Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
File: kERLB53wCKfHy-KPy6Xb4GIOjhc.mft (raw, json)
Hash identifier: ry1jMlLWCom2uP9Cy1RknYk/lrQInJ7RetYPjGuoOGI=
Subject key identifier: F0:17:8B:69:0C:9D:55:F7:94:3D:38:08:D5:F5:49:E0:2D:44:19:FE
Authority key identifier: 90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
Certificate issuer: /CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Certificate serial: 01974967C824B020B36F9F920BD33130B4ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
Manifest number: 13EF
Signing time: Sat 07 Jun 2025 08:00:27 +0000
Manifest this update: Sat 07 Jun 2025 08:00:27 +0000
Manifest next update: Sun 08 Jun 2025 08:00:27 +0000
Files and hashes: 1: kERLB53wCKfHy-KPy6Xb4GIOjhc.crl (hash: pjb1UGLH5+8+BU3PAUJdlSvSp3igSqjz5RaebdxE7WA=)
2: o9Mrd_Zp-119sDj-V8VZv-bH4Po.roa (hash: T/Zr25wueuSL7uIuxkLz/YPHfupfyL0OiqXaAJQQ9Uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:c8:24:b0:20:b3:6f:9f:92:0b:d3:31:30:b4:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Validity
Not Before: Jun 7 08:00:27 2025 GMT
Not After : Jun 8 08:00:27 2025 GMT
Subject: CN=f0178b690c9d55f7943d3808d5f549e02d4419fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:45:d7:52:ba:67:c2:6b:f3:ca:56:f4:56:54:
88:95:4f:7b:30:3a:ad:3c:1c:b6:ff:75:b5:e8:71:
3b:88:15:bc:04:b4:37:4c:c9:bd:4c:3b:fb:59:a3:
79:19:2a:8c:9b:c1:f1:a5:10:28:3d:7d:ed:95:65:
ed:06:40:1f:80:04:b3:c7:65:ca:af:b1:90:8c:75:
4a:31:d6:0b:df:f9:39:ec:92:7b:bb:46:5a:6b:d5:
29:20:f8:eb:48:51:d3:17:71:ad:76:d8:ed:69:f5:
29:bf:61:a2:cd:59:f8:31:2c:9f:74:61:81:e7:8f:
9c:b5:73:f1:88:dd:96:52:10:2b:97:4c:f4:c7:25:
24:33:79:68:0b:2b:ad:a8:17:c9:21:b5:94:9d:5f:
cc:ae:66:e0:48:d4:4b:a2:db:f5:da:12:e5:74:26:
5f:35:c6:04:f9:d9:0c:94:5f:de:93:20:19:44:3a:
28:cd:57:69:5e:55:da:c3:ba:dc:04:59:f2:3b:52:
0c:1e:0f:f9:00:e8:93:22:ff:e2:0c:dd:28:ec:40:
cc:f2:a5:a7:70:94:9e:f7:8c:df:af:77:7a:31:29:
f5:7c:10:81:3b:c8:bc:1d:67:dc:9b:e8:20:ac:da:
22:2b:9c:18:53:b2:cd:03:f6:82:03:13:9c:a6:4b:
e0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:17:8B:69:0C:9D:55:F7:94:3D:38:08:D5:F5:49:E0:2D:44:19:FE
X509v3 Authority Key Identifier:
keyid:90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:dd:44:36:de:71:41:d6:37:21:f9:b3:86:c4:c1:25:b6:06:
37:20:ed:26:b2:2b:97:62:c6:1f:86:e7:6c:14:b8:5d:7f:cf:
85:3a:6e:6f:2e:5e:2b:2b:44:91:2c:fa:d6:b0:40:c4:70:c5:
1b:f0:1d:a3:cf:eb:75:19:2f:f5:13:df:5b:48:8d:56:27:5e:
07:61:04:ac:ea:60:ce:53:97:b1:79:24:a2:89:7b:35:9f:45:
77:aa:44:12:b5:7f:bb:35:91:d8:b6:9c:cb:f9:dc:ab:3e:88:
4c:37:9f:47:fa:cb:0a:a8:e6:5a:6c:5e:ba:a9:6e:37:92:a7:
6b:9f:00:67:81:f4:1b:aa:3f:07:86:04:95:19:22:e8:74:9e:
f3:64:a9:3e:e2:9a:ae:62:d7:3b:b4:95:b3:70:0f:29:4a:b0:
91:b9:46:0a:b5:cc:d8:ce:21:56:80:a6:d2:e8:79:dd:39:31:
77:99:a9:35:bd:45:ec:9f:9f:35:62:b4:ad:e3:e9:92:96:f0:
f5:3c:6c:a7:cf:1c:c1:02:16:d6:dc:be:d6:be:d1:f8:f8:bc:
2d:fe:9c:8a:47:d5:5f:d1:02:f4:46:66:50:7f:cc:6e:02:b2:
e1:5c:76:4f:e4:bb:1a:61:07:f1:96:6f:9c:98:7a:52:6b:75:
bf:78:d1:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:54:44 2025 by rpki-client