Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
File: koDT5GcpaPhuiVXbYgy3ZdudcUI.mft (raw, json)
Hash identifier: 8yDq+Y1HS23UOEXPvvDIenNL9IFdYZs6AE12gZSMaWY=
Subject key identifier: 29:AE:5A:41:7E:7D:DF:D4:8D:43:52:40:62:BE:2E:E7:02:FE:52:38
Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142
Certificate serial: 019746D4ECC49DD3FC6493FE92E9D1698735
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
Manifest number: 09AA
Signing time: Fri 06 Jun 2025 20:00:48 +0000
Manifest this update: Fri 06 Jun 2025 20:00:48 +0000
Manifest next update: Sat 07 Jun 2025 20:00:48 +0000
Files and hashes: 1: HJG2LfZbcdQILd5mjrG6JouJjB8.roa (hash: AJsKTbmetLnV+AkJjtEMj7IQPl7myVO7TWx6kpWmD6s=)
2: koDT5GcpaPhuiVXbYgy3ZdudcUI.crl (hash: CznCNIkS+1gcUZwfseiSNJUTkkg9FiA+hyeCi2nzY/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 20:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:ec:c4:9d:d3:fc:64:93:fe:92:e9:d1:69:87:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142
Validity
Not Before: Jun 6 20:00:48 2025 GMT
Not After : Jun 7 20:00:48 2025 GMT
Subject: CN=29ae5a417e7ddfd48d43524062be2ee702fe5238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:de:c8:2d:a5:8f:74:c7:29:de:19:34:48:ef:
88:7e:01:d9:8e:46:07:ea:58:fb:9d:2a:68:af:3b:
5a:5c:88:0e:2b:4a:89:44:23:d7:56:1a:c2:b2:3c:
53:8c:23:41:f1:8b:e4:df:8b:08:d0:a7:36:4e:26:
5f:9c:05:37:e4:8a:f5:2a:3a:5d:6d:85:7b:63:5a:
cb:9f:00:e1:4c:f4:56:5e:f1:29:a1:46:59:33:41:
b3:80:69:18:ea:5d:cc:b0:26:14:f8:f2:9a:11:5a:
46:aa:5b:7b:15:d4:9f:24:f9:93:3a:06:e1:af:f6:
4e:79:e7:81:0c:12:6f:cb:27:8a:8f:11:c3:fa:11:
96:0b:1f:5f:37:fb:ca:33:ad:0a:74:15:db:d7:94:
14:62:da:30:92:0d:13:4a:da:d5:8b:99:ad:18:e0:
79:90:35:52:0b:25:04:b9:25:22:23:ed:9e:5e:f1:
47:f6:9f:73:e1:4b:f3:9e:fe:b3:c9:65:e5:a8:b9:
6c:4e:52:0c:69:c5:4e:35:07:d8:84:97:19:41:cf:
5a:08:1c:0d:a3:b8:e5:64:a5:d3:21:22:4b:f2:bc:
01:bd:dd:69:6d:63:bf:17:78:96:11:70:7b:7b:ad:
00:da:9d:d8:e4:04:ae:96:da:e7:fc:d5:d8:b8:b4:
8e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AE:5A:41:7E:7D:DF:D4:8D:43:52:40:62:BE:2E:E7:02:FE:52:38
X509v3 Authority Key Identifier:
keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:13:ea:b9:e4:9a:e4:77:1b:2e:81:78:50:06:27:09:f9:80:
cc:31:94:04:5b:0d:74:94:00:ad:94:0e:a6:f6:b0:0a:e8:ea:
c6:48:58:7a:1b:0f:79:f4:3e:d4:d4:92:df:40:29:1c:14:ad:
8c:ff:20:fb:13:9d:b1:1e:d0:94:52:64:cf:1d:dd:de:cd:5e:
ec:f0:a2:a9:1a:b0:a2:cb:ee:71:e3:1b:ae:5e:ed:ff:cb:ee:
f2:d1:39:65:76:7b:4b:a1:f3:a1:f9:03:f4:fe:f3:99:db:72:
59:2c:d9:30:d4:e6:e5:a9:34:ac:1d:11:6b:c5:6d:37:c8:90:
6c:da:00:14:a6:8d:8f:6b:35:ac:48:b7:69:99:a3:da:fc:7f:
58:1d:0e:67:51:64:78:11:62:8a:59:6a:3d:c7:65:ca:c4:dd:
e7:9e:d1:59:5c:a7:f4:4f:ba:b9:04:1b:48:85:ac:dd:06:20:
1b:7c:78:5a:31:b0:aa:d3:cb:f5:b9:31:81:5e:c5:b5:45:95:
f3:c7:7a:ac:fe:22:e5:7b:a7:eb:50:d8:a8:6e:f1:aa:b5:ab:
e6:df:d4:5e:97:11:18:b7:75:8a:00:0d:93:62:1d:f2:7f:66:
8e:ef:81:22:bc:0c:6b:ca:3e:6d:94:24:04:0e:5e:ab:f3:5b:
dd:4f:44:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:44:22 2025 by rpki-client