Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
File: kYMWq06hPrtUVgwaZwQtR-lm2CM.mft (raw, json)
Hash identifier: wVfkexVZSTM3tR9IYbmMmz8fyUXAIJ9E2+ZLlsIW9d0=
Subject key identifier: F4:2E:E6:B3:4D:4F:AD:A9:DF:02:62:B1:93:CE:B7:D7:A9:23:97:59
Authority key identifier: 91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23
Certificate issuer: /CN=918316ab4ea13ebb54560c1a67042d47e966d823
Certificate serial: 01975FB8EE6AFA4D8E57B7190965FCA1FC87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
Manifest number: 158B
Signing time: Wed 11 Jun 2025 16:00:44 +0000
Manifest this update: Wed 11 Jun 2025 16:00:44 +0000
Manifest next update: Thu 12 Jun 2025 16:00:44 +0000
Files and hashes: 1: 1pItkF34I0T0XrYWSJRD7pj_ja0.roa (hash: xX/gcWJfZ1minzry/xWMxIOizMCvErT51ZVCYZljegM=)
2: kYMWq06hPrtUVgwaZwQtR-lm2CM.crl (hash: ImI6cUdgiFTuBZM/YgaJwH0TyV/ziUEkIElezvSQqnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:b8:ee:6a:fa:4d:8e:57:b7:19:09:65:fc:a1:fc:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918316ab4ea13ebb54560c1a67042d47e966d823
Validity
Not Before: Jun 11 16:00:44 2025 GMT
Not After : Jun 12 16:00:44 2025 GMT
Subject: CN=f42ee6b34d4fada9df0262b193ceb7d7a9239759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:de:a9:0a:c9:f3:cb:d9:ef:da:24:86:80:ca:
a1:1d:5b:d0:ee:90:00:ce:fe:5a:f8:92:30:b5:a7:
4e:c0:d8:e0:1f:01:0e:0b:e2:e4:9c:15:49:f3:e9:
52:5d:f4:d4:41:be:dd:e0:dd:74:db:4f:56:6c:17:
3b:c8:cb:42:44:24:1e:dc:5e:9d:f9:a7:3b:c9:c3:
31:ea:ad:16:d8:67:0a:1c:07:42:77:fc:e4:4f:b3:
86:bd:f9:4a:62:07:9e:3f:87:de:57:07:86:9e:ba:
76:8d:e0:5b:ee:3b:e1:d6:4a:cf:d7:15:9d:b7:78:
30:42:6e:49:8c:10:66:5a:ff:b7:2e:ea:28:77:46:
4f:44:e7:e2:a1:8e:f8:a2:f2:c5:73:c3:3d:f9:1f:
60:a2:08:18:b4:d4:97:65:b4:e2:40:6f:7f:25:7a:
37:63:f5:d6:67:54:82:65:0e:f5:c4:4b:37:10:dd:
f5:fd:4c:e5:30:9d:f6:16:a2:8b:58:18:18:b2:7d:
1f:d0:e7:89:fb:b1:3a:40:9d:8e:08:f1:bd:fa:1e:
45:ad:b3:95:3b:fd:52:7d:bc:05:dc:bd:da:ec:c1:
2e:9b:2f:f7:58:2a:bc:8e:d6:30:2d:fa:6b:e8:27:
a3:04:22:c6:b2:07:d0:88:74:7a:03:05:52:30:e1:
ff:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:2E:E6:B3:4D:4F:AD:A9:DF:02:62:B1:93:CE:B7:D7:A9:23:97:59
X509v3 Authority Key Identifier:
keyid:91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:9a:17:1b:da:6d:6c:e5:90:d5:a1:a0:af:f5:6d:7c:5f:02:
6e:78:d5:6d:74:07:64:2e:a0:34:12:01:ae:03:57:5a:24:c6:
fb:f6:5f:51:11:41:94:f3:e0:02:ad:e7:01:76:a3:36:31:53:
05:8f:79:41:b0:74:8f:81:c8:e2:b6:9e:0a:18:5c:dd:44:df:
1b:ba:61:bc:09:56:b7:c4:70:11:72:8b:51:af:40:5c:e9:ae:
7b:20:d8:1a:f9:dc:3e:fa:0a:05:35:8d:b2:31:29:06:6a:47:
b1:89:c3:27:f3:fe:c1:27:f2:d2:f8:96:67:69:ef:6b:06:9c:
26:7d:62:9c:cc:51:e9:40:09:a2:79:71:df:cf:1c:0e:72:b5:
1c:bc:1f:42:c0:c0:95:74:22:a8:9f:00:23:ad:3a:61:47:d3:
9c:a3:9b:77:32:52:3f:3d:64:1f:57:52:b7:c6:c0:e9:37:d1:
8d:6f:5c:98:4f:e6:b0:00:d4:91:ba:48:0f:85:14:b4:2d:24:
f3:6d:b9:0f:01:d8:66:b4:d7:d8:78:74:fb:51:51:ee:3e:3c:
0d:5f:d5:0d:f6:63:65:5c:76:03:5d:7a:1e:08:0f:3b:1b:da:
d6:02:05:dc:18:24:b1:e1:78:0c:62:3e:fa:dd:95:0e:79:44:
16:2d:f4:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:41:26 2025 by rpki-client