Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
File: klA6rxJq980DHKw84eOYwXS4LgI.mft (raw, json)
Hash identifier: JyhDYP2ibxC5mjDqA7FXfjFjxEF1IYC8eVVMRIvD4GU=
Subject key identifier: 85:03:06:AA:6B:1B:E4:82:83:C5:E7:A8:AD:DC:CA:0E:4E:BB:B1:68
Authority key identifier: 92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02
Certificate issuer: /CN=92503aaf126af7cd031cac3ce1e398c174b82e02
Certificate serial: 019751C64101B3B26FC55CD002D08AE9AE52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
Manifest number: 0CE4
Signing time: Sun 08 Jun 2025 23:00:36 +0000
Manifest this update: Sun 08 Jun 2025 23:00:36 +0000
Manifest next update: Mon 09 Jun 2025 23:00:36 +0000
Files and hashes: 1: LyKlqkZe1vL0FqTF3iiSvFK7hTQ.roa (hash: 2Vj99SsHB7IFNM1FIg40rxpKy12rqtdylkU9a0vtpMc=)
2: klA6rxJq980DHKw84eOYwXS4LgI.crl (hash: AH2rHHh6YpcCvtVlyMVSmhjoghsd4wtmY20a2J75Rmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:c6:41:01:b3:b2:6f:c5:5c:d0:02:d0:8a:e9:ae:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92503aaf126af7cd031cac3ce1e398c174b82e02
Validity
Not Before: Jun 8 23:00:36 2025 GMT
Not After : Jun 9 23:00:36 2025 GMT
Subject: CN=850306aa6b1be48283c5e7a8addcca0e4ebbb168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c3:8e:8c:f8:82:a6:f9:03:1b:44:f3:38:09:
e4:83:f0:89:51:fb:e3:5f:5b:6a:b3:1e:30:0a:c4:
4a:f0:8d:bb:3f:22:95:50:b2:83:4d:e4:64:fc:f1:
36:75:f0:32:d0:f4:c9:6c:01:81:fd:cc:1e:d4:3d:
fd:ea:b7:46:16:bb:b0:8d:cd:f6:d9:09:b1:97:22:
92:80:8a:b9:a6:cc:25:ca:a3:30:fb:c5:93:dc:e0:
46:3b:e8:52:a5:e5:08:ff:36:86:dc:2e:7f:95:97:
0f:a9:7f:49:54:1c:99:a9:3e:e1:45:d1:63:47:67:
a6:c3:fd:3b:f6:4d:b6:57:b7:66:f6:05:5a:23:a1:
ab:99:e3:05:a7:7d:02:f9:d2:dd:cb:cb:64:52:7e:
f4:26:97:50:58:d7:da:0b:15:93:32:8f:ef:52:a2:
14:1d:99:e5:ab:60:58:a0:61:d7:b6:bc:4d:10:7c:
43:02:59:96:2e:bb:3a:0f:d9:56:89:c8:e0:96:b3:
70:2a:7f:f5:24:a7:02:ad:9d:42:1a:48:16:72:80:
cf:f6:c8:c0:8d:85:df:7a:c2:0f:0d:c0:d8:c9:df:
85:01:78:08:56:62:f8:08:f8:b5:3d:22:31:a6:0e:
69:e2:0e:ec:90:d5:d7:db:61:f9:49:74:72:54:d1:
9a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:03:06:AA:6B:1B:E4:82:83:C5:E7:A8:AD:DC:CA:0E:4E:BB:B1:68
X509v3 Authority Key Identifier:
keyid:92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:9f:af:08:a7:88:72:0d:61:05:74:9e:45:32:65:af:cb:5b:
47:ed:8d:eb:ab:d9:9b:c2:d8:fb:cf:c0:ef:11:82:c2:7c:02:
2d:38:bf:a9:03:34:61:b7:a4:91:52:c3:7f:02:76:7e:03:1f:
d4:cc:af:2d:3c:51:70:0f:49:22:82:df:a7:f8:bc:bb:1a:30:
0e:dd:8f:d9:d7:06:db:60:42:3b:7e:16:be:33:61:ad:8d:89:
29:7f:26:2f:ac:e5:14:23:9b:5b:a0:61:fa:f0:3a:31:7e:57:
c8:45:51:6c:0b:89:c7:76:d7:c4:f9:de:b7:a8:a7:ce:0a:7e:
99:06:d0:af:ed:97:9e:1d:70:1b:09:9c:c5:e2:fa:47:ec:bc:
fc:aa:bc:90:2b:3e:e8:fa:bc:b4:98:c0:da:ab:27:ea:5c:51:
5a:e5:77:96:b0:7a:21:20:8b:5e:f3:0d:0d:3a:03:b9:5f:85:
ee:ea:9c:f2:33:6e:ed:e9:5b:6e:6a:a0:07:6b:e9:d6:57:00:
79:e7:7b:6e:e8:dd:2b:de:9b:83:bf:31:b5:0e:32:e3:17:0f:
02:b7:32:3e:51:7c:20:6b:55:f1:09:95:bd:46:0a:88:6f:ed:
bb:85:1f:ab:6b:d8:39:22:cc:26:bb:40:ee:cc:bb:2e:43:19:
ab:e9:34:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 10:07:38 2025 by rpki-client