Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
File: kNdTolR-A6Sw0vkccOnOTkRoBBg.mft (raw, json)
Hash identifier: XO7piR4HiFES+UjWuuQaMWmEOvTkYVPmvzUaoFWbLSM=
Subject key identifier: 94:1B:FA:19:74:BE:00:8D:BA:8B:84:08:AF:BA:A1:41:00:21:76:67
Authority key identifier: 90:D7:53:A2:54:7E:03:A4:B0:D2:F9:1C:70:E9:CE:4E:44:68:04:18
Certificate issuer: /CN=90d753a2547e03a4b0d2f91c70e9ce4e44680418
Certificate serial: 019749685444C7BBC01B460978D0424EE303
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
Manifest number: 0A20
Signing time: Sat 07 Jun 2025 08:01:03 +0000
Manifest this update: Sat 07 Jun 2025 08:01:03 +0000
Manifest next update: Sun 08 Jun 2025 08:01:03 +0000
Files and hashes: 1: g5z8NV4dmlaKd11s7v3mxc0KYqU.roa (hash: bnZ9DFLSZGC/zi7MlcnpGi6LDIICQO79p3wjfCQfT+E=)
2: kNdTolR-A6Sw0vkccOnOTkRoBBg.crl (hash: 93k2C8c4AjIC4uCPuSpa8lWpsxI5nijwaDd73RImsK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:54:44:c7:bb:c0:1b:46:09:78:d0:42:4e:e3:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d753a2547e03a4b0d2f91c70e9ce4e44680418
Validity
Not Before: Jun 7 08:01:03 2025 GMT
Not After : Jun 8 08:01:03 2025 GMT
Subject: CN=941bfa1974be008dba8b8408afbaa14100217667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a5:81:1b:6f:2f:2f:9d:bb:9f:cd:3d:e8:f6:
0f:66:57:c2:c0:ac:e4:79:40:46:f1:82:0c:4b:8b:
21:b9:81:b7:02:44:b2:6b:c3:5a:8e:78:1d:a1:57:
c6:80:ca:35:e8:d3:15:da:3d:a2:53:4b:58:a3:d4:
27:b9:72:29:ae:48:0f:70:70:e7:ac:f5:95:ee:da:
50:58:ec:0c:e8:45:7b:2e:37:6d:63:74:20:38:de:
b2:51:f6:56:04:be:71:3d:0c:21:ea:b5:05:f6:05:
bd:18:77:58:02:6f:a6:c4:59:2f:d2:ee:fb:32:d1:
fb:76:47:4d:ac:19:2d:d0:36:aa:bc:61:c5:49:e3:
f0:c4:aa:3c:ba:07:29:72:be:0f:5f:6e:74:99:a8:
8e:be:1c:3e:f4:27:2e:d0:58:af:ae:7f:66:c8:a6:
49:c9:1d:1c:b4:a5:7a:95:43:bd:de:6e:12:72:da:
9d:64:13:ee:a7:1a:01:bc:fd:68:1a:82:e2:45:8b:
6d:36:09:a5:5b:8d:35:ec:f2:2d:67:5f:3a:29:71:
2f:61:8d:18:9e:d4:55:e2:4e:9b:7b:33:ae:fa:08:
c2:99:d8:48:97:3a:6c:63:53:8c:e2:ca:a6:5e:c1:
7f:93:c4:ae:d6:79:55:3e:b0:48:0a:a2:7e:cd:fa:
4e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1B:FA:19:74:BE:00:8D:BA:8B:84:08:AF:BA:A1:41:00:21:76:67
X509v3 Authority Key Identifier:
keyid:90:D7:53:A2:54:7E:03:A4:B0:D2:F9:1C:70:E9:CE:4E:44:68:04:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:0a:57:d6:07:15:6c:c0:ae:38:5e:b9:51:ee:b2:9d:89:08:
2d:17:ae:16:6f:9f:11:11:00:74:00:f1:65:20:0a:bd:29:cf:
2e:1f:55:8b:70:99:6f:06:d8:15:8f:52:fa:bc:87:8c:78:67:
49:15:ca:bd:c8:8e:55:57:23:c1:13:0a:fc:53:1e:07:45:f6:
17:61:73:b6:7b:93:54:4d:05:2e:92:2e:c0:e7:3f:61:b2:ae:
2e:f3:cf:eb:c5:80:26:0e:0c:07:b9:8f:b1:da:c3:01:97:41:
18:c5:d2:00:70:6d:c5:b2:d1:af:59:18:4a:31:79:ac:05:4c:
8b:d5:86:f7:21:51:c3:76:fb:fc:4f:47:88:fe:37:14:85:dd:
e9:e9:6d:70:65:ec:b0:46:3a:c6:a8:d1:b1:93:38:19:8a:e3:
3b:e0:0c:9b:f0:49:28:db:41:4f:de:7d:66:96:2f:a3:07:a8:
ec:bc:30:22:aa:e2:6d:5b:85:33:71:2b:ed:8f:15:86:64:e6:
e9:57:36:17:06:21:e1:e9:f3:c8:ca:02:82:29:8f:72:4d:14:
a9:73:6c:7c:f1:8e:6c:e6:23:a8:c7:72:09:c0:5c:07:51:eb:
5a:99:10:e5:57:17:93:77:97:09:3b:5c:d2:9f:e0:d7:4e:07:
58:6d:74:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:34:31 2025 by rpki-client