Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
File: FoYA36ydPRp15mMNaXEC8vITLEg.mft (raw, json)
Hash identifier: Dys4DO3vgxKFUwJ1o77OMSxDIpuyGsCQtHMnR2Znw2k=
Subject key identifier: 21:89:EE:23:2A:D6:00:8C:49:82:86:4C:78:DB:36:13:78:C0:1A:F2
Authority key identifier: 16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
Certificate issuer: /CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Certificate serial: 0196A19B3E9BB2F6D1261DAE472572CAD54A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
Manifest number: 1532
Signing time: Mon 05 May 2025 18:00:27 +0000
Manifest this update: Mon 05 May 2025 18:00:27 +0000
Manifest next update: Tue 06 May 2025 18:00:27 +0000
Files and hashes: 1: FoYA36ydPRp15mMNaXEC8vITLEg.crl (hash: qvHaKS9R7AtoTLmtjV0v7jiOy4DI7cmuvSUWQd2dIFk=)
2: UUcKOryc_ykhvD7v1VUPE00sScs.roa (hash: dAexA2neb3HcfI1bNYdykFIadotQ4NdMRRVIE6QTBe4=)
3: q7sVZrLDAVZQekWMRkAvaSDSl9g.roa (hash: RRTQ5jExs41DvyGCsYtTzal7l6KRuDTnah7ylDN5VEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:9b:3e:9b:b2:f6:d1:26:1d:ae:47:25:72:ca:d5:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Validity
Not Before: May 5 18:00:27 2025 GMT
Not After : May 6 18:00:27 2025 GMT
Subject: CN=2189ee232ad6008c4982864c78db361378c01af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:df:cb:ab:2d:13:34:bb:8d:fd:d3:d5:92:3e:
03:51:ac:3b:93:e0:12:72:07:e9:fa:25:96:b6:52:
46:9c:15:24:c2:ae:85:e9:00:3c:a2:1d:d7:fb:ab:
7a:da:c1:1f:12:7c:9c:3f:82:87:15:28:c7:50:8f:
3b:da:83:62:bd:2a:ea:32:27:be:46:a5:73:64:65:
c1:60:a5:b2:77:ad:41:15:17:4b:ed:ff:9c:f4:7b:
ca:c4:a8:40:1b:1a:bc:43:6a:31:68:45:1f:fb:22:
fb:9a:5a:ff:8c:aa:e0:8e:56:a7:8a:50:10:3c:19:
ab:bb:38:f7:97:6f:a2:8d:4c:65:88:e5:4f:47:84:
95:06:c4:3e:8d:63:62:5b:bb:c7:58:e4:27:8f:d8:
81:d1:0b:62:70:4a:9c:ff:03:c8:26:1c:d2:50:4a:
3d:08:ae:64:db:c9:e5:95:0e:27:4d:7a:da:e6:ea:
05:8a:51:11:05:74:69:c8:4b:fa:b3:1a:13:9d:11:
e0:bf:30:ad:b4:a9:55:d8:ff:7b:4b:86:25:93:f6:
e3:2d:1b:ef:ef:b3:54:5d:e9:d0:14:8c:25:35:cc:
43:25:15:ed:ec:1d:51:10:7b:2b:89:04:59:59:c7:
2c:c0:ee:47:dd:7d:b5:ef:eb:3e:41:92:77:6f:89:
a3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:89:EE:23:2A:D6:00:8C:49:82:86:4C:78:DB:36:13:78:C0:1A:F2
X509v3 Authority Key Identifier:
keyid:16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:f0:26:6e:a1:00:4b:7f:14:4b:eb:b3:c7:bc:d4:b0:be:1d:
b1:e4:f0:b7:c9:a6:2a:ba:de:df:3f:48:75:32:16:01:85:fd:
e0:5d:0b:49:1f:3e:74:bf:62:11:fd:cf:6d:f5:f9:57:f2:d4:
76:40:1e:32:fc:78:9d:88:24:d9:1b:7f:58:e0:26:ad:45:66:
56:54:b0:a2:66:59:e0:30:b0:31:20:0d:51:a4:7d:1b:4d:08:
9b:c8:31:7b:db:23:bd:80:e3:37:db:d1:45:97:38:e6:e0:c2:
e0:1a:5c:51:c6:f7:83:57:1b:69:d6:b6:0d:fa:65:42:7b:74:
da:8e:34:ff:be:0e:ca:9d:9f:77:7a:bb:32:06:7c:03:41:7f:
5e:bd:1c:d7:12:82:5e:77:e5:be:9d:1f:a8:d6:83:80:ef:2d:
f5:e9:06:4d:28:8c:d4:4b:e1:cb:ae:94:5c:24:e8:75:65:31:
a9:4e:eb:67:7d:9c:5c:e4:36:e2:89:52:35:ce:ba:ba:6a:94:
5c:6d:33:aa:8a:80:83:bf:f4:b0:d1:dc:76:8d:31:93:51:35:
bd:c9:84:d8:90:bc:6d:81:c0:df:15:34:27:60:23:c2:e6:86:
b3:28:a3:6b:f9:68:b4:4a:3f:d3:03:b5:22:56:88:d2:0a:35:
71:d8:5e:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 02:34:19 2025 by rpki-client