Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
File: _PU0Avp2-gY3bN6mvNOV4YAHnbc.mft (raw, json)
Hash identifier: Xl1OZ2end7MDU7bTSLveyAvz3py6fBpmB3nAwIZSZFw=
Subject key identifier: 32:3D:FD:EF:E1:D1:DE:B7:56:46:80:BF:26:72:03:22:F8:C6:02:07
Authority key identifier: FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
Certificate issuer: /CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Certificate serial: 01968059290235A472CA589CA638B86873C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
Manifest number: 1223
Signing time: Tue 29 Apr 2025 07:00:48 +0000
Manifest this update: Tue 29 Apr 2025 07:00:48 +0000
Manifest next update: Wed 30 Apr 2025 07:00:48 +0000
Files and hashes: 1: 5QVE77uQnSCLbr9iYF89fXdJU-M.roa (hash: IPgTEo7hNu+XjVm/3xLzVMgF8abs7044xMIbnapyQg8=)
2: _PU0Avp2-gY3bN6mvNOV4YAHnbc.crl (hash: 6iePDjYFk4NqW9wCciElyKNwOVTv6hG4Bo5uBiUbiPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:59:29:02:35:a4:72:ca:58:9c:a6:38:b8:68:73:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Validity
Not Before: Apr 29 07:00:48 2025 GMT
Not After : Apr 30 07:00:48 2025 GMT
Subject: CN=323dfdefe1d1deb7564680bf26720322f8c60207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:19:04:fd:b4:03:d3:d1:1b:e5:a1:e3:b5:7b:
48:68:c6:17:84:75:04:a2:b3:0f:b2:6f:9f:0d:c1:
f2:d8:8f:a2:3d:60:f1:6c:a1:fa:5a:9c:e6:b9:31:
50:cb:1d:d3:5f:2e:a6:83:0b:a3:51:75:5d:93:a6:
34:df:89:f9:2b:c1:84:4f:03:60:0c:6c:46:c1:49:
b4:8d:51:9e:d4:1c:8e:1b:08:e9:4e:30:9e:f3:33:
cd:79:2e:e2:55:11:93:ab:bb:c7:81:4d:52:09:c5:
82:f6:ca:75:3e:25:ec:2c:af:84:36:13:dc:09:07:
01:17:ef:63:d9:d0:eb:41:45:b0:a5:f6:c0:ee:28:
54:25:95:95:10:62:43:65:a7:a8:d6:93:31:09:a8:
2f:15:a0:93:9d:de:d8:d3:1a:00:ef:5b:6a:53:83:
c6:d2:41:0f:c1:87:dc:38:19:43:3e:95:a7:87:cb:
ae:e3:56:9c:27:45:d6:f7:3a:08:d6:db:19:d9:db:
06:65:b9:a9:da:ed:8b:ee:69:32:48:80:34:2b:1b:
77:60:8f:f9:12:cb:3e:76:12:18:1c:73:6b:24:61:
b7:c5:3f:d2:8c:87:a3:be:b4:9b:d8:01:3a:e3:1d:
c1:35:01:6c:4c:bd:d4:14:5b:dd:b5:e1:01:a5:0b:
d6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3D:FD:EF:E1:D1:DE:B7:56:46:80:BF:26:72:03:22:F8:C6:02:07
X509v3 Authority Key Identifier:
keyid:FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:3d:d3:6f:ed:e6:7e:d4:78:fc:76:92:8c:e5:62:18:f4:d7:
72:dd:51:ec:82:34:38:c0:07:73:a5:c2:74:9c:c4:8b:8e:74:
83:86:e8:66:ba:da:9b:49:7e:be:50:eb:f6:d2:ed:00:1a:8f:
b6:a3:66:b0:41:43:fc:f7:b5:b4:d7:ae:e1:d0:fc:11:9a:31:
53:6b:eb:9e:c7:6d:34:fc:43:d2:a4:4c:c5:e3:71:a9:2c:09:
21:44:28:f3:8b:42:a6:b9:17:43:ea:2c:3f:a9:ea:8e:76:bd:
b3:3a:b8:25:50:28:61:4b:42:7c:88:6c:58:7d:06:37:7d:73:
fe:42:e4:a2:ca:84:50:5b:2b:7e:fa:6b:b9:ee:74:be:0a:e5:
b3:60:76:fb:c0:39:f9:0a:cc:07:3f:66:26:be:a5:90:9d:f6:
5d:7b:cf:57:57:b6:ba:d2:43:27:f0:86:5e:f7:c9:c0:ea:a2:
99:88:81:80:e7:97:59:60:3c:f2:8d:f1:89:fc:a3:f9:14:ba:
e5:52:3f:be:d5:fe:31:a2:b3:8d:60:a4:6b:98:2b:ec:e4:d1:
ef:9d:4a:cb:35:ea:4f:fc:f4:b1:73:ac:b9:7a:fb:52:6c:40:
c9:70:9a:cf:ee:2c:00:94:d9:59:f7:2c:01:21:84:42:eb:ed:
f5:be:f4:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 13:01:43 2025 by rpki-client