Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json)
Hash identifier: 1jYT0hdKwJKHlUJNk0LKNkgqcfutibUlK1hDsFvEDQE=
Subject key identifier: FF:81:2C:BA:F3:EE:6E:E1:4F:F8:DA:6A:BE:71:C2:72:C9:7B:04:B4
Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Certificate serial: 019769979AAB737721409D57E0E5ADE87DF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
Manifest number: 151F
Signing time: Fri 13 Jun 2025 14:00:32 +0000
Manifest this update: Fri 13 Jun 2025 14:00:32 +0000
Manifest next update: Sat 14 Jun 2025 14:00:32 +0000
Files and hashes: 1: UkqG3VMYAz9uABWF42sKAydGWoA.roa (hash: /dg3EZ5BvktCoE6vyv9z5Q4gql01gT6XeimrmuNAS5k=)
2: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: i6sWdzEOKDyzPSfLFq43xIESiV3Kgk7kSCIVLzLUYmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:9a:ab:73:77:21:40:9d:57:e0:e5:ad:e8:7d:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Validity
Not Before: Jun 13 14:00:32 2025 GMT
Not After : Jun 14 14:00:32 2025 GMT
Subject: CN=ff812cbaf3ee6ee14ff8da6abe71c272c97b04b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5f:ca:ed:f9:9c:97:6c:37:f3:48:8a:f8:db:
be:79:b2:55:b6:f1:bb:f6:8c:7c:f7:d2:22:db:3a:
e7:45:18:a7:42:7f:4d:12:89:4a:38:34:0e:18:b3:
8a:7c:39:a0:6a:72:67:b3:8d:a2:49:76:84:55:bb:
6b:33:29:e6:ee:b8:3b:4b:fb:b2:73:32:9c:ad:58:
4c:32:5e:ef:db:c3:d7:14:ba:71:f1:8e:4c:3d:6c:
d4:b7:9a:a1:44:5b:18:50:3a:03:fb:92:0b:c5:0c:
4e:4d:94:a3:0c:c2:3e:27:e6:37:01:0c:68:29:11:
f4:10:90:9a:eb:6e:1f:de:22:3e:1c:73:6a:3f:45:
c0:ed:5b:ba:79:51:fb:59:cb:e6:13:c5:65:10:30:
18:ea:dc:a2:a4:48:5f:60:c5:d0:64:41:13:ad:cb:
eb:ca:55:88:05:30:65:6c:1e:ae:a2:eb:fe:ec:e0:
ca:34:b5:76:82:66:08:c6:aa:3d:4f:39:bc:c0:2c:
d7:11:a1:08:51:33:38:9e:0b:c0:e2:6a:4a:30:93:
e6:24:58:ad:0c:98:51:62:54:3b:cd:8b:f3:b1:22:
d3:94:eb:4d:d7:d3:2a:11:68:12:0d:5c:92:f1:99:
75:62:01:8e:63:44:94:08:59:8a:37:3b:23:01:7a:
8e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:81:2C:BA:F3:EE:6E:E1:4F:F8:DA:6A:BE:71:C2:72:C9:7B:04:B4
X509v3 Authority Key Identifier:
keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:aa:af:45:a5:7b:d5:3a:db:35:65:2c:2f:8d:dd:f7:a6:2d:
43:84:9b:0b:51:c9:c9:3b:f1:08:03:04:41:b2:94:b3:8f:d0:
ff:0f:34:e1:dc:2b:7e:3b:d0:35:26:af:01:c5:29:c2:87:50:
5e:b2:54:f8:bf:2a:ac:9f:3d:88:fd:e5:a1:fa:ff:9a:aa:3e:
9f:68:58:14:ff:7a:10:b6:e0:d5:dd:74:1c:c9:c5:91:cb:09:
d0:65:ca:ab:37:e9:58:cc:5b:01:f1:f7:a0:e1:84:7c:bc:95:
3a:bc:a9:c1:44:4e:bf:3b:23:ba:46:22:47:e6:bc:04:e2:e4:
de:a4:8e:c5:cc:83:b0:bf:14:0b:65:35:28:f2:45:dd:50:09:
2a:9d:12:b4:1b:e0:ce:5d:a9:0b:38:fe:f3:22:c0:53:59:93:
75:99:7b:bc:91:43:10:3e:61:bd:e8:ee:97:79:a7:52:2d:80:
c8:a4:e5:34:de:00:29:ec:6c:f5:85:2c:bc:ca:7e:e7:48:5e:
4b:56:a3:0d:11:c6:72:32:96:48:23:53:a7:a1:29:43:35:d7:
d0:ec:13:38:a6:46:12:35:f9:80:50:57:6c:7a:1e:44:da:28:
28:3a:7f:78:72:5a:c1:6c:e2:41:5b:ea:19:51:0e:d8:1e:02:
97:f7:ca:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:14:07 2025 by rpki-client