Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
File: _PU0Avp2-gY3bN6mvNOV4YAHnbc.mft (raw, json)
Hash identifier: xnHOXTSGYhX34xaJ1wPDkApPcj17pBpgrHT+qgpPOlc=
Subject key identifier: FE:53:97:BA:A9:72:B4:34:D6:25:3C:6C:B5:45:10:A6:EE:EA:90:CD
Authority key identifier: FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
Certificate issuer: /CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Certificate serial: 01977978AB3ED805C2D27674DDD2C89D9CE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
Manifest number: 12A4
Signing time: Mon 16 Jun 2025 16:00:40 +0000
Manifest this update: Mon 16 Jun 2025 16:00:40 +0000
Manifest next update: Tue 17 Jun 2025 16:00:40 +0000
Files and hashes: 1: 5QVE77uQnSCLbr9iYF89fXdJU-M.roa (hash: IPgTEo7hNu+XjVm/3xLzVMgF8abs7044xMIbnapyQg8=)
2: _PU0Avp2-gY3bN6mvNOV4YAHnbc.crl (hash: 3W2/0qrX6lxcC/otRWbjt0Ezxi2MzrI5U87yI/B17Hw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 16:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:78:ab:3e:d8:05:c2:d2:76:74:dd:d2:c8:9d:9c:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Validity
Not Before: Jun 16 16:00:40 2025 GMT
Not After : Jun 17 16:00:40 2025 GMT
Subject: CN=fe5397baa972b434d6253c6cb54510a6eeea90cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:92:51:f4:22:46:39:65:e3:26:8d:d1:42:b7:
27:98:d2:d6:42:15:3c:f6:b1:b2:69:22:a3:ff:4c:
b0:5d:47:8e:43:1b:f6:dd:8f:f2:eb:0c:01:e7:25:
61:0d:cf:1b:6c:d5:9b:4e:20:c2:a0:a6:7e:97:75:
e5:1b:72:cf:32:72:73:c2:d2:a3:cd:ec:22:9f:51:
8e:da:3e:37:52:6f:79:00:39:4f:b8:d3:b5:33:c8:
41:e5:f0:3f:55:16:1a:22:c1:79:22:ef:64:09:04:
14:bc:36:4d:89:47:0b:93:14:21:10:79:f6:ae:67:
ac:6f:c8:bb:bb:f3:83:8c:79:1c:75:12:26:65:2d:
6d:e9:7a:50:87:06:dd:7f:35:7c:c1:45:d3:04:69:
40:78:79:31:15:d2:a7:fd:63:4a:1c:25:9d:b1:26:
25:bb:cb:de:5b:35:d3:1f:25:ea:7b:28:f9:c2:80:
36:fe:1d:4e:8e:d8:44:83:45:11:8c:8b:2a:3d:34:
a7:44:2b:dd:7e:74:be:2c:2c:ad:ee:cd:63:b8:d0:
51:14:6e:51:71:2f:a2:95:76:5f:b8:12:3a:4b:fa:
e4:1a:f1:8a:2f:81:5d:ba:0f:35:c7:80:91:34:85:
19:0e:7a:4a:76:57:be:39:4d:ee:62:4f:b4:82:01:
cb:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:53:97:BA:A9:72:B4:34:D6:25:3C:6C:B5:45:10:A6:EE:EA:90:CD
X509v3 Authority Key Identifier:
keyid:FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:d7:09:85:bf:60:b6:01:72:aa:3e:e6:5a:3c:30:d1:bd:a8:
da:da:23:63:62:b9:8a:3a:7a:c0:e8:22:b0:e0:46:c2:9a:36:
9a:98:fa:d9:cf:30:8c:ed:72:94:b6:35:33:e2:99:5c:aa:27:
49:a1:04:07:05:23:c5:cc:bb:fa:9c:48:c2:6a:f2:75:e6:90:
27:6d:d9:18:8e:a3:be:2c:d7:50:e3:27:0a:38:ae:5b:92:62:
2b:db:35:47:c9:43:01:4f:cd:c9:0b:88:9e:81:30:81:a0:11:
64:1e:46:f9:96:db:44:48:41:4e:e8:32:61:77:da:1f:c8:7f:
c4:54:89:d1:f8:3c:58:59:49:18:2a:82:e8:af:09:52:12:cd:
0e:c4:98:7d:75:f9:e9:a9:2a:d8:0b:d8:4c:51:09:fc:eb:a8:
e0:a3:0b:61:49:44:57:bf:ec:1b:f5:b2:05:08:f7:98:7c:19:
d8:65:8d:cf:52:9f:6f:29:26:f7:84:9f:5c:24:2b:f9:dd:76:
ba:45:70:22:1d:4c:ce:94:de:35:5e:07:f5:5e:c7:bf:95:85:
a3:ae:1f:a8:d8:98:a3:f3:4c:2d:f9:ca:e1:24:e3:0f:79:51:
7a:5c:69:91:fb:eb:80:9d:b7:a1:cb:32:0c:6f:89:4b:c6:51:
4f:19:af:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 02:13:59 2025 by rpki-client