Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
File: Fv4NAkzduvhoIpEiFYlxRysky00.mft (raw, json)
Hash identifier: ZUOZ5ppDYZkLoiid0MdPhrEwq/iX/naTqbmVTxxlDN0=
Subject key identifier: 33:11:C9:A9:73:11:D9:2B:22:6A:A6:D2:E2:75:25:19:6D:85:F3:6B
Authority key identifier: 16:FE:0D:02:4C:DD:BA:F8:68:22:91:22:15:89:71:47:2B:24:CB:4D
Certificate issuer: /CN=16fe0d024cddbaf868229122158971472b24cb4d
Certificate serial: 019777C1373C0C3E98FA71527FAC3096A145
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fv4NAkzduvhoIpEiFYlxRysky00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
Manifest number: 1595
Signing time: Mon 16 Jun 2025 08:00:40 +0000
Manifest this update: Mon 16 Jun 2025 08:00:40 +0000
Manifest next update: Tue 17 Jun 2025 08:00:40 +0000
Files and hashes: 1: Fv4NAkzduvhoIpEiFYlxRysky00.crl (hash: 6uyJYwjEohyb0Rx2vjJzlLy/uokY1L6R1HtgfrDGw7Y=)
2: ThZzWFH5INkQ7ymiA_IBq-KPEM4.roa (hash: dM5mDKUs0Ppdg4qZBmK0UY+RheCcm2hY4o7VfDpWvQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fv4NAkzduvhoIpEiFYlxRysky00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:c1:37:3c:0c:3e:98:fa:71:52:7f:ac:30:96:a1:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16fe0d024cddbaf868229122158971472b24cb4d
Validity
Not Before: Jun 16 08:00:40 2025 GMT
Not After : Jun 17 08:00:40 2025 GMT
Subject: CN=3311c9a97311d92b226aa6d2e27525196d85f36b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:dc:f4:4b:c6:ba:a1:95:3b:17:30:b6:12:c7:
da:50:b1:2e:81:f8:3d:4f:93:78:20:86:ae:99:83:
72:bf:21:f5:46:81:d1:f3:02:40:5c:78:7c:f1:95:
49:45:93:32:c8:cf:84:f8:3a:00:8a:7a:e8:d9:36:
3a:ae:2b:66:60:63:f5:88:b0:d0:7a:eb:5d:d1:7b:
eb:01:1c:bd:53:e9:04:a8:18:cb:04:8c:f8:c8:22:
6a:de:85:eb:6c:b0:17:3f:7f:08:d9:ac:98:80:52:
e8:8f:b6:84:de:4e:3c:ab:2b:0b:6d:40:eb:33:b4:
1e:2f:48:68:c7:e9:a0:0a:0a:a0:f7:8d:a8:e7:26:
91:e6:93:a4:82:12:95:fe:f0:61:8e:d8:08:99:d4:
8d:26:2b:20:1a:b0:8e:56:15:25:d3:26:87:d5:57:
ac:fe:63:36:06:89:cf:ce:61:cd:87:0f:6c:36:89:
8f:ed:7a:0f:1e:32:2a:f8:9f:47:c0:c3:5c:ee:0e:
71:00:42:7f:41:f8:23:a3:a2:b3:7c:40:c9:5b:11:
11:67:98:38:9f:c2:1b:9b:00:b7:c1:57:3e:74:6d:
aa:e0:99:89:4e:06:5c:18:ae:59:23:07:26:22:fe:
2b:5d:1c:08:80:65:fc:8f:10:22:ae:d6:43:5b:47:
06:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:11:C9:A9:73:11:D9:2B:22:6A:A6:D2:E2:75:25:19:6D:85:F3:6B
X509v3 Authority Key Identifier:
keyid:16:FE:0D:02:4C:DD:BA:F8:68:22:91:22:15:89:71:47:2B:24:CB:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fv4NAkzduvhoIpEiFYlxRysky00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:08:b0:0b:aa:bf:3a:8d:4a:43:a1:12:26:09:eb:98:cd:07:
86:12:ab:03:98:ab:89:b6:bc:00:02:52:1f:7d:ab:6c:26:67:
9d:f1:b1:d0:f2:ff:d9:5e:bd:30:65:94:83:21:73:85:f3:36:
d0:59:9c:b4:a6:0b:35:02:85:1c:81:ee:75:b3:21:a2:a4:ea:
26:4b:70:e5:ef:26:6f:95:fb:e1:c7:50:64:78:2a:23:23:9d:
22:5c:09:41:e8:1b:59:fc:3c:6b:19:a3:bd:5a:3c:b9:7a:f4:
79:2a:fa:d7:01:7d:a6:a7:3e:ce:7b:42:0b:83:7c:f9:45:41:
2b:54:e8:e6:2c:cc:62:86:23:15:61:4d:69:85:56:9d:02:a1:
e2:99:b7:cc:3e:bb:1f:44:b7:05:02:d2:5c:3d:fe:d2:b6:0f:
bb:58:1d:11:32:df:82:36:8a:79:a9:ef:51:33:37:59:12:f5:
85:9f:a8:1d:42:3f:23:b2:a1:56:fd:a5:c0:c4:49:2e:21:4a:
6c:4a:09:19:6b:74:ac:9d:30:22:d8:29:98:79:0f:02:9d:cd:
30:71:57:a3:16:83:63:30:3b:82:7a:3b:a6:2b:b4:c5:91:1a:
a1:87:64:32:ca:d6:0f:2b:36:de:a2:4e:f8:7b:4c:af:7b:3e:
be:83:52:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:10:13 2025 by rpki-client