Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
File: fdw2QUyZG_qNkvYCflMINwsitqY.mft (raw, json)
Hash identifier: y/0YW94ajyKgLtuALF7sREJSumiIWgC8kmMWuXlEjF0=
Subject key identifier: ED:63:2F:24:2D:07:01:D6:2D:D0:32:0A:63:1F:DD:CC:1C:56:FB:97
Authority key identifier: 7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6
Certificate issuer: /CN=7ddc36414c991bfa8d92f6027e5308370b22b6a6
Certificate serial: 0197B820D46F0E2D2AE6C8474C17A882FD80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
Manifest number: 070C
Signing time: Sat 28 Jun 2025 20:00:48 +0000
Manifest this update: Sat 28 Jun 2025 20:00:48 +0000
Manifest next update: Sun 29 Jun 2025 20:00:48 +0000
Files and hashes: 1: fIi6Y7TMQAIgGM-S2BYF-rhLP0U.roa (hash: frVihHDK+8j5US3CUXtBypHsqdv++cToSbTh8ao+mTk=)
2: fdw2QUyZG_qNkvYCflMINwsitqY.crl (hash: hgPFVNv8wMLN+XvGrghf6RdZnv8TTe23fbSA8UWZIC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:d4:6f:0e:2d:2a:e6:c8:47:4c:17:a8:82:fd:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ddc36414c991bfa8d92f6027e5308370b22b6a6
Validity
Not Before: Jun 28 20:00:48 2025 GMT
Not After : Jun 29 20:00:48 2025 GMT
Subject: CN=ed632f242d0701d62dd0320a631fddcc1c56fb97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ff:64:4b:a3:9e:ef:2b:3b:8b:aa:26:63:ae:
cf:bd:65:32:71:2b:5e:68:26:cb:a4:87:44:83:b9:
db:eb:24:48:b2:22:82:fc:0d:f1:05:44:f1:3d:4f:
6d:3a:9e:ff:0f:c4:97:0b:ce:07:6c:0d:4f:df:ff:
3f:1a:f9:74:80:53:dd:84:24:91:9d:d4:1b:bd:8a:
cb:ac:67:0b:a7:e9:6c:25:e7:f0:61:a0:31:83:0b:
6e:25:b3:de:6d:ca:32:07:69:7b:fa:b7:6c:2e:43:
e6:34:98:1a:0f:93:f8:60:f6:9c:40:89:6a:44:0d:
2e:1f:e8:fa:6a:b2:6a:a1:ff:da:03:8b:5c:90:79:
a1:2e:f7:59:d3:65:54:fc:6e:7c:08:46:4f:61:14:
87:ea:7c:41:88:9f:5f:43:13:84:d0:38:59:45:a9:
bf:7a:2f:01:e4:14:5a:0e:72:28:c1:f9:d2:f6:a0:
b5:d5:99:e4:80:9f:14:22:37:d8:ae:6c:49:64:b9:
9c:88:2e:23:5e:3a:03:3f:91:39:b9:fc:8e:b1:88:
67:30:3c:f3:6a:68:10:c8:70:75:e9:33:d8:cd:95:
9d:78:f3:9d:9f:15:c3:82:6f:1f:3a:fe:52:9b:14:
45:78:95:54:38:7d:0d:b0:9b:e1:60:4f:e7:e2:54:
56:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:63:2F:24:2D:07:01:D6:2D:D0:32:0A:63:1F:DD:CC:1C:56:FB:97
X509v3 Authority Key Identifier:
keyid:7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:c3:89:7c:ba:92:1f:db:c9:2d:00:98:8d:2a:b9:8d:f2:1f:
97:c9:fb:1a:e1:fe:99:cf:37:cd:cf:01:c3:80:01:45:2e:ab:
0a:e1:c9:e0:dd:0b:7d:fc:f0:fc:47:e3:7f:e9:5c:01:62:66:
78:84:9d:da:98:87:38:d7:f1:92:59:6d:ec:23:c0:74:df:da:
9d:46:19:6d:06:c1:40:ec:1c:2d:d8:74:af:49:9e:47:ae:1b:
af:f6:fc:2f:70:9c:37:c1:75:c1:85:5e:ec:65:9c:ac:5b:16:
8e:27:b6:77:56:51:d3:ea:79:4f:2e:77:78:3f:d3:58:d3:2d:
56:09:32:c8:05:a8:ff:16:91:a8:a6:a7:86:31:96:2d:c9:10:
bb:68:2e:7a:4c:ab:c5:b5:db:a9:e8:57:07:6d:4d:29:35:cb:
3d:ee:99:25:f6:a6:17:aa:c7:85:98:b2:c8:64:f5:7d:2d:0e:
86:48:63:49:f5:f7:fe:e2:88:5f:b8:96:23:3f:81:d6:0b:3d:
2e:ba:9b:a7:e7:33:37:bf:45:91:b8:c1:6d:97:96:06:52:ae:
0d:89:a1:73:a6:84:ca:20:00:ac:85:e5:d7:db:9b:2c:72:d6:
c5:63:b2:53:f6:92:ba:d5:b2:35:86:b8:47:80:fd:d9:9e:86:
c3:6c:e1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:37:57 2025 by rpki-client