Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: eId8M/ysqryGoR5z9LHmNreCn/iJ5nlEtJUrIDxz8vI=
Subject key identifier: 0E:93:E6:2C:79:AF:8D:B1:B7:F3:F5:C7:C5:1A:1F:F3:6E:DB:FC:21
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 0197B88F35C30416119D03DD12AAAA94030E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 055A
Signing time: Sat 28 Jun 2025 22:01:22 +0000
Manifest this update: Sat 28 Jun 2025 22:01:22 +0000
Manifest next update: Sun 29 Jun 2025 22:01:22 +0000
Files and hashes: 1: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: etJd5FEdvadFAHkHP7JxJTnkcSZbxpkjL7QPknznO5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:35:c3:04:16:11:9d:03:dd:12:aa:aa:94:03:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: Jun 28 22:01:22 2025 GMT
Not After : Jun 29 22:01:22 2025 GMT
Subject: CN=0e93e62c79af8db1b7f3f5c7c51a1ff36edbfc21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:30:68:89:01:46:2f:15:30:b5:44:e6:51:df:
fe:6c:7b:08:50:72:df:b4:ae:63:0c:17:ab:d8:8c:
af:86:2e:62:42:f9:a3:d8:cb:1c:33:ad:0f:c1:5e:
d2:33:e7:c6:c3:7c:3d:0b:10:b6:15:8c:30:b8:3f:
2e:1d:bf:eb:a0:5b:08:b3:f2:9f:39:87:ee:6e:87:
0a:21:35:ef:d2:3b:f5:4b:f6:db:38:bc:36:08:4a:
a6:55:07:7d:c1:43:dd:04:e3:bf:7b:3d:06:5a:df:
db:d8:88:8e:ab:c4:c5:76:af:a2:f7:9c:2b:67:d2:
c2:f1:07:ff:85:eb:6c:96:a5:8b:82:b9:1d:31:e7:
56:c5:2d:43:a4:24:ee:5a:24:c3:7f:6f:cb:47:65:
29:e7:d2:8f:3b:e2:73:5a:aa:f9:cd:09:ad:5e:6a:
c3:92:34:d9:e2:ca:2e:21:d3:4a:07:62:8c:dd:84:
02:e0:e9:3a:38:74:b0:f5:e5:e8:d2:95:2c:f6:35:
0e:aa:42:bb:a3:4a:f4:8d:83:17:bc:79:74:41:e5:
81:52:aa:b5:3b:d9:86:d2:8c:40:b6:e3:9b:48:61:
f2:75:01:c3:e8:fe:5a:61:30:40:7b:ba:e6:2a:4d:
8a:cc:23:2b:21:eb:3a:f9:aa:16:1d:10:86:2e:92:
8c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:93:E6:2C:79:AF:8D:B1:B7:F3:F5:C7:C5:1A:1F:F3:6E:DB:FC:21
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:48:38:5b:08:80:8f:cc:37:50:2a:12:7c:59:42:1f:0e:93:
86:24:b3:69:b8:c3:b6:e6:da:bc:31:b7:ff:f2:51:b1:ef:15:
d3:49:8f:e7:9a:95:42:88:a3:56:7a:3b:1e:f6:0c:e6:03:f2:
c4:7a:03:e5:d2:d4:ae:5e:02:ef:a2:a4:91:75:b6:42:f9:04:
f6:b0:3c:b4:31:d2:0a:d2:7e:3d:4a:3a:37:4f:1d:04:59:75:
70:88:31:3d:2e:94:55:ff:5c:c2:9e:04:6b:06:9e:66:1c:bf:
77:24:7b:27:ea:b6:51:7d:60:da:9b:c9:f0:af:e6:4f:5d:f5:
8a:79:e7:55:b9:4c:a4:7f:ca:41:ba:72:0f:f4:7b:43:98:18:
f1:e5:fc:61:39:0e:3a:0a:78:3c:59:1b:c0:ad:48:42:94:5e:
8e:a3:df:e0:63:28:2b:89:8a:12:bb:94:cf:6f:63:70:bd:ec:
d4:b4:30:70:d0:56:f0:4f:b1:b8:5e:95:00:61:b0:04:29:e3:
c1:58:a2:ba:b8:c7:60:36:8a:c0:49:2e:e1:52:23:7a:36:89:
56:39:9e:a7:da:2f:bd:b4:01:ce:3d:2a:ce:3d:60:36:5b:2f:
ce:a1:a4:e5:97:47:8a:c9:f6:68:a5:59:68:5f:92:86:cf:2b:
7e:ec:69:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:34:51 2025 by rpki-client