Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
File: mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft (raw, json)
Hash identifier: zXjGP4i2DzXhw/eHrKuQ/fFrRXjVzLHcm3pXpSpiCDo=
Subject key identifier: 3A:9E:05:E6:FA:4F:6A:1D:9C:85:0C:BB:F2:B1:D8:9F:AA:07:1F:19
Authority key identifier: 98:A9:87:C6:CD:0A:36:F9:4D:BE:F1:0E:F2:A2:C6:60:20:A9:56:11
Certificate issuer: /CN=98a987c6cd0a36f94dbef10ef2a2c66020a95611
Certificate serial: 01974A7AE612FA5867782D5BD56BDBCE9E5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
Manifest number: 1111
Signing time: Sat 07 Jun 2025 13:00:57 +0000
Manifest this update: Sat 07 Jun 2025 13:00:57 +0000
Manifest next update: Sun 08 Jun 2025 13:00:57 +0000
Files and hashes: 1: KkXU6YkVywPte3FQKPTwmXq43Jw.roa (hash: +grv15uxretevWYIDb50yFoisYnL85l43pH++WpX3xI=)
2: mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl (hash: JWRHqYaf7PyM3gEsvp+cGgCSXdBJUq5tTcpgQumF9do=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:e6:12:fa:58:67:78:2d:5b:d5:6b:db:ce:9e:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a987c6cd0a36f94dbef10ef2a2c66020a95611
Validity
Not Before: Jun 7 13:00:57 2025 GMT
Not After : Jun 8 13:00:57 2025 GMT
Subject: CN=3a9e05e6fa4f6a1d9c850cbbf2b1d89faa071f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:60:82:17:6d:a9:99:2d:42:82:0a:a5:04:52:
ec:0b:4a:01:24:62:be:36:e4:e7:07:cd:32:0e:a6:
f9:b8:fc:36:2a:72:4b:ce:a4:9e:94:34:0f:61:e0:
ff:73:6d:04:c8:f1:a0:8e:b9:40:c5:4a:3f:40:30:
45:cf:e9:0c:d6:4f:1a:2c:35:e2:a8:64:03:f8:f6:
6f:a2:6d:d3:79:bc:0b:a6:a9:fe:8b:74:31:f9:6a:
5e:85:93:8a:74:69:50:00:a6:b2:34:c9:25:c0:3a:
ac:1e:58:07:6c:8f:db:da:f0:d8:5b:8c:68:3d:b2:
31:33:36:b6:8a:1c:e9:c1:1f:48:7a:d9:c9:76:a8:
4c:c3:92:55:10:42:ea:bf:77:ec:07:70:1a:24:9d:
ba:9c:16:2e:5e:d9:a5:39:05:2c:7f:69:dc:d7:f3:
94:b1:b5:cf:f9:10:76:fc:ac:7f:d9:64:20:65:5d:
27:29:25:e3:d5:ae:1e:42:19:d6:f6:a7:b1:bd:c6:
f2:bc:7f:20:47:21:51:f9:a4:5d:99:87:f5:79:ee:
09:5a:57:4a:b7:fe:78:2f:b2:63:1e:ef:90:93:dc:
92:52:84:86:95:8f:c7:89:bc:9b:bc:d6:31:e3:f1:
72:e2:71:e5:29:d9:66:a8:06:1b:c7:f6:55:75:51:
bf:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:9E:05:E6:FA:4F:6A:1D:9C:85:0C:BB:F2:B1:D8:9F:AA:07:1F:19
X509v3 Authority Key Identifier:
keyid:98:A9:87:C6:CD:0A:36:F9:4D:BE:F1:0E:F2:A2:C6:60:20:A9:56:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:13:44:e6:98:15:7f:c5:5a:7a:3e:55:3b:8a:52:f8:17:4d:
37:eb:2d:14:03:7c:a3:53:d4:35:ef:88:55:20:7f:c2:7e:b2:
d3:8f:a4:7a:9a:65:66:48:3a:1c:d0:50:71:dd:68:e1:b2:10:
6a:c6:c9:1e:50:32:ab:c3:7a:94:8e:9d:89:01:6f:c8:83:6d:
96:1d:e2:c7:dd:52:b5:95:f4:0f:e5:a6:bd:23:7c:cd:ff:aa:
d2:d4:17:d8:4d:20:e2:0c:2a:a5:5f:85:5b:06:de:d4:e6:27:
3d:b6:db:69:c5:57:df:7f:6d:9f:78:af:d9:12:03:ac:83:3c:
79:dd:66:6b:88:e6:0c:22:1c:2e:74:2f:db:42:06:87:e4:e2:
02:67:d3:42:b9:f9:d7:a2:d7:36:d7:3a:ba:37:84:98:2a:e1:
f8:e2:42:af:06:cd:f2:7c:ac:31:95:0b:18:6c:f5:41:cf:58:
31:03:0f:0b:04:08:be:9c:23:fa:a6:f5:ab:54:57:fa:6a:61:
7b:2b:71:12:cf:d7:4c:2b:d3:1c:1e:e2:86:7e:9b:46:ac:18:
33:63:1b:c1:78:89:e5:16:0b:a6:9a:1e:86:48:c0:db:40:7e:
80:51:07:07:bb:c1:dc:8b:59:85:96:4f:34:19:69:3f:ee:f0:
b9:8b:8e:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:08:01 2025 by rpki-client