Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
File: CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft (raw, json)
Hash identifier: u+G3ZiMi3HKX6+saig4Th015hr3c/fV7GjXGmQ4DVIY=
Subject key identifier: A5:32:3C:4C:87:B8:90:9B:78:2A:8C:99:BD:0F:FE:8B:2D:B0:5B:9D
Authority key identifier: 0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
Certificate issuer: /CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Certificate serial: 0197493156C82A40925778E1FF80DFD66CDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
Manifest number: 1536
Signing time: Sat 07 Jun 2025 07:00:59 +0000
Manifest this update: Sat 07 Jun 2025 07:00:59 +0000
Manifest next update: Sun 08 Jun 2025 07:00:59 +0000
Files and hashes: 1: CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl (hash: vZ/zY9XKKKWTk3Ek1EJtapETc85vlUbz+FdQU64BGks=)
2: Wy1LhCK9kxP-C2UiE5R2K8JtffM.roa (hash: DYS7fnBaD9Os9bSnRtbqX/rsXfSVI5HQGNbOlzCHNGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:56:c8:2a:40:92:57:78:e1:ff:80:df:d6:6c:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Validity
Not Before: Jun 7 07:00:59 2025 GMT
Not After : Jun 8 07:00:59 2025 GMT
Subject: CN=a5323c4c87b8909b782a8c99bd0ffe8b2db05b9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2e:c4:db:d6:e8:17:89:32:c0:f3:f9:b7:8a:
e6:f2:e4:4e:7c:7d:e9:23:48:a6:9a:47:89:81:a0:
b2:26:75:4d:48:9e:06:70:d0:ea:05:1f:db:77:19:
0c:ba:2e:6f:23:96:44:48:9e:25:84:71:ae:77:21:
b7:d5:03:8e:06:6b:09:d0:30:82:8b:6b:65:a7:22:
e2:42:a8:75:59:fc:58:c4:da:06:07:97:01:bc:a7:
9c:a1:e9:e1:8c:d5:50:39:76:e1:06:62:55:20:08:
fe:be:e3:da:ed:43:d4:da:43:ac:7a:3d:77:2e:94:
f5:10:25:42:22:27:29:52:36:54:d1:c9:8c:de:f1:
34:d3:53:88:8e:22:c9:7d:10:e7:2a:70:bc:c3:5b:
56:23:4f:72:1e:46:43:a4:79:ee:04:c2:a5:c2:ff:
bc:84:95:ab:b2:72:05:d9:30:4d:bc:5e:3c:0b:d7:
d1:98:a4:75:1c:62:1f:19:59:78:10:2e:22:26:c8:
b8:55:fa:43:7f:48:8c:b2:a3:71:17:ed:9a:4b:a5:
03:6c:5f:53:49:fe:9d:84:a1:c3:63:e7:e7:1b:c3:
c6:52:5e:d0:c8:15:64:36:cf:cb:ac:12:4c:a0:ff:
db:dd:06:af:e7:ac:2d:e4:e7:f5:e3:39:33:03:18:
85:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:32:3C:4C:87:B8:90:9B:78:2A:8C:99:BD:0F:FE:8B:2D:B0:5B:9D
X509v3 Authority Key Identifier:
keyid:0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:82:75:10:3a:11:f8:3c:ed:f3:ad:3d:93:6b:73:30:6f:fa:
e1:af:a6:22:53:50:6f:c9:59:99:7d:1f:1f:4a:39:5f:9e:79:
22:80:24:ba:b0:7e:53:15:66:2f:f6:fc:b9:f2:0e:ae:d7:35:
53:1f:6a:72:fb:28:57:89:8e:3a:eb:7b:1e:88:c2:bd:3d:66:
65:8a:2b:21:13:03:a5:cf:90:df:97:1f:0b:90:a1:9c:c6:09:
88:da:a4:61:a5:20:7e:1f:e2:87:1c:19:c8:29:3c:ad:31:2f:
b2:6d:20:7c:83:7e:58:cf:2b:0c:4f:e5:1a:39:6b:a7:3a:79:
90:f3:c6:59:85:1c:d6:2d:5f:b9:e8:1a:5f:a6:e0:ea:fe:2d:
bd:bc:38:1f:8d:bc:6d:9a:fe:cf:4c:8f:d8:fa:e5:05:25:c7:
32:c5:0f:3a:2a:c5:ce:d6:81:56:4c:1e:26:25:73:f1:b5:15:
dc:33:27:07:73:ed:22:3a:02:4e:cf:54:e6:2e:15:47:9f:7d:
c1:02:cb:21:a9:63:08:ba:de:02:8a:58:c2:90:e4:43:2e:ee:
6d:73:4b:d1:09:66:38:8f:76:6d:f1:0f:ae:bc:32:27:be:43:
cc:06:e9:c5:a5:f7:c4:b6:ff:17:b3:84:ad:55:03:bd:f0:95:
c9:a6:fe:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:19:09 2025 by rpki-client