Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
File: fi4pGEMoSetx6V3EDRB56oZfYQk.mft (raw, json)
Hash identifier: mcOCzJP4yrTcJqfk/ZbHf1psMEyYUK+QbRmv1oFSw+I=
Subject key identifier: D7:22:73:EA:82:C7:C7:07:CD:BB:3C:8B:7F:6D:87:43:93:65:AD:9A
Authority key identifier: 7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
Certificate issuer: /CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Certificate serial: 019894B6D6EB12FC9B59C7AA42E8D839CDE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
Manifest number: 0943
Signing time: Sun 10 Aug 2025 16:01:07 +0000
Manifest this update: Sun 10 Aug 2025 16:01:07 +0000
Manifest next update: Mon 11 Aug 2025 16:01:07 +0000
Files and hashes: 1: S1dC-8FvWd5r91Ep_3NW-RYRFSM.roa (hash: WN6IJU4enC30WWGrEp1TUJBHxrmIxnrzAFySxPEWWA0=)
2: fi4pGEMoSetx6V3EDRB56oZfYQk.crl (hash: YRbZpamPr6Uq3EU+uLCEf5NjmZZLHQXe6cW2HEnDnLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 16:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:b6:d6:eb:12:fc:9b:59:c7:aa:42:e8:d8:39:cd:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Validity
Not Before: Aug 10 16:01:07 2025 GMT
Not After : Aug 11 16:01:07 2025 GMT
Subject: CN=d72273ea82c7c707cdbb3c8b7f6d87439365ad9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cc:f1:16:dc:0a:77:18:a2:88:ba:2c:7b:17:
71:d0:27:16:f7:11:f0:99:d1:55:4f:95:01:30:b4:
3a:8f:62:16:6d:9d:33:fc:5a:48:19:ea:13:fa:c0:
2e:b1:22:cc:72:09:c1:fd:d7:a7:19:4a:ae:9a:a9:
e8:99:30:43:5a:e9:e0:1f:47:e6:76:d9:dc:9d:26:
bb:a0:04:ff:d5:9b:2f:09:99:73:67:a8:f3:5a:f0:
e3:87:c4:de:89:35:7d:98:7a:6f:cb:6e:60:6b:23:
8f:4e:c3:f5:a5:18:51:de:dc:2f:89:28:a8:89:07:
41:e4:04:59:c1:44:bd:cd:75:59:ed:83:ca:b3:97:
99:02:8c:f2:89:5d:75:fc:64:2b:2b:82:63:c3:af:
04:e4:4c:c3:fb:9d:de:cc:e3:3c:e9:ed:ba:ba:2d:
c8:87:53:b4:ea:32:2f:20:ae:73:db:a7:3b:0d:31:
5c:21:bf:11:10:56:11:47:a6:33:73:08:cd:ab:84:
71:cb:fd:c5:42:44:89:3d:4d:4a:41:56:14:ac:0b:
65:2c:49:77:92:b3:fb:b8:78:65:84:b4:a4:9b:fe:
95:64:7f:8a:01:13:76:38:c6:f4:81:ca:fd:23:59:
68:a8:65:10:1a:13:a8:d1:fe:71:fc:2e:72:cb:48:
50:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:22:73:EA:82:C7:C7:07:CD:BB:3C:8B:7F:6D:87:43:93:65:AD:9A
X509v3 Authority Key Identifier:
keyid:7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:77:ee:fb:b4:ba:9d:b7:7c:24:0b:f3:fb:29:b9:a0:bb:6b:
2f:91:bb:83:f8:08:73:35:fd:16:1d:c8:9d:54:0c:55:9c:b0:
d8:86:c5:09:d0:6c:e0:ff:69:3c:e2:d3:8d:ab:41:44:1f:1e:
35:06:d6:27:a9:cf:97:62:58:a8:21:f4:c5:40:fa:e2:f6:95:
99:c4:55:7f:73:f0:e0:07:7e:c9:00:ab:75:f3:59:a8:ea:ef:
2b:cb:76:e4:61:91:f1:1d:5e:e0:a3:12:b4:12:ed:e1:f6:05:
43:54:3e:ec:52:bb:87:a8:d8:0e:44:6d:42:13:2f:a9:39:0a:
a9:99:8e:03:af:80:3a:3b:93:bb:14:5f:30:d6:53:d3:43:7f:
2f:40:ed:76:6b:e5:0c:0e:46:13:c6:0e:b2:b7:51:56:53:10:
a3:fd:54:91:5e:76:65:ed:f7:b2:d3:1a:19:21:bc:b2:49:ac:
b1:d8:47:f0:c4:59:3b:e2:66:4d:10:dd:44:95:c0:b0:9c:79:
03:2f:9f:59:0e:d4:0f:cc:e4:b0:7d:6a:88:37:b1:8d:dc:1e:
0f:8c:cb:14:b5:bf:10:02:0a:87:7a:b8:bb:db:14:22:73:70:
f5:86:c3:fc:d4:5c:e3:48:a4:f3:98:0d:00:20:a2:1a:17:f3:
61:27:8f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 18:13:18 2025 by rpki-client