Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
File: _caA7hsnw6bwcBPI_CXr_wxn-50.mft (raw, json)
Hash identifier: ecrcKn6qwhUwemx6/2ZwX7R2KeeHaDP/GWj/NndA9dc=
Subject key identifier: 5F:E0:CD:35:C4:00:62:1A:24:67:77:AA:13:91:15:53:DD:84:7E:F4
Authority key identifier: FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
Certificate issuer: /CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Certificate serial: 019872988D2D2CA0C897067B5AEB72EFC5F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
Manifest number: 0CF7
Signing time: Mon 04 Aug 2025 01:00:56 +0000
Manifest this update: Mon 04 Aug 2025 01:00:56 +0000
Manifest next update: Tue 05 Aug 2025 01:00:56 +0000
Files and hashes: 1: H5zExKsN_X1SPJQSwEakZzqeC2I.roa (hash: FjXiEi3V3MLLSMvrOdppNODHARmQ2b/yPySFztutI1Q=)
2: _caA7hsnw6bwcBPI_CXr_wxn-50.crl (hash: EzKKc9CDjr7So+fK+bynbrl4YyVpQrCmFA00lcU5u0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:8d:2d:2c:a0:c8:97:06:7b:5a:eb:72:ef:c5:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Validity
Not Before: Aug 4 01:00:56 2025 GMT
Not After : Aug 5 01:00:56 2025 GMT
Subject: CN=5fe0cd35c400621a246777aa13911553dd847ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:82:81:1c:08:33:67:7b:5a:9c:4e:64:b0:8c:
e2:b5:8e:d9:eb:de:d3:f5:c2:f6:13:76:70:78:55:
79:b7:30:bb:6d:6f:cb:2e:3e:ee:f7:1b:28:05:5a:
e0:7a:66:34:25:21:f4:3f:a5:d1:13:82:d3:41:82:
3c:a7:c1:a4:c2:64:c0:26:66:ce:fa:44:c4:10:0d:
bf:9e:bf:b0:f6:8e:2d:bf:75:e5:3f:f0:4e:c4:84:
e5:54:90:73:9d:63:d0:45:4a:0b:b5:ea:fd:af:cb:
45:c2:9d:32:1b:68:b6:2d:b9:83:81:d5:d5:b4:bb:
38:db:e1:c9:93:c5:1a:eb:80:14:89:29:2b:42:13:
96:b5:43:da:21:29:8c:7f:11:18:24:c8:df:03:d7:
e8:f8:ca:e2:67:99:f6:4d:93:49:c0:62:8a:f5:11:
23:a8:de:e9:a0:15:0c:09:ee:d0:0c:38:ab:b9:15:
8c:13:9a:a7:17:2f:b6:71:a6:38:53:eb:5f:6d:4d:
4d:a5:6a:68:06:db:97:06:67:1c:2d:d7:b7:ea:e2:
2a:ff:15:39:d3:0f:d8:2c:a1:74:3d:70:4b:58:89:
ec:37:dc:ce:a3:91:97:7f:6b:56:0e:8c:f9:be:5c:
38:06:36:d8:cd:8a:44:76:ca:13:c7:6b:b4:52:b5:
cb:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:E0:CD:35:C4:00:62:1A:24:67:77:AA:13:91:15:53:DD:84:7E:F4
X509v3 Authority Key Identifier:
keyid:FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:93:1f:5a:83:b2:3c:29:35:cc:72:52:40:39:6f:1d:e6:79:
31:07:f8:a1:34:13:3b:be:3e:76:7a:03:da:57:9f:6c:7f:fe:
63:28:6d:5d:2f:7d:63:2b:b9:ab:15:93:94:ae:e8:0e:48:b0:
c3:50:72:6f:4f:cf:07:8a:fa:c3:34:66:24:1a:63:d1:c9:f1:
c8:60:27:16:78:de:78:86:f5:b8:15:e6:9f:27:6a:07:ba:4b:
25:4d:ad:17:66:ef:48:62:1d:bb:be:75:9c:d0:ec:c2:c5:b9:
01:94:c6:98:9c:b2:d7:0a:40:82:68:2b:94:51:b1:e3:2d:da:
85:38:76:6d:2f:bf:fd:81:1c:c4:6a:b8:52:78:79:a1:58:dd:
fd:db:64:55:82:02:f6:b0:2e:e4:3b:c3:bf:2e:1f:f4:78:30:
d8:6d:42:98:c0:ee:4d:b5:c6:07:3c:0b:13:d1:b3:ee:9f:fe:
c5:39:75:6d:43:fa:91:87:89:4d:8b:27:4a:9f:94:87:28:c5:
3d:41:da:15:aa:b6:51:80:72:30:c3:1f:82:01:84:30:42:8d:
b2:7f:fc:b5:ec:91:07:d9:92:08:01:c1:50:a0:88:59:9c:2a:
34:64:e3:74:c1:bd:7b:50:5f:5b:9e:fe:53:07:4b:0c:d3:b6:
36:79:e1:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:43 2025 by rpki-client