:d8:1c:24:47:21:
14:b2:54:cd:9d:98:01:f0:c3:45:77:1b:e1:f4:9e:
f2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:18:E0:75:72:A0:DF:03:D4:21:FE:9D:B0:68:3B:06:CE:54:52:16
X509v3 Authority Key Identifier:
keyid:16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:37:59:4e:ef:a2:db:ac:4d:2a:8b:60:fe:cc:da:f6:4a:4a:
41:1b:f6:0a:86:0f:d8:21:19:00:6b:96:70:76:b1:ee:35:e2:
33:76:9e:92:dc:83:dc:52:06:6a:d2:39:c8:e9:eb:5d:2a:c7:
45:6b:a8:54:21:83:48:ba:e2:fc:06:92:16:a4:0d:47:00:60:
f0:01:46:b9:7b:7b:50:eb:c0:5b:cd:08:ff:f9:31:4d:01:ac:
99:29:e2:30:e4:7e:ea:fb:8a:4e:63:cc:c9:1a:ff:cd:56:f2:
05:f3:e2:03:e9:fa:e9:1b:9c:4c:fe:92:67:7c:5f:d1:90:a6:
06:cb:b0:85:74:3c:5f:11:83:d6:ec:0a:72:6a:4f:a9:b1:a1:
4f:32:4e:fc:d8:b4:62:94:f1:2a:70:51:aa:16:9f:ad:e0:82:
30:49:c8:25:86:b1:57:cc:0c:f9:24:4a:77:25:16:1f:c2:4f:
20:68:eb:c3:e2:18:dc:32:c2:ff:91:9d:c8:ea:d1:ab:f3:89:
a6:bc:13:41:84:de:e4:9d:33:35:b7:6b:05:22:86:db:3b:9e:
ee:10:8b:bd:1c:fd:68:90:3d:70:19:53:33:ce:75:18:42:55:
f3:d7:57:d1:d5:30:68:6b:bd:61:93:f7:31:70:d8:7a:79:5a:
e2:61:4d:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 00:38:15 2025 by rpki-client