Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
File: Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft (raw, json)
Hash identifier: fFVLpay9YHCe/sw2zNTt7Sg3nHJcVzm1XsPe8K2C9C0=
Subject key identifier: 21:15:E6:A0:4C:1F:F1:2F:54:62:A8:12:FC:A0:58:3E:B0:ED:31:4F
Authority key identifier: 16:5F:AD:41:09:28:3B:33:B6:F3:BA:53:FA:E8:3A:14:5D:19:34:E2
Certificate issuer: /CN=165fad4109283b33b6f3ba53fae83a145d1934e2
Certificate serial: 01976929ABA5F32497A600EF2248812AA756
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
Manifest number: 0296
Signing time: Fri 13 Jun 2025 12:00:27 +0000
Manifest this update: Fri 13 Jun 2025 12:00:27 +0000
Manifest next update: Sat 14 Jun 2025 12:00:27 +0000
Files and hashes: 1: Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl (hash: 8LJXlK1jaf67EpgB8XyKZ956swADIKibE0ziZ2unyEw=)
2: Ln2JbGXgQ88O79Pg1zLA68Pqxy0.roa (hash: Mstyw2j7AKFxamlwfGacDBtId3D916+hLBKPld0IQWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:ab:a5:f3:24:97:a6:00:ef:22:48:81:2a:a7:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165fad4109283b33b6f3ba53fae83a145d1934e2
Validity
Not Before: Jun 13 12:00:27 2025 GMT
Not After : Jun 14 12:00:27 2025 GMT
Subject: CN=2115e6a04c1ff12f5462a812fca0583eb0ed314f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f4:1c:a3:6a:61:23:b8:70:99:c2:65:eb:ed:
e0:f7:27:3b:84:89:a7:bd:dc:36:ee:2e:78:24:62:
07:7b:e6:6e:05:c0:17:5b:6a:b4:91:97:6b:83:b8:
e1:33:90:b5:88:90:ef:47:00:60:39:73:d9:52:bc:
e7:8b:54:b7:46:42:ac:28:d8:dc:42:0f:19:72:1a:
7d:76:9e:aa:d0:39:27:e9:57:67:15:1f:83:fc:6e:
96:6f:ef:c8:5a:b2:38:6a:ae:23:24:1c:ad:02:79:
38:ee:d1:6e:bb:64:48:e1:76:ad:fb:90:70:28:8c:
8a:ba:53:4e:a5:78:73:09:85:96:20:26:54:9e:a1:
90:23:19:37:22:4e:00:0a:5a:04:02:4c:18:8f:65:
56:46:8d:3f:a8:6e:5e:18:bd:4b:30:8f:85:a8:89:
c6:37:27:5d:7b:b7:2a:b2:79:72:98:45:c3:b3:51:
fc:cb:af:51:1e:bd:d1:23:de:44:c7:d8:e8:bc:2f:
4f:fa:f7:2c:62:cb:8d:0b:1e:bc:93:ed:8a:5f:94:
0b:25:dc:a4:41:8c:c5:fb:78:6e:0a:f4:97:4d:fa:
56:db:c3:50:e1:a2:42:38:2d:f1:40:96:6d:9a:4d:
39:b8:36:52:8f:55:e8:b0:4a:04:02:30:0f:0e:b8:
95:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:15:E6:A0:4C:1F:F1:2F:54:62:A8:12:FC:A0:58:3E:B0:ED:31:4F
X509v3 Authority Key Identifier:
keyid:16:5F:AD:41:09:28:3B:33:B6:F3:BA:53:FA:E8:3A:14:5D:19:34:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:0d:fe:94:27:5f:f7:98:5e:fa:ed:01:95:c6:af:4c:cb:af:
af:74:63:fe:54:25:de:52:70:05:40:d0:1c:ea:02:78:b6:c4:
ad:5f:c1:ef:b1:1a:86:1b:a4:a2:2f:9d:9b:6a:5b:bb:30:b7:
95:30:58:b6:9d:b3:89:08:4a:cd:8b:8d:4b:a4:df:f0:bc:e5:
4f:1f:7a:2f:0e:af:49:b8:47:06:0c:52:59:f4:c0:a1:bd:37:
ae:ec:3c:28:bb:69:75:46:e2:66:dc:9b:b0:5f:e5:fb:97:04:
3c:c3:66:aa:01:1a:40:ed:09:17:f5:a6:30:ab:75:73:06:c5:
20:a0:ef:74:bc:69:b2:73:40:aa:73:19:03:50:90:01:ac:b1:
32:2e:5c:3d:34:27:0f:b5:d4:39:df:df:86:b7:6f:0b:82:aa:
4e:46:36:c3:9b:7c:fa:3c:ff:93:56:1b:58:77:46:a6:53:9d:
71:c1:ef:e7:6e:50:21:98:16:5f:85:24:6d:a2:8d:53:58:52:
8f:d0:02:5c:18:7f:d0:a8:45:44:3e:32:6f:22:c4:fe:13:26:
a3:70:33:6b:61:aa:a7:5b:e7:0e:7f:3a:28:f9:c4:c9:a4:f5:
5a:86:d7:2a:8f:c4:ff:04:95:76:d3:54:21:c2:15:ec:3e:48:
aa:88:66:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:01:01 2025 by rpki-client