Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft
File: khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft (raw, json)
Hash identifier: N2xjX2f/DdSDE+Zp0knfvDGGr+0LJ72wUqjjOjDa6QE=
Subject key identifier: 53:0D:8C:24:D2:4F:18:2D:81:D1:AE:B3:7B:46:26:1E:95:F3:45:C8
Authority key identifier: 92:1C:4F:DA:36:7C:53:83:B1:5C:2A:71:43:AD:4B:10:C9:55:CE:A0
Certificate issuer: /CN=921c4fda367c5383b15c2a7143ad4b10c955cea0
Certificate serial: 01974EFC8C32C55581BCDE20B33D377839DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khxP2jZ8U4OxXCpxQ61LEMlVzqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft
Manifest number: 1292
Signing time: Sun 08 Jun 2025 10:01:03 +0000
Manifest this update: Sun 08 Jun 2025 10:01:03 +0000
Manifest next update: Mon 09 Jun 2025 10:01:03 +0000
Files and hashes: 1: K_0VKEBHZ8AzTGdtRKig6YmReAg.roa (hash: V6KL9KuDWKfGzsEoPpZURMCt8ttu62n0nd3Y+gExuwA=)
2: khxP2jZ8U4OxXCpxQ61LEMlVzqA.crl (hash: p90Ew36cJiy2ri0vVkTaDLAPmSXVTXQsNB6H1y6P0CQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/khxP2jZ8U4OxXCpxQ61LEMlVzqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 10:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:8c:32:c5:55:81:bc:de:20:b3:3d:37:78:39:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921c4fda367c5383b15c2a7143ad4b10c955cea0
Validity
Not Before: Jun 8 10:01:03 2025 GMT
Not After : Jun 9 10:01:03 2025 GMT
Subject: CN=530d8c24d24f182d81d1aeb37b46261e95f345c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2c:e2:fd:f2:49:d2:3b:42:51:34:56:31:97:
4d:56:d8:1b:6a:fb:df:11:3b:73:16:ce:c3:d3:e4:
e0:b1:b4:70:51:db:13:38:98:3d:d1:2d:75:ae:fe:
2e:26:4e:3d:9d:99:91:b8:c3:b9:33:22:9c:fd:77:
31:53:56:6b:61:ae:b2:8a:52:e6:b9:c7:51:f8:aa:
55:ec:60:4d:84:ed:2e:08:c4:bf:22:7c:c3:ff:7d:
8f:b0:ff:9e:06:bf:1f:b9:4a:9d:08:39:94:29:01:
cf:50:b1:9f:85:e1:1d:0a:a4:30:70:1a:0e:f3:05:
52:62:01:95:5e:b7:fd:59:3e:2a:18:3b:f4:ae:fa:
14:3a:22:e4:66:25:3d:8e:01:7c:f8:9a:41:eb:d4:
3f:3c:ee:7d:71:b8:e7:b6:b0:96:26:9e:1f:f2:c2:
af:a2:1c:4d:42:4a:24:f8:fe:0c:28:c2:1d:8b:d0:
9c:f2:64:22:78:4a:62:7d:00:80:ce:9a:b6:57:39:
71:87:15:a3:05:51:aa:e8:6e:34:65:01:a3:d1:f4:
e1:da:07:48:bb:41:b5:ae:7e:6b:c5:c0:e0:44:1b:
8a:70:62:43:49:25:aa:a3:22:86:2d:26:c0:eb:15:
7b:cb:2f:fe:0d:89:1a:1c:7d:d1:0e:67:48:2d:c3:
a5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0D:8C:24:D2:4F:18:2D:81:D1:AE:B3:7B:46:26:1E:95:F3:45:C8
X509v3 Authority Key Identifier:
keyid:92:1C:4F:DA:36:7C:53:83:B1:5C:2A:71:43:AD:4B:10:C9:55:CE:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khxP2jZ8U4OxXCpxQ61LEMlVzqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:3b:43:55:25:83:4c:a0:34:ea:7e:80:88:42:81:1e:23:65:
52:df:6c:eb:33:9e:32:54:e9:fb:f9:56:f5:5c:92:35:33:42:
91:7b:af:3d:7e:3d:a9:2f:01:dc:c6:ae:7d:6f:69:1d:13:dc:
8c:09:1b:39:ef:d9:bc:ab:f9:13:58:6e:ad:02:af:6f:a0:0e:
ca:d1:ae:64:8a:9e:03:e8:ce:12:46:50:fb:50:d9:0a:20:e7:
30:06:94:28:c1:64:4f:b0:70:d6:b5:52:7e:a0:8f:64:16:c8:
30:3b:a1:63:e4:41:52:ef:b1:94:a8:6b:3f:1c:86:90:89:e3:
a4:73:55:e5:2b:15:a0:ba:6a:66:e6:4c:52:4a:2c:aa:6b:1d:
39:4f:91:31:d7:08:0d:e9:18:68:3e:70:2b:39:a9:b0:0b:3a:
11:55:8b:8c:d5:e1:52:f8:c9:09:dc:fd:61:f4:38:bb:b0:f2:
7b:85:09:e1:1a:6b:99:85:99:06:e5:ce:0b:cd:3a:35:38:cd:
07:48:0f:66:38:80:e5:3d:ab:36:76:68:6c:a6:82:48:c1:4c:
f4:70:f4:53:c7:a1:b4:7e:7e:aa:92:83:50:79:d1:58:43:2c:
40:8f:0e:b0:df:5e:c1:38:9a:00:3c:95:a6:d9:14:0a:31:cc:
98:b5:48:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:49:49 2025 by rpki-client