Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
File: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft (raw, json)
Hash identifier: Hn9q88IBEsRd8cv3tZL1OwzQqb6v0W1lctTDDjTymAo=
Subject key identifier: 56:41:96:DF:27:B0:57:D1:6A:A9:BA:DD:CF:1B:3E:14:3D:C0:86:F6
Authority key identifier: 91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4
Certificate issuer: /CN=913836859c6ce1869340edf1f273709b8094d9d4
Certificate serial: 019762F0EB45C4E86EF30B68D63AAC5DA9D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
Manifest number: 14F1
Signing time: Thu 12 Jun 2025 07:00:45 +0000
Manifest this update: Thu 12 Jun 2025 07:00:45 +0000
Manifest next update: Fri 13 Jun 2025 07:00:45 +0000
Files and hashes: 1: i0znYyDIsk78QzCDDCTg60lK9ig.roa (hash: aeDo1wq5VczgcfrDX0J+4eB6IcjwVsRwiJM6vkXROSk=)
2: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl (hash: fcYly0AMJYRUVHiduekp7F4sSFjc0807B7VJCspqw+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:f0:eb:45:c4:e8:6e:f3:0b:68:d6:3a:ac:5d:a9:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913836859c6ce1869340edf1f273709b8094d9d4
Validity
Not Before: Jun 12 07:00:45 2025 GMT
Not After : Jun 13 07:00:45 2025 GMT
Subject: CN=564196df27b057d16aa9baddcf1b3e143dc086f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:11:a5:ca:dc:b2:1c:0d:79:a6:8a:83:ee:aa:
6d:2d:b5:67:52:65:8b:32:f9:76:db:66:5a:74:19:
cd:35:38:d4:5a:de:8e:8c:ca:d2:ab:01:94:d9:dc:
65:73:28:bf:e0:f0:39:9b:67:39:bc:26:16:3f:4d:
a7:26:0b:85:2a:78:63:6d:4e:c6:86:44:33:4c:61:
fb:42:27:c6:dc:42:b3:4a:ce:48:d8:18:e6:5c:51:
84:ea:23:95:e2:09:79:2b:0a:df:4d:fc:17:e5:15:
56:ff:00:8f:b6:6a:7a:00:22:4e:6c:11:e2:e8:57:
4a:4a:c5:7e:d9:e8:df:a2:0f:56:76:cc:ae:ad:c3:
8e:f5:5e:e1:05:f5:49:95:6c:8a:50:93:2f:8c:51:
3d:5e:82:d3:ed:6a:2c:18:c7:04:54:e7:05:7d:59:
52:50:97:53:7c:c2:d4:3a:de:d2:14:64:52:66:a1:
1f:0b:1e:48:08:cb:be:25:61:a0:fe:af:b9:98:f8:
25:7c:eb:82:7d:8c:49:d7:d8:94:17:f7:05:aa:d6:
0a:37:3b:ee:00:61:01:55:1c:b2:7e:a8:da:e6:58:
ff:31:c5:bc:03:53:19:77:f2:76:ac:0c:24:3b:26:
40:99:36:8d:91:82:11:ac:07:ed:06:a2:d9:d1:c0:
17:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:41:96:DF:27:B0:57:D1:6A:A9:BA:DD:CF:1B:3E:14:3D:C0:86:F6
X509v3 Authority Key Identifier:
keyid:91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:c5:0f:1c:b4:31:23:47:af:65:89:bc:8c:f0:43:f1:9b:60:
38:1a:c7:62:54:b9:64:20:07:0b:0b:74:45:1e:a4:9b:5a:79:
5a:b8:e3:b5:4d:d0:77:5e:45:e7:a5:07:73:f5:32:7c:85:df:
a0:53:f7:32:e2:9f:67:06:94:ec:05:37:63:c6:c2:6c:2c:9c:
d4:dd:0a:74:59:be:b6:5b:20:f1:a0:51:4d:b6:6e:e5:f9:2a:
cb:5c:96:ef:05:53:19:92:0c:fd:5a:08:13:63:65:74:6e:0f:
e7:88:37:1c:bd:5a:bc:65:34:ec:ce:8b:4d:4f:ed:9e:26:6f:
f9:a6:84:cc:0e:40:28:3a:4c:c5:53:98:a6:60:74:b1:4b:0b:
76:eb:90:f2:96:c9:2c:89:33:dd:0e:c9:1d:f9:1f:99:90:af:
54:1a:04:12:4e:5a:49:8c:29:29:2b:fb:db:b1:0d:46:a1:7e:
68:1d:d9:2c:6f:a6:c1:b6:d7:cf:8f:35:65:08:70:4f:08:a4:
b2:2e:d8:03:a5:6d:12:9b:92:50:9a:77:9f:d9:3a:c3:fd:25:
2e:54:dd:09:2b:a0:58:e8:99:e9:77:ea:db:b3:e7:c6:8c:24:
e1:d8:8c:16:25:0e:5e:86:de:fd:0b:dc:81:21:86:36:86:87:
8e:0a:33:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 10:09:26 2025 by rpki-client