Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
File: Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft (raw, json)
Hash identifier: GyA5d9A0cgXsbgKlGtsPy/1CuK1arAVMvXG+e06GxWk=
Subject key identifier: D7:08:0D:BD:80:36:31:90:71:EC:EA:24:B7:60:96:6F:05:78:CC:1B
Authority key identifier: 16:5F:AD:41:09:28:3B:33:B6:F3:BA:53:FA:E8:3A:14:5D:19:34:E2
Certificate issuer: /CN=165fad4109283b33b6f3ba53fae83a145d1934e2
Certificate serial: 019673E71B70FCD6459F21B552DE372C1BCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
Manifest number: 0217
Signing time: Sat 26 Apr 2025 21:00:47 +0000
Manifest this update: Sat 26 Apr 2025 21:00:47 +0000
Manifest next update: Sun 27 Apr 2025 21:00:47 +0000
Files and hashes: 1: Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl (hash: k/FzLNctJk05SMLCoFc2qO89q8yx82o/eGJbwaBX5jg=)
2: Ln2JbGXgQ88O79Pg1zLA68Pqxy0.roa (hash: Mstyw2j7AKFxamlwfGacDBtId3D916+hLBKPld0IQWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:e7:1b:70:fc:d6:45:9f:21:b5:52:de:37:2c:1b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165fad4109283b33b6f3ba53fae83a145d1934e2
Validity
Not Before: Apr 26 21:00:47 2025 GMT
Not After : Apr 27 21:00:47 2025 GMT
Subject: CN=d7080dbd8036319071ecea24b760966f0578cc1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f0:d9:9f:b9:76:25:b6:c3:99:ea:6f:bd:65:
c4:c2:fd:03:5b:99:ab:b8:7f:39:09:ca:21:50:40:
01:15:9d:1b:4f:0c:36:4c:fd:47:9e:12:93:d0:78:
9c:96:ed:18:59:dd:74:80:d7:3e:85:36:f3:dd:9e:
5d:64:02:40:0d:19:cb:02:59:f4:ef:d0:7a:93:b5:
74:c4:ec:de:35:a2:d7:2f:2e:47:38:0d:14:40:af:
00:ae:c2:e3:4e:a0:f8:29:5a:37:e1:42:ab:f0:86:
67:73:c4:65:f9:c7:39:08:07:93:de:ba:8d:55:5d:
40:0a:d2:2c:13:c5:6a:2d:1e:82:00:1f:0c:ab:c4:
53:01:3b:84:04:32:4c:01:42:8d:d1:e0:bd:64:a1:
27:f6:3d:fa:fe:a0:99:ff:c1:0e:78:ff:23:ac:9c:
e0:d6:26:5a:92:82:3d:e0:61:19:4f:62:9e:9f:c9:
ca:b5:ed:5b:85:45:88:55:38:0d:fc:70:2d:a7:19:
b7:1a:2b:25:f7:a0:2d:c4:35:50:e7:81:c6:85:08:
4e:20:ea:50:d7:6d:85:df:e9:4d:ca:ec:76:29:a0:
67:dc:6c:18:2a:ec:69:4d:1c:a6:37:1c:de:74:e8:
30:dd:70:f8:45:f9:54:4b:fd:95:36:bd:09:48:61:
8f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:08:0D:BD:80:36:31:90:71:EC:EA:24:B7:60:96:6F:05:78:CC:1B
X509v3 Authority Key Identifier:
keyid:16:5F:AD:41:09:28:3B:33:B6:F3:BA:53:FA:E8:3A:14:5D:19:34:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:9d:ac:4e:dd:40:b2:10:3e:94:37:65:63:ee:63:97:52:59:
04:21:0d:57:33:dc:8a:e4:fb:33:14:c9:d4:d4:38:96:a7:4f:
4f:e7:6b:19:fc:d3:c8:c1:5b:f1:e3:78:c9:f6:21:68:91:df:
3b:23:a8:a9:7a:aa:a5:57:7e:43:18:9b:c7:f2:07:fa:12:8e:
0c:65:47:c7:42:30:16:ea:53:c6:88:d2:8e:a7:5f:bf:b3:75:
c2:80:29:03:ec:e0:c5:5e:96:5b:c7:65:3e:cb:4d:9c:49:ec:
7d:c3:c4:4b:10:b5:31:3a:bf:99:49:8d:a1:d9:b9:7c:22:94:
68:c3:85:65:d0:0c:1c:0c:c5:9d:7b:99:ba:ae:20:1d:5b:90:
0e:7d:ca:48:1c:71:5c:8e:41:3b:9e:ba:76:c9:ad:89:f8:0e:
7b:91:5f:b8:63:dc:d1:f9:a2:84:2a:d4:ef:bd:ca:02:f7:80:
41:39:21:08:13:84:6b:bd:4b:39:79:33:10:67:78:00:32:e0:
5d:f9:9e:9a:aa:7e:68:8e:24:a6:5c:93:50:60:97:3b:8e:bd:
5a:92:0c:eb:d9:9d:50:67:8b:37:c3:fc:6e:ec:ba:c6:32:b1:
0e:fa:3e:8a:ba:00:78:69:f9:c5:58:97:b2:f9:92:88:b7:24:
d5:91:02:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:34:07 2025 by rpki-client