Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
File: fKlis7F-7waeOrohKIuyxkIhv-0.mft (raw, json)
Hash identifier: isQtZRT7glG/V/E5QlgP9jC9GXfRP/xUkbMo5EomA7k=
Subject key identifier: B6:F6:4A:94:AC:56:54:AB:92:C2:1B:E7:A6:95:5C:C8:6D:FC:C6:99
Authority key identifier: 7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
Certificate issuer: /CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Certificate serial: 01976D06985F12484AF2D69836AB42899F19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
Manifest number: 016C
Signing time: Sat 14 Jun 2025 06:00:38 +0000
Manifest this update: Sat 14 Jun 2025 06:00:38 +0000
Manifest next update: Sun 15 Jun 2025 06:00:38 +0000
Files and hashes: 1: KHa9mVj-WNELt7pSCK9ooFTGrNA.roa (hash: UqMuiUZn2GrnQQZzSZEJPEZOfxeCUD81uoCK7byK2Vc=)
2: fKlis7F-7waeOrohKIuyxkIhv-0.crl (hash: dH0wwSteBwcLnEue6panBfVV3Om2+jMEkEyZeZblFcQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:98:5f:12:48:4a:f2:d6:98:36:ab:42:89:9f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Validity
Not Before: Jun 14 06:00:38 2025 GMT
Not After : Jun 15 06:00:38 2025 GMT
Subject: CN=b6f64a94ac5654ab92c21be7a6955cc86dfcc699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b4:0c:11:75:e1:4e:25:d5:cd:5b:ab:f9:fb:
7c:20:bd:77:8d:9b:f6:14:f9:d7:d0:bb:9d:e3:6d:
44:9e:30:40:f4:5d:ca:4f:7e:dd:72:02:22:6b:de:
0e:78:e3:ad:c6:04:37:f2:a8:1e:04:eb:9e:8f:40:
8c:61:a3:5e:c3:44:a7:e9:31:5e:f4:8c:8f:3c:16:
8c:24:33:99:46:b8:4d:58:81:8e:6d:ec:88:31:7c:
51:d0:a0:52:76:dc:e3:57:d1:b7:ba:e6:cb:9a:45:
c3:90:47:5c:58:4c:7e:1b:6d:64:7a:d0:86:f7:40:
72:bf:83:16:89:20:b7:41:35:2e:3d:81:c9:1b:db:
99:e5:25:fd:c3:72:4f:55:a5:34:49:f0:63:79:44:
23:a0:a9:f1:ce:25:30:72:6c:9d:52:9f:ae:4c:6e:
4c:bc:63:a0:b7:4e:2c:a3:0f:c0:79:17:46:95:5e:
e0:ec:4a:27:d3:98:50:17:46:47:ab:c4:0c:e4:e3:
c2:da:bf:80:b4:e1:f5:ad:2e:52:2e:20:6c:e4:83:
d2:da:f6:fa:7a:1b:db:b1:91:ae:df:46:3f:bd:0c:
8d:56:23:22:ce:63:e9:9e:e4:3d:3d:23:28:f5:e1:
cb:96:0f:b6:c2:ad:9e:e9:df:d5:c5:0b:fb:73:1d:
6a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:F6:4A:94:AC:56:54:AB:92:C2:1B:E7:A6:95:5C:C8:6D:FC:C6:99
X509v3 Authority Key Identifier:
keyid:7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:cd:77:89:ab:50:9e:72:bb:65:6f:73:5b:d3:7d:fb:25:64:
3d:ee:24:95:c8:84:71:bf:fa:ed:78:33:85:9a:89:14:eb:a4:
80:ec:fe:b6:11:82:ea:34:f0:88:97:84:b8:59:70:69:c8:76:
63:5c:02:cf:fc:fd:ca:37:07:f3:a4:38:7b:04:55:3c:8d:b3:
d7:8c:8c:f6:79:09:a9:19:3b:ca:6e:7f:67:48:7b:2a:ff:2f:
1d:6f:a1:f7:77:f6:9c:eb:a7:f6:e4:78:d9:8e:02:a9:d3:87:
f7:d3:ed:f3:ac:2c:84:ac:be:64:48:4a:48:78:50:d7:52:8f:
15:d5:60:cd:0c:d7:17:bc:81:06:ea:61:e6:9b:dd:12:32:51:
68:52:50:83:6c:ac:58:88:19:de:85:43:e4:20:c9:02:bb:d1:
fe:8a:67:54:45:32:29:4e:50:53:7a:c9:b7:8e:8f:d9:ba:20:
e8:a9:eb:f3:25:54:19:c2:47:57:d1:b2:12:bc:05:49:b4:cf:
c8:a2:6d:7b:34:65:16:50:1c:35:cc:d7:ad:aa:68:b0:c2:05:
45:68:00:77:f3:7d:34:32:ee:08:08:93:63:4b:e4:f9:4a:b3:
2c:87:13:66:a6:bd:7b:4a:e8:af:e2:22:c2:bd:42:d4:cd:83:
66:af:f4:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:58:39 2025 by rpki-client