
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
File: fKlis7F-7waeOrohKIuyxkIhv-0.mft (raw, json)
Hash identifier: SfkJc7kxPUwcmbDE+7huEJUAlwkz/10CntRD0oZuBes=
Subject key identifier: F2:35:BC:A8:92:77:E6:A8:24:BE:CB:17:BA:46:E5:21:71:49:61:16
Authority key identifier: 7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
Certificate issuer: /CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Certificate serial: 019881680CCCAC370EE7E2326276870EC14E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
Manifest number: 01FB
Signing time: Wed 06 Aug 2025 22:02:16 +0000
Manifest this update: Wed 06 Aug 2025 22:02:16 +0000
Manifest next update: Thu 07 Aug 2025 22:02:16 +0000
Files and hashes: 1: KHa9mVj-WNELt7pSCK9ooFTGrNA.roa (hash: UqMuiUZn2GrnQQZzSZEJPEZOfxeCUD81uoCK7byK2Vc=)
2: fKlis7F-7waeOrohKIuyxkIhv-0.crl (hash: Qc0nUoH7CS7zpZCPuJs52SgfFJTgvoaib252JAnjy2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:68:0c:cc:ac:37:0e:e7:e2:32:62:76:87:0e:c1:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Validity
Not Before: Aug 6 22:02:16 2025 GMT
Not After : Aug 7 22:02:16 2025 GMT
Subject: CN=f235bca89277e6a824becb17ba46e52171496116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b0:33:e2:89:cc:a5:e7:e6:f2:92:c9:12:a5:
d1:89:df:59:76:a4:3d:8b:ea:bb:0e:3a:67:05:40:
89:ac:9f:5b:87:d9:00:e0:5c:f2:a0:4b:b7:7d:72:
7b:7d:6a:3d:03:f4:f4:c2:9d:58:c6:09:ac:d7:e1:
21:74:34:f0:5a:81:ff:ea:ae:28:01:22:25:cf:0c:
bb:39:96:0a:4f:8e:e8:38:6e:64:73:cb:40:d1:ea:
ca:7d:c8:7d:9f:a4:fd:2a:91:db:09:3c:4a:8c:a1:
32:03:7f:fc:ed:09:bc:b4:d1:d2:79:7a:50:5d:0e:
0b:19:05:97:df:f3:62:99:1b:22:06:d8:a0:19:b9:
58:cb:18:12:cc:a6:f5:cc:07:18:d9:9e:88:2d:19:
03:71:a0:8c:74:08:09:43:da:3e:21:1f:b7:f5:4a:
35:33:52:1f:36:95:09:a6:fb:f7:e5:2e:85:3f:f3:
95:4a:49:5b:ec:96:4f:72:71:15:95:67:5e:a0:20:
bd:ac:a7:c6:f1:4a:f7:b2:1a:ca:5b:40:ec:14:ea:
0d:0d:d6:7c:eb:0f:77:82:4e:a6:fd:08:91:13:20:
b7:1a:9f:a1:b6:d4:19:a7:43:e7:1e:53:10:40:34:
43:75:7c:94:85:fe:5c:8c:1c:84:a6:0f:02:db:81:
4e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:35:BC:A8:92:77:E6:A8:24:BE:CB:17:BA:46:E5:21:71:49:61:16
X509v3 Authority Key Identifier:
keyid:7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:e4:03:40:b7:53:24:18:05:72:22:ab:f9:c1:c1:1a:05:0d:
85:9d:27:92:73:a5:9c:dc:d2:5a:d7:c8:ed:fd:ec:90:fa:e8:
d6:5d:b3:c7:47:d1:c6:16:cd:a2:fa:d2:f0:69:68:69:c0:02:
15:3e:df:b0:ff:28:55:a6:a5:ad:e5:6f:cc:be:a0:cf:07:18:
83:40:cc:31:cb:ca:76:c4:6a:2a:e5:24:da:75:a5:31:60:0c:
d9:63:56:8d:a0:c2:e1:fe:b8:be:5f:1f:cc:d6:67:9f:f0:c8:
d8:de:15:5b:c4:57:5b:83:70:85:72:cc:82:72:57:de:33:79:
50:37:25:7d:29:25:ea:b1:90:5b:de:7d:8b:12:4c:c4:8a:e7:
c3:ab:9a:88:7a:72:b2:18:6e:6b:dc:5b:38:75:2e:d8:d7:3b:
77:33:9d:03:8d:2a:11:12:0c:8b:57:99:b1:4c:52:b1:92:8c:
f1:bb:1e:8e:5d:fc:70:5c:87:67:51:09:7a:88:03:26:17:f8:
d5:0f:c0:2a:57:29:72:64:4b:6a:d3:12:bc:93:87:71:9b:22:
f9:31:90:a0:d2:74:42:87:a2:56:e7:6b:86:6c:c4:e2:9f:df:
14:f9:1f:99:9a:6e:b6:bc:c4:dc:b7:00:4e:62:a7:35:9e:95:
92:11:02:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:28:25 2025 by rpki-client