Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json)
Hash identifier: u/nkb9pURvBTYhGP4Mum6kDGP4F8P9b/3L2ZtJYTBSI=
Subject key identifier: 38:7F:99:F8:F1:79:F1:56:39:14:7B:4D:07:E3:E3:FA:28:69:10:D2
Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Certificate serial: 01977075B79B01EB9EF4ADE588137FB08CF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
Manifest number: 04FB
Signing time: Sat 14 Jun 2025 22:00:52 +0000
Manifest this update: Sat 14 Jun 2025 22:00:52 +0000
Manifest next update: Sun 15 Jun 2025 22:00:52 +0000
Files and hashes: 1: AJ5wMI6kFAAGgXfPHZAVtLCSnP8.roa (hash: O5F5OKdgmFhYvl6NemyAslo9muG5v3CdZb38avB1q8I=)
2: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: YyBv9O2ckE0X07xt0MdLrrg5zBM8lpezAEnGQlEcTYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:75:b7:9b:01:eb:9e:f4:ad:e5:88:13:7f:b0:8c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Validity
Not Before: Jun 14 22:00:52 2025 GMT
Not After : Jun 15 22:00:52 2025 GMT
Subject: CN=387f99f8f179f15639147b4d07e3e3fa286910d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:96:4f:72:01:f2:4b:4d:a4:62:f1:e8:7f:84:
1d:b4:68:3a:0e:bd:5d:4b:d4:79:3b:80:bd:2b:bf:
ae:a0:8d:81:c7:9b:51:5f:89:45:96:ca:d9:26:56:
a9:8d:7f:93:68:de:ba:08:cd:da:d6:26:5d:3c:62:
af:90:96:b6:91:25:d2:12:ba:82:69:5b:e5:c9:14:
d1:df:f6:fa:f7:35:d7:66:af:29:8b:f8:f5:c1:28:
46:8c:0e:d3:58:12:35:f3:30:3c:ea:f5:ea:ad:62:
86:15:5d:c0:5c:a1:18:13:72:6d:23:cb:0b:de:1c:
fb:f6:5c:3b:55:33:59:6f:07:45:01:ad:f5:6b:6a:
ad:e2:09:b4:59:79:e8:31:70:17:ec:de:2d:d9:c5:
33:0e:dd:b5:28:12:61:81:7e:91:36:89:3c:bb:39:
b3:a5:a9:99:62:f3:50:8a:26:0d:06:b8:1a:bf:8d:
63:11:35:fa:a3:f5:ae:91:89:2f:5a:95:e4:22:ee:
f1:c3:37:61:51:d1:71:da:e8:a6:00:db:2c:ff:46:
04:93:f0:39:55:fc:84:3f:8f:aa:e2:3f:4f:c1:d4:
4a:09:5f:24:37:0d:90:a1:0b:10:3e:2e:2d:f4:5d:
aa:e4:28:92:f9:7f:35:ae:4d:44:aa:ef:a4:2e:3a:
22:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7F:99:F8:F1:79:F1:56:39:14:7B:4D:07:E3:E3:FA:28:69:10:D2
X509v3 Authority Key Identifier:
keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:d2:4b:85:29:26:a1:40:5e:db:95:53:f5:da:ba:08:fa:9e:
ed:66:ce:fc:86:98:38:c3:9f:77:f2:dc:81:cd:29:a8:e5:2b:
0c:c1:dc:85:d7:97:f4:76:b6:88:bf:f9:0b:a8:f6:7e:2b:1f:
37:c4:d8:8b:39:5a:bd:ec:f0:f1:9b:31:53:d8:b5:cc:64:f6:
70:79:00:64:4f:4c:01:3f:6b:e3:16:53:3a:b7:23:36:4e:e7:
c4:4b:8c:c5:9e:1d:66:0e:a0:e5:98:fb:4a:08:9d:d1:40:58:
52:93:14:c2:5b:6e:22:2f:ad:da:25:b4:dd:63:f7:a4:4e:20:
29:06:ad:63:1d:f6:30:62:38:9e:cd:69:34:dd:87:aa:e2:29:
34:62:ad:9a:7d:27:be:45:f9:71:05:e3:a6:86:06:6d:34:e4:
e4:a6:b7:05:9e:a4:75:19:b3:24:bf:b3:7d:66:0b:f5:a7:60:
22:4b:ff:36:cc:7d:cb:62:fc:cb:52:35:cd:35:43:d0:14:31:
95:82:9d:25:b0:d3:d8:39:6d:8e:e1:a3:c5:99:86:fe:65:3c:
80:0f:0b:21:c7:05:60:d8:d9:68:ee:65:3d:9a:59:2d:2f:bb:
78:8b:6b:33:5a:e3:30:03:cc:58:10:37:e7:3b:2a:7b:7a:04:
fc:89:a0:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:57:53 2025 by rpki-client