Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
File: Kq8k6REaiJ202uCH5ICeEIbjP4I.mft (raw, json)
Hash identifier: jyIWVbKTDwkZD5o25urZ2wtTEoiNkiJ6uvWK3skXNZ8=
Subject key identifier: 19:8B:04:03:D7:CB:7E:F2:0F:28:65:86:8A:9F:94:0D:8F:83:12:16
Authority key identifier: 2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
Certificate issuer: /CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Certificate serial: 01974D0DD7405082A643462788B15933DDFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
Manifest number: 14DA
Signing time: Sun 08 Jun 2025 01:00:41 +0000
Manifest this update: Sun 08 Jun 2025 01:00:41 +0000
Manifest next update: Mon 09 Jun 2025 01:00:41 +0000
Files and hashes: 1: 5sMxgmIczAQ4fn8JJ0_j3DrMjS0.roa (hash: VTfvZnzv8Q2Rd2Q6njhUyXmObqB+4ygm6Iue4TDP3ic=)
2: Kq8k6REaiJ202uCH5ICeEIbjP4I.crl (hash: 9O2IUVxHswU4oUu43gHbGjlh2UuGs/Nrzq3Jfa03ulA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 01:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0d:d7:40:50:82:a6:43:46:27:88:b1:59:33:dd:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Validity
Not Before: Jun 8 01:00:41 2025 GMT
Not After : Jun 9 01:00:41 2025 GMT
Subject: CN=198b0403d7cb7ef20f2865868a9f940d8f831216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:44:e1:23:37:5a:23:9f:f5:94:82:19:ab:7b:
f8:97:65:99:78:dc:51:56:57:12:09:a6:0f:c5:79:
18:12:64:1e:23:4c:7a:57:72:60:db:f0:0f:df:94:
ea:da:45:01:a2:4c:29:17:39:63:33:2a:45:40:53:
63:15:70:4e:b2:22:13:17:08:22:da:b3:aa:f7:14:
e6:3a:54:6f:36:2c:d8:c5:69:01:be:69:9c:f4:01:
51:ed:2d:31:bc:4d:cc:61:29:17:e9:23:4d:a4:04:
dd:c3:d6:e2:00:f9:d8:80:48:bf:02:f1:5a:0f:25:
78:a2:3b:cf:48:76:cf:d3:69:f5:4a:62:27:e7:e9:
89:bc:47:bd:35:03:25:b1:ae:3d:f9:b2:bd:1b:64:
25:bb:d6:85:16:59:11:cb:48:a2:73:25:f3:8f:80:
ff:89:84:cd:4d:25:13:4a:bf:53:bc:f0:67:2c:3d:
c2:ac:cd:46:e3:34:8e:80:07:d0:6a:d1:54:a4:49:
02:2c:da:36:6e:5b:15:d7:ad:40:71:98:91:a1:30:
ad:88:12:3e:8f:7b:43:a9:d5:24:63:44:21:00:70:
9c:d7:5d:4b:f3:60:50:a0:e5:ae:18:c5:aa:8a:88:
b9:5e:d2:c4:88:ad:6b:ec:7f:be:71:2f:80:d5:55:
3e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:8B:04:03:D7:CB:7E:F2:0F:28:65:86:8A:9F:94:0D:8F:83:12:16
X509v3 Authority Key Identifier:
keyid:2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:d9:18:87:7c:5b:01:d7:a0:96:66:01:4f:93:27:6e:2f:5f:
07:8d:14:49:55:7e:fe:21:b8:5c:25:7a:e0:56:c4:32:8c:49:
04:dc:d4:0d:6b:51:a5:06:53:5d:ba:b4:74:52:8b:63:6c:83:
c7:cb:bd:b5:ea:aa:73:26:29:0d:c6:2e:73:17:ce:d9:af:d8:
5d:f8:cf:45:67:e1:18:7d:80:5b:e8:bd:41:db:c4:20:3d:a6:
ed:7c:04:c1:07:64:fd:43:f7:df:17:39:e0:d9:3e:ce:2a:7f:
0d:9e:5d:6a:42:c4:30:c5:e7:60:c6:8f:cd:e1:c3:a0:8b:55:
57:16:33:f5:f1:4b:74:16:be:b6:d4:76:a9:6b:f8:12:7c:69:
15:fb:20:c9:4c:0f:87:3d:39:4b:4a:9e:25:ff:ac:c0:e5:75:
ee:4e:ca:94:44:ca:61:42:e2:ab:8c:75:c3:1e:62:c6:58:f2:
53:ad:f5:e9:19:02:bf:29:56:0d:2e:c5:f9:25:0c:7e:8c:88:
a3:a3:27:9d:33:15:1d:c8:1e:fd:46:1b:c3:4f:dd:15:3f:34:
49:49:fc:90:00:b6:85:71:1d:9b:1c:46:6e:e5:0b:fd:ee:a8:
9a:03:c6:4e:9d:a3:39:ed:56:57:ee:e1:10:60:f1:ad:47:45:
84:68:62:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:45:10 2025 by rpki-client