Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
File: fi4pGEMoSetx6V3EDRB56oZfYQk.mft (raw, json)
Hash identifier: BHSrMCDOFw09mEColGfQz8zsb9G3kXlsmyP7QS85ooU=
Subject key identifier: 89:41:8F:DC:BB:60:3E:68:65:C7:5A:B4:A8:A7:40:BE:F0:A3:B3:DA
Authority key identifier: 7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
Certificate issuer: /CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Certificate serial: 0197789CA8D9D0D1671E12306E0773819810
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
Manifest number: 08B0
Signing time: Mon 16 Jun 2025 12:00:22 +0000
Manifest this update: Mon 16 Jun 2025 12:00:22 +0000
Manifest next update: Tue 17 Jun 2025 12:00:22 +0000
Files and hashes: 1: S1dC-8FvWd5r91Ep_3NW-RYRFSM.roa (hash: WN6IJU4enC30WWGrEp1TUJBHxrmIxnrzAFySxPEWWA0=)
2: fi4pGEMoSetx6V3EDRB56oZfYQk.crl (hash: E32skYmQlcx41e8QSyAGaQYxjXFSYW0kWFUxHZC6LCU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 12:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:9c:a8:d9:d0:d1:67:1e:12:30:6e:07:73:81:98:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Validity
Not Before: Jun 16 12:00:22 2025 GMT
Not After : Jun 17 12:00:22 2025 GMT
Subject: CN=89418fdcbb603e6865c75ab4a8a740bef0a3b3da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e3:35:92:8b:01:c1:ec:57:9b:ef:c5:9e:1a:
46:bd:ee:dd:a2:8d:61:e0:7b:27:1b:f5:45:5c:23:
97:f2:07:7d:fb:e2:6b:da:28:cf:a5:f6:8a:33:8e:
71:21:9e:a6:3f:a3:62:bf:4f:a4:71:cb:25:b6:fb:
7b:e5:07:49:84:70:b2:66:86:b0:c6:0d:50:6d:95:
66:e0:f3:58:b0:bc:e4:29:bf:88:3d:19:3c:2b:56:
2b:10:0d:52:2e:25:fa:41:41:2a:c9:80:81:b4:f8:
ae:24:1f:56:8b:b7:1e:db:34:85:94:cf:12:6c:aa:
4d:7d:97:36:ae:88:42:f2:48:ce:61:e7:8e:9d:c9:
26:19:9a:92:0c:97:5e:b1:e8:2f:00:b3:48:3f:d9:
94:0e:57:15:2a:40:35:d1:3d:1a:f3:b8:0c:6e:08:
b6:af:e4:fd:61:f2:e7:f7:fd:92:be:2f:f0:99:53:
2e:3c:53:dd:7e:d4:20:a7:a9:34:a1:b2:ec:7d:d4:
c7:3c:90:d0:2d:5a:e7:72:5d:7f:18:03:f4:b2:a9:
56:47:51:02:3d:58:e6:76:d7:2a:b6:40:16:fe:ec:
ec:53:25:7b:f0:49:4b:ef:b8:6a:57:fe:75:b8:d5:
c1:b5:a1:11:88:4b:94:b3:da:0c:72:f7:a5:fe:64:
c8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:41:8F:DC:BB:60:3E:68:65:C7:5A:B4:A8:A7:40:BE:F0:A3:B3:DA
X509v3 Authority Key Identifier:
keyid:7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:e6:ab:6d:96:3c:81:42:a3:34:9c:51:b7:c4:39:b3:06:1d:
1c:36:5a:6f:68:b8:7f:89:be:eb:ce:4e:55:9d:3d:79:52:ae:
fc:c7:13:80:c6:e4:c2:ec:8f:6d:76:fb:cf:e8:5d:dd:8f:36:
31:93:4a:5d:b4:53:ea:f4:82:4b:22:b3:d1:7d:4e:c0:31:98:
20:7a:30:16:9a:f4:10:48:42:87:42:79:59:1e:86:b9:97:6c:
de:81:01:0d:de:01:99:a9:cb:55:6b:52:c7:da:d9:11:e3:5e:
08:d9:62:c3:7b:fd:ef:25:d9:95:bb:b1:dc:e2:b2:11:66:8c:
c7:5e:62:a5:ec:5d:46:b5:6b:d3:db:dd:6f:5d:07:a5:06:ad:
ab:13:98:2b:7b:fe:f2:db:1f:7c:6b:91:77:5e:c2:b5:8c:8a:
c9:7b:78:f1:37:f0:73:d1:d4:70:6d:0c:f3:8b:55:fe:8f:99:
38:0b:1d:31:e7:cd:a4:ae:1d:bd:50:c3:e1:21:21:4d:e9:3a:
8e:9b:54:d0:fe:58:80:7b:d3:8d:d0:ca:3d:c7:4d:11:6f:ca:
68:1a:a0:eb:cd:67:39:78:9b:73:68:ea:fe:9b:f3:56:b7:5e:
df:7d:98:b2:2d:38:e9:66:cb:d6:b5:4f:e4:21:7e:d7:1f:cd:
13:89:40:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 16:51:56 2025 by rpki-client