Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.mft
File: FhQcZCnqr_caNR-yVz32A7uV8nA.mft (raw, json)
Hash identifier: YPzrIZwqngHvpQlMpPmk5JNSfhsBYiq/zS/oEapPl7c=
Subject key identifier: D9:6D:0B:7B:91:7B:F1:BA:14:54:22:94:93:F0:4A:50:6B:93:1A:87
Authority key identifier: 16:14:1C:64:29:EA:AF:F7:1A:35:1F:B2:57:3D:F6:03:BB:95:F2:70
Certificate issuer: /CN=16141c6429eaaff71a351fb2573df603bb95f270
Certificate serial: 0198D4730DC36A845BC396C882282C76DD93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FhQcZCnqr_caNR-yVz32A7uV8nA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.mft
Manifest number: FD
Signing time: Sat 23 Aug 2025 01:02:46 +0000
Manifest this update: Sat 23 Aug 2025 01:02:46 +0000
Manifest next update: Sun 24 Aug 2025 01:02:46 +0000
Files and hashes: 1: FhQcZCnqr_caNR-yVz32A7uV8nA.crl (hash: UA3iDP5vSdlai0Sn1qoUgrmpms38SY1wN5D2Teb5Vzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.mft
rsync://rpki.ripe.net/repository/DEFAULT/FhQcZCnqr_caNR-yVz32A7uV8nA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:0d:c3:6a:84:5b:c3:96:c8:82:28:2c:76:dd:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16141c6429eaaff71a351fb2573df603bb95f270
Validity
Not Before: Aug 23 01:02:46 2025 GMT
Not After : Aug 24 01:02:46 2025 GMT
Subject: CN=d96d0b7b917bf1ba1454229493f04a506b931a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:70:b2:f9:44:94:54:65:dd:aa:c5:24:6e:26:
8d:c9:ac:36:ba:ac:71:31:5a:21:b3:e0:21:45:8e:
e4:2b:1e:39:82:52:db:0f:49:65:9a:d6:76:22:e9:
c0:13:3b:de:3c:56:a2:6d:be:ed:f7:98:da:c1:bb:
fe:79:5c:12:72:45:cc:5d:c2:1a:a5:08:43:13:25:
be:8b:34:c2:8c:39:d7:68:51:c7:fb:8e:d8:d9:e3:
52:84:2b:0d:60:1c:36:cc:85:a9:71:e4:3c:26:b8:
7a:d2:44:7f:c0:0f:02:9f:ed:a6:e6:03:8c:5d:f0:
0f:b4:49:74:4c:ea:1c:00:a9:1d:14:72:1f:82:3f:
58:6d:dd:07:84:c5:5d:bd:5d:ad:3a:7f:dc:96:e6:
44:ff:01:fc:cf:22:b3:ca:86:59:02:05:8c:ea:65:
d5:37:c4:af:67:2d:aa:f4:66:a0:7d:3b:e9:02:d2:
01:5f:3a:99:ec:15:0c:14:a5:4f:3f:26:e8:7c:68:
4b:40:1f:7c:40:cb:50:df:5a:5a:bc:7f:b1:f8:cf:
0a:7b:c6:be:8c:b6:31:15:bd:fa:ce:35:61:94:ff:
f5:36:ed:41:0a:ec:d6:2c:cf:61:34:21:9a:8a:cf:
02:64:8e:95:3b:78:6d:69:9b:57:71:24:ce:e2:a0:
0d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6D:0B:7B:91:7B:F1:BA:14:54:22:94:93:F0:4A:50:6B:93:1A:87
X509v3 Authority Key Identifier:
keyid:16:14:1C:64:29:EA:AF:F7:1A:35:1F:B2:57:3D:F6:03:BB:95:F2:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FhQcZCnqr_caNR-yVz32A7uV8nA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:c1:ff:c1:bb:38:21:30:00:87:c0:64:9f:af:15:07:8b:c5:
38:03:ed:6b:2f:c5:1f:84:bc:c9:d8:5c:25:0d:5c:5a:ec:7f:
0a:09:81:c1:8b:6e:ee:6e:ee:e0:ac:29:e9:a3:c2:cd:9a:33:
d9:e5:44:c3:86:a0:cd:22:55:97:47:e5:b5:96:b3:e1:25:ec:
a8:86:c7:0f:29:7c:3a:aa:92:88:be:57:d5:30:e8:63:29:89:
cf:4e:03:f6:63:04:4c:e9:83:04:a9:7c:d1:a1:77:d9:a5:ac:
db:c1:fd:c7:54:15:67:f4:0b:7b:95:32:d1:d1:22:89:fd:16:
de:59:76:70:25:13:36:13:57:a3:f1:16:a2:fc:a2:ba:08:4f:
ab:84:63:0a:f0:40:bd:b8:c8:3e:e6:11:6c:31:4b:ef:9e:25:
5d:a3:20:f2:61:7b:95:91:ad:a1:b9:20:d1:6c:94:60:4d:38:
27:ea:fa:17:64:0e:4c:64:ae:8a:1a:bb:f1:a3:56:2c:c8:77:
13:11:2e:9e:9d:06:b8:1b:1e:ac:f2:50:73:e6:d4:ce:16:8d:
d9:ac:1f:61:32:19:68:af:02:42:38:4f:3c:36:5d:c7:6f:a7:
b5:99:f9:c0:ef:f9:aa:44:b4:8f:58:af:fc:2b:da:19:e0:01:
3d:23:64:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:25:56 2025 by rpki-client