Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json)
Hash identifier: 7aKDc9ssoRPKhyll4BjUH3X3ZZ4lqxY1fiYy5MeIYXs=
Subject key identifier: D0:0A:5F:EC:BC:23:E0:72:6C:2A:45:1A:66:DE:A0:BF:31:0E:13:EE
Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Certificate serial: 01969183B60EF40BA7AB3DAD4AA8073BBEAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
Manifest number: 1525
Signing time: Fri 02 May 2025 15:00:50 +0000
Manifest this update: Fri 02 May 2025 15:00:50 +0000
Manifest next update: Sat 03 May 2025 15:00:50 +0000
Files and hashes: 1: B9gQbAB9xsN6pQfQdJIwTw0mN8w.roa (hash: x4fcMnOhpMuR2+7kVYptH+8Mn3pldQm1ilWOcm4WRJw=)
2: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: 5XP/S0E5R99PVj+a6RMfJv0IXQ5vzL/RJ93I/pMo78k=)
3: jKTi0IFy2Gsl-io5IjP67e8YnpY.roa (hash: zmbRyxceh2NVjEHPxC/G8V+VaBl1rJ3CnIcL4cBiYPg=)
4: li9wgS4CzymH0Pk4gTdAaGRdlAo.roa (hash: kP4uhWCvNqfaCH4owPFsoej6RgMi05GSx/V0iC7WmCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 14:24:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:91:83:b6:0e:f4:0b:a7:ab:3d:ad:4a:a8:07:3b:be:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Validity
Not Before: May 2 15:00:50 2025 GMT
Not After : May 3 15:00:50 2025 GMT
Subject: CN=d00a5fecbc23e0726c2a451a66dea0bf310e13ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:84:86:a2:e7:06:9a:08:9d:81:ed:f2:f6:f2:
59:b7:ce:0d:bf:2d:74:a3:af:61:02:41:61:0c:33:
20:2d:3a:18:9c:60:47:b6:ad:be:11:0e:8c:fe:6a:
fd:6b:85:ba:bd:63:8f:78:b2:36:f0:27:aa:f0:6c:
6e:65:60:77:6e:a2:1e:86:5a:b5:00:af:7a:49:a2:
23:d6:7e:e6:bc:49:cb:1e:31:ea:df:2d:b4:b8:c9:
ef:80:33:0a:da:53:99:6c:e4:41:04:34:dd:6e:51:
11:0c:47:79:ce:49:3c:1b:d2:5d:3b:7f:ba:50:0a:
10:a6:47:7e:51:bf:16:cd:f4:a8:4e:6b:a5:98:ec:
d8:61:3d:52:49:e4:69:fd:77:91:e9:02:4c:20:91:
12:3f:7c:30:f2:2a:61:c1:f5:ab:01:5d:53:2f:7b:
6f:80:a0:8a:23:a2:3b:29:bb:9f:3c:77:08:63:0e:
7c:4f:68:e6:af:4f:23:de:98:1f:42:32:e6:5b:38:
b8:2d:3c:ac:71:9b:19:00:f9:be:85:07:d5:08:b3:
ea:00:8c:a0:4a:78:35:cf:fe:99:9c:f3:3d:eb:cb:
0c:74:7f:d0:ee:98:56:b5:d3:45:53:b2:97:c2:31:
f7:60:49:dc:69:55:b5:4a:4d:b4:17:fc:94:3c:96:
db:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0A:5F:EC:BC:23:E0:72:6C:2A:45:1A:66:DE:A0:BF:31:0E:13:EE
X509v3 Authority Key Identifier:
keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:80:95:35:74:80:cf:f3:bc:fc:8e:8b:a0:38:47:f2:35:54:
b9:a3:07:12:33:37:3c:52:82:2f:cf:f5:21:82:51:af:7b:d6:
2c:95:74:7d:8a:47:dd:07:53:6b:5c:87:51:2a:4a:6f:dc:4a:
75:ac:71:73:ab:54:15:64:7a:2a:0e:e4:e0:eb:16:df:b0:94:
2f:12:b0:8d:6c:95:83:53:41:69:f5:a6:dd:68:0a:3c:4a:33:
71:12:78:2f:2e:7e:b7:65:22:14:63:c3:83:71:98:23:7a:99:
a0:f8:29:6e:0e:eb:c4:90:86:ed:7b:a5:d5:8e:be:d6:15:b2:
92:d0:0e:a3:14:40:1b:8e:9d:48:1e:ae:8f:0e:e2:8e:33:e7:
ff:7f:56:a4:14:cc:a1:2e:75:16:e5:1b:d7:98:61:64:a0:fb:
6a:f1:1b:3b:17:da:d5:ba:57:8f:84:05:ca:5a:0b:08:24:36:
8b:42:73:27:26:7a:03:1e:90:a1:7e:80:aa:32:da:3d:1d:07:
fd:1d:9a:90:f9:fb:8f:10:5c:d5:d3:6a:9e:e2:a1:df:ee:9b:
cd:68:e8:55:95:12:6f:77:d2:c8:8b:76:b2:eb:60:6b:19:34:
f1:e4:9b:24:5b:de:b8:01:fd:da:bd:06:2d:b7:b7:35:74:2c:
b4:25:08:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 23:29:04 2025 by rpki-client