Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json)
Hash identifier: BakIMBGn1JNAHg+CAav66TJAYgRM8axE+8htNjj4Jjs=
Subject key identifier: B1:50:57:6F:BC:10:67:AC:D2:34:15:D9:DD:88:ED:2A:9C:25:85:29
Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Certificate serial: 01974B1F5AF1349183412A5021724855937B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
Manifest number: 1094
Signing time: Sat 07 Jun 2025 16:00:35 +0000
Manifest this update: Sat 07 Jun 2025 16:00:35 +0000
Manifest next update: Sun 08 Jun 2025 16:00:35 +0000
Files and hashes: 1: 1-W_ixXGYX8sPaJagj-AVwFiwChc.roa (hash: L0D3lIfkN9efhBw5T+b3u9NkdIMxDqZ5UXxZUhgRWOs=)
2: 1wei3P__YsLq8D2DZQdx3r5Se8Q.roa (hash: mJ3sfO2t0ZrVqr8Lh/dS5cWV3uJ23FidlrzCBj85Xpg=)
3: D9OViOUA1-461O4zttxUuu7lHv0.roa (hash: 2itBNaHzhENVRyOefdMh6N1RENcyUMqY/eAvQKNqorQ=)
4: FL9fu1OvmoFGfhkDWCYg6qk3FZw.roa (hash: 4qo1m7CfLoe2e1/s3slGLhDBLmvad/IFz+DUbL4c5ro=)
5: QhTNtcmMP2d8JHj8beOVtwBfn-8.roa (hash: pGtJfsZnHgpcNHsy6MUt5rD0YLB/sQz5xjhWg8xCmoY=)
6: b_UNR9Xj_ycfuOSMA48F_QSRqts.roa (hash: V/FK04zH2Za3Nwu+0PjyuAuPUrWk9vHEnkwAOnyhoAs=)
7: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: Pz1TLkAGPUDO7l3h2L1vzzIIRcGWIbOEmpIigZU5yEE=)
8: mI6CMDbVFOggenhN7vYK1kqjlUM.roa (hash: Ix338GJteDKUBZwQ6uAO2I9vp00YeBcogG5YXz8IPLE=)
9: vUVcdpzXr2JQGsu1xtXoOvW_LHU.roa (hash: 2iN03nQJUllsMqRJ1fP7+P4h4U6MeEk1ERszIuxQ8MY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:5a:f1:34:91:83:41:2a:50:21:72:48:55:93:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Validity
Not Before: Jun 7 16:00:35 2025 GMT
Not After : Jun 8 16:00:35 2025 GMT
Subject: CN=b150576fbc1067acd23415d9dd88ed2a9c258529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0b:b2:ff:1a:b0:a1:ae:df:78:99:62:ad:44:
ae:de:e4:6f:e6:8d:2c:76:28:40:4c:29:52:36:23:
b2:76:b2:e4:19:e8:b0:a8:6b:45:d7:82:28:e6:45:
e8:0a:c5:41:1c:96:48:2a:72:ca:4f:eb:ae:da:45:
58:c1:72:f2:40:c2:91:9e:6c:7e:17:6f:48:c2:bb:
f6:4c:07:93:96:8a:df:dd:18:33:00:7d:78:45:a4:
ee:61:a3:7b:a2:fb:03:35:46:45:c2:75:48:08:82:
77:c9:98:ef:c9:a1:ea:7e:87:b2:30:78:c3:c8:fe:
2f:b1:98:a4:5b:32:5f:fd:c7:87:59:e4:e0:a9:b5:
0c:d1:c8:55:29:56:d6:9b:26:a5:0a:4f:73:42:1b:
c1:20:4b:12:72:42:64:37:ca:98:d2:aa:45:77:9d:
04:14:c8:49:b8:36:83:f0:cc:6e:7b:e7:0e:4f:5c:
8b:e9:8e:d4:85:e0:fc:5f:25:06:2a:e5:cf:67:e7:
40:21:53:aa:bb:3a:0f:04:95:c1:db:26:c7:ea:06:
19:dd:ee:b1:cf:fd:14:9a:98:fa:c6:61:16:11:a2:
e8:40:5f:c8:69:cd:2e:e1:64:5f:4a:16:ef:c9:61:
16:1b:8c:db:ed:bc:1c:95:4b:bf:d6:85:97:a6:0d:
d8:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:50:57:6F:BC:10:67:AC:D2:34:15:D9:DD:88:ED:2A:9C:25:85:29
X509v3 Authority Key Identifier:
keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:ca:0d:30:34:25:30:83:5f:46:52:1b:f9:02:7d:70:7a:2e:
d0:2a:0c:d1:31:43:22:00:e6:45:64:3a:ac:1b:05:a0:0f:5b:
34:bb:d5:7a:66:ea:05:02:19:b7:bd:2d:75:bc:24:e7:49:28:
2c:4b:ef:f2:8a:71:1f:2b:7a:73:f6:d8:70:dc:26:2d:76:a6:
82:12:da:20:6f:67:05:57:56:9d:40:cf:02:35:33:69:70:78:
c3:31:51:cc:4f:e0:85:fd:31:98:40:a6:e6:6b:b3:fa:eb:9e:
da:cb:f3:54:b8:f8:51:ac:81:99:bd:1e:29:f5:49:59:77:5f:
19:51:ec:9a:67:c3:86:b1:bf:cd:77:ef:cb:e8:1a:5c:e4:1f:
e4:7b:2d:69:44:c9:33:47:0c:6c:a9:b2:e6:00:2d:e1:4e:b1:
a3:be:65:45:80:7c:cb:66:ea:6d:c1:98:2c:b0:eb:98:d9:f6:
cf:2a:df:9b:49:91:d9:37:55:b9:24:ae:82:73:f3:50:78:1d:
46:6a:72:26:d3:ab:a4:eb:a8:bd:9b:c2:3c:17:e9:83:c2:32:
c6:7b:ca:15:ac:29:d7:cc:5e:aa:88:41:5e:13:40:74:6a:6f:
51:e5:c3:f9:66:98:90:a2:52:80:9e:98:9d:65:9a:e2:79:de:
b5:a1:a1:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:40:06 2025 by rpki-client