Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
File: _PU0Avp2-gY3bN6mvNOV4YAHnbc.mft (raw, json)
Hash identifier: SLxkbo4RXR+tfB6dZbOSGMunbuhLHky4XjUQIzr12X4=
Subject key identifier: 6A:6D:FC:AF:37:33:67:DE:1B:65:3F:7E:01:FF:EA:E3:E6:B7:CA:42
Authority key identifier: FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
Certificate issuer: /CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Certificate serial: 01987486E64DB4C59E7E735CA4D7EDDC1D72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
Manifest number: 1326
Signing time: Mon 04 Aug 2025 10:00:54 +0000
Manifest this update: Mon 04 Aug 2025 10:00:54 +0000
Manifest next update: Tue 05 Aug 2025 10:00:54 +0000
Files and hashes: 1: 5QVE77uQnSCLbr9iYF89fXdJU-M.roa (hash: IPgTEo7hNu+XjVm/3xLzVMgF8abs7044xMIbnapyQg8=)
2: _PU0Avp2-gY3bN6mvNOV4YAHnbc.crl (hash: vxpzwPz4jN9Hwrf1SzLAAAdUIAx1YGUnTRFw6k44pGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:86:e6:4d:b4:c5:9e:7e:73:5c:a4:d7:ed:dc:1d:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Validity
Not Before: Aug 4 10:00:54 2025 GMT
Not After : Aug 5 10:00:54 2025 GMT
Subject: CN=6a6dfcaf373367de1b653f7e01ffeae3e6b7ca42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5e:ea:82:d3:25:23:c3:12:af:63:14:2e:73:
ed:1e:1e:f7:c3:cc:54:24:85:ff:ba:67:f6:33:6f:
44:88:22:82:28:fb:e9:b8:b3:4b:58:5a:a5:95:83:
64:6f:75:df:8b:a3:77:1f:43:20:46:55:b9:df:95:
0c:7f:97:24:13:a9:db:95:11:c3:38:8f:67:89:2b:
b5:b1:19:5b:e2:4a:5d:46:eb:98:9e:5e:c9:f1:d0:
32:68:4a:fd:76:7d:97:f6:df:3d:a2:30:f4:69:35:
d2:15:34:57:b2:10:1e:d3:12:1e:51:55:76:26:f9:
20:c3:5c:a3:6c:6b:62:ea:39:9c:af:dd:2b:40:aa:
ab:7b:e4:9d:f9:c7:06:0b:c2:41:c6:60:af:fb:d0:
10:c9:d7:a8:26:90:68:8e:b6:f5:4b:09:de:30:77:
76:49:6a:a1:f7:04:39:a0:c0:a9:68:4a:86:4a:bf:
0d:0b:f5:58:e9:94:ca:1f:b4:1d:56:ed:33:0d:89:
0f:d1:b0:1e:a0:0a:82:77:63:18:f3:4a:82:23:d7:
5d:a7:cf:80:87:0e:eb:93:0f:4d:77:e6:a1:32:6a:
7b:75:f0:52:fd:59:94:0b:6a:18:dc:9e:7e:7f:0f:
a9:b7:ea:2c:f3:10:97:8d:b7:3c:98:a5:87:0f:01:
f6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:6D:FC:AF:37:33:67:DE:1B:65:3F:7E:01:FF:EA:E3:E6:B7:CA:42
X509v3 Authority Key Identifier:
keyid:FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:24:14:53:35:fe:58:4f:7e:c9:6e:d8:6d:a2:03:2c:6b:f3:
95:1c:a5:b5:0c:90:5c:5f:e7:bb:71:31:9e:2b:94:42:eb:8e:
6e:5d:55:0c:89:d4:6a:74:a5:0c:f5:70:ae:bc:c3:df:fa:97:
02:8a:db:1a:df:10:ff:42:ff:4d:e6:6f:73:8a:2b:35:53:8a:
db:30:54:8b:da:62:8f:0d:50:4a:8b:c9:bb:7d:cc:c9:bb:80:
bd:fd:77:32:4f:fc:dc:cc:80:ba:0d:12:f0:4c:0d:e7:2d:a7:
a2:02:03:00:5b:8d:41:8e:5b:c1:8e:24:ac:1d:c1:cb:d2:42:
49:08:85:0f:f5:d9:5c:ef:d9:be:c0:e8:fe:0e:ba:7b:7b:a5:
f3:06:1f:20:12:bc:34:b8:f7:e5:01:4a:eb:5a:6b:4c:36:5c:
04:b2:6f:48:9b:28:5d:fa:a2:71:9e:6a:8d:9c:d0:43:1f:cd:
34:5b:b9:c4:e4:50:52:6b:52:65:8e:d7:12:ce:aa:a9:16:14:
c0:10:4d:55:aa:a7:57:03:76:dd:c6:dc:0b:ab:2b:61:d1:d3:
84:45:e5:b6:35:05:21:f3:b5:b0:3a:2b:56:c7:95:ee:7c:e7:
18:b9:42:9f:f0:10:01:04:6a:9a:92:bd:38:8f:fb:d7:63:fa:
5d:16:d2:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:36:58 2025 by rpki-client