Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json)
Hash identifier: Q5eeY8Mv9VfEiwHduKHq3EFlBdditl112yu7nLLedgU=
Subject key identifier: A8:2A:E8:55:1C:5D:59:EE:67:1A:A9:B3:DD:53:EA:4B:44:80:E4:73
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 0197488C2FADCF5979458F36D4F49C4A9DDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 04:00:36 +0000
Manifest this update: Sat 07 Jun 2025 04:00:36 +0000
Manifest next update: Sun 08 Jun 2025 04:00:36 +0000
Files and hashes: 1: K-YJm4wOeLJG8aJ7KI41BLWAM-4.roa (hash: +ltmXAJQfzovJoKfgWj4x9gqmeiriedONmDgSBwWFc4=)
2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: 3UlEgwvI/G8O4B0FjbrguCfriWl2a6e3aVEEwD8qZj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:2f:ad:cf:59:79:45:8f:36:d4:f4:9c:4a:9d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: Jun 7 04:00:36 2025 GMT
Not After : Jun 8 04:00:36 2025 GMT
Subject: CN=a82ae8551c5d59ee671aa9b3dd53ea4b4480e473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:95:87:e7:15:e8:a2:1a:9f:78:5f:bd:fe:e9:
ce:dc:73:7f:20:63:02:31:0b:80:25:e4:f0:66:05:
b0:4a:8b:c7:99:61:f5:f4:5a:ec:c8:0a:89:e8:3b:
0b:79:20:6d:6b:9a:fa:ff:ff:ec:6d:c6:1f:ca:e4:
dc:ad:b8:89:c2:c8:dc:c6:ef:ae:22:ec:fd:a2:01:
ae:ef:0e:40:27:fc:27:54:56:3d:7e:f3:39:50:1d:
c1:de:82:36:53:62:09:62:f5:9e:68:dc:5e:db:70:
18:36:e8:0c:5f:77:76:02:d2:81:ce:7e:14:b9:b7:
ab:3d:5b:75:2f:4c:6c:05:a3:57:85:d8:b8:fc:11:
78:51:de:e1:d2:ed:5a:9b:1a:11:e4:5f:d9:ff:b1:
6a:3f:16:50:6a:da:7d:2e:73:76:ca:ba:7f:f9:c7:
2c:84:34:1b:87:a5:d3:bb:c0:3e:26:02:32:7d:a2:
93:c8:7b:43:d8:da:80:3f:b2:20:73:3f:cf:19:d2:
4e:bd:85:d1:1d:27:60:11:79:c6:a8:55:b6:f6:d2:
6e:d2:5d:84:ac:59:9d:6d:92:55:ff:9d:fe:68:0a:
2f:92:57:b8:a2:eb:5e:b7:0a:02:70:e7:cb:d2:9e:
ce:7d:45:67:4a:6f:10:7c:0f:26:79:a8:18:30:c4:
7a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:2A:E8:55:1C:5D:59:EE:67:1A:A9:B3:DD:53:EA:4B:44:80:E4:73
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:ad:f7:0b:10:62:6d:47:4b:f7:39:57:28:f9:b1:63:9f:71:
74:a5:f0:9c:16:f1:23:48:b9:f5:e2:5b:24:9b:6d:b5:d2:99:
2e:51:fb:e5:a5:af:9a:24:f8:4f:5d:4f:53:77:19:8b:cb:f6:
ca:18:e1:47:50:19:b2:7a:c9:6a:4f:ea:bd:27:0c:ea:0e:d6:
76:16:55:a4:52:96:38:2c:56:3b:f3:a7:14:10:8b:d6:18:44:
05:8d:c8:d9:02:27:c6:5b:f7:8b:f7:6f:24:89:a6:0f:bb:89:
b2:f4:17:4c:e9:0a:1f:14:50:e9:25:be:91:f1:29:bb:23:2c:
a9:06:06:03:64:61:49:03:eb:9d:4d:59:76:03:4d:94:d1:4a:
b3:71:27:98:73:c6:a3:d8:2d:e5:82:36:99:e4:fc:e9:b9:7a:
d6:5f:c4:dd:dd:cc:bc:91:a5:ff:ed:ec:00:1f:4c:2f:c0:98:
76:42:1d:b2:67:f7:40:27:7c:d4:b9:72:8e:42:9c:79:9f:0c:
d2:93:de:cc:31:a4:72:ce:91:29:08:80:af:41:56:24:2c:34:
19:b7:46:42:51:ab:36:65:65:a3:d1:52:42:ee:b3:66:85:1c:
3a:ae:4f:68:8c:81:e1:41:e8:47:3b:db:38:52:22:a4:54:f2:
e7:5f:65:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:13:17 2025 by rpki-client