Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
File: _caA7hsnw6bwcBPI_CXr_wxn-50.mft (raw, json)
Hash identifier: MDmn6zg4qzTgkbNGfurMUpiIqCG+pnmCV2k4wCQia04=
Subject key identifier: B7:CA:1A:14:1E:21:C3:18:0D:6D:84:2C:91:45:B6:4F:29:84:08:6E
Authority key identifier: FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
Certificate issuer: /CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Certificate serial: 01976A05CDB8CA46A4EA7A8E1A2190E903F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
Manifest number: 0C6E
Signing time: Fri 13 Jun 2025 16:00:54 +0000
Manifest this update: Fri 13 Jun 2025 16:00:54 +0000
Manifest next update: Sat 14 Jun 2025 16:00:54 +0000
Files and hashes: 1: H5zExKsN_X1SPJQSwEakZzqeC2I.roa (hash: FjXiEi3V3MLLSMvrOdppNODHARmQ2b/yPySFztutI1Q=)
2: _caA7hsnw6bwcBPI_CXr_wxn-50.crl (hash: +OJNV8xwDYxrXd/vfdhOOJQ3ClJqyLY5meO3sUNubuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:cd:b8:ca:46:a4:ea:7a:8e:1a:21:90:e9:03:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Validity
Not Before: Jun 13 16:00:54 2025 GMT
Not After : Jun 14 16:00:54 2025 GMT
Subject: CN=b7ca1a141e21c3180d6d842c9145b64f2984086e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b9:58:61:93:76:00:f7:20:aa:6d:95:c6:7c:
91:3d:91:3d:69:7c:cc:44:89:bd:1f:14:2d:25:ac:
23:b2:92:80:a0:22:24:c3:70:f3:ef:8f:a7:7a:af:
e2:c9:57:a0:f2:18:07:ae:ad:b7:7b:aa:7e:18:00:
31:3a:a4:ae:e1:17:92:c3:e2:d5:89:35:2e:43:af:
be:07:59:e8:12:a5:ec:64:6b:92:cd:3d:96:a6:31:
aa:66:fc:53:3f:c4:7b:48:ee:eb:5e:00:47:b6:f8:
ea:f2:42:a9:db:7f:b3:5f:73:d9:30:87:92:ee:6c:
c5:3e:24:a2:ce:26:d8:bb:02:70:7e:d1:37:f2:e3:
f1:b0:34:d7:f1:27:0e:b1:51:fa:3a:d8:a2:06:77:
d6:fc:d3:ff:b5:0d:07:a7:c5:df:8d:b8:93:9a:0b:
f6:bc:8e:7b:df:b8:f0:5f:74:13:6c:ef:8f:60:a1:
4c:54:92:70:22:e8:70:22:6e:c0:2b:bc:78:51:22:
e8:40:ce:81:88:40:72:8d:aa:8f:6d:75:fe:f7:de:
5d:21:95:4c:29:6c:b7:ae:8f:76:2b:16:6a:b7:6e:
8e:a7:d6:26:99:a3:63:8d:d0:d6:9b:4c:40:ea:fa:
8b:00:be:90:c7:1c:39:45:94:d0:a8:79:b7:40:49:
e4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CA:1A:14:1E:21:C3:18:0D:6D:84:2C:91:45:B6:4F:29:84:08:6E
X509v3 Authority Key Identifier:
keyid:FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:f2:06:a2:0b:d3:88:dc:0e:13:86:9b:80:02:f1:ee:76:f0:
13:a5:e1:9b:a4:5c:f8:9e:48:19:60:c7:6c:2e:1c:36:d1:a8:
1b:0b:b2:17:be:1b:f9:76:a9:57:7a:7b:b8:8b:35:07:b6:8a:
7c:5d:2d:69:fa:cd:8c:31:63:57:58:eb:ad:69:61:fa:1c:f5:
75:43:9d:ef:bd:a0:57:50:a0:98:f7:a4:47:29:7e:f6:14:02:
83:f7:16:fc:49:c1:3b:51:38:96:16:c4:fe:d7:2c:d2:3b:ea:
5d:72:60:e3:3d:21:86:11:c2:c9:a1:85:84:ec:cd:46:23:3a:
d0:02:78:1a:1f:87:c2:18:19:d2:87:f3:ff:4f:ab:85:ce:6c:
49:12:89:55:69:8c:50:aa:80:e0:72:c5:07:5e:48:44:13:94:
1f:f7:ea:5d:fb:e4:0e:c4:28:0a:76:92:2d:11:04:8e:f0:66:
e4:b1:c6:d5:22:a4:cb:90:ba:86:75:12:15:ee:95:ca:7e:22:
f8:9a:32:04:4f:9a:5a:ef:88:00:d3:29:27:4c:ba:a6:f0:d9:
7a:35:04:47:f6:cf:82:65:99:b5:1b:12:9d:c3:04:77:56:15:
3e:b0:5f:41:1b:5e:9b:c1:ac:ef:e9:b9:e5:c6:6d:2b:69:c5:
ae:1a:71:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:00:12 2025 by rpki-client