Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: nFWf8h9PewA42+ZDyZ/mHE15cjl3YxBrnvlIaj2CZhs=
Subject key identifier: 0B:C8:7D:14:56:7B:B0:07:93:66:65:8A:B9:2B:93:D9:C3:04:4C:F9
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 019753EB7F62119C4E2B4B81E62F6F9758D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 158C
Signing time: Mon 09 Jun 2025 09:00:31 +0000
Manifest this update: Mon 09 Jun 2025 09:00:31 +0000
Manifest next update: Tue 10 Jun 2025 09:00:31 +0000
Files and hashes: 1: Lx4QL8l0KgaffC4QXEWzVHcEawc.roa (hash: DxG2rV8lArm7XTxrRaRlBv42lE1FblGks/y6Gbm7tWY=)
2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: vopxyt+nXz9l1hiIB1gpZueRfNjj46FNMeon3aK0oI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 09:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:eb:7f:62:11:9c:4e:2b:4b:81:e6:2f:6f:97:58:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Jun 9 09:00:31 2025 GMT
Not After : Jun 10 09:00:31 2025 GMT
Subject: CN=0bc87d14567bb0079366658ab92b93d9c3044cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:89:ef:fe:b0:71:89:33:6b:cc:23:f3:43:ae:
51:b2:0c:af:e4:06:15:a0:08:54:1b:da:95:d4:52:
62:e9:c8:f5:a7:47:90:da:43:2e:19:63:c7:47:29:
29:46:c7:d2:72:1d:75:54:9f:60:4b:2f:26:84:d3:
1a:b0:45:c9:a3:c9:da:2c:22:9f:ce:47:c2:f1:df:
f3:99:01:cb:87:2d:dd:8d:f1:e5:d6:94:d1:b9:19:
5a:4d:d3:1f:16:f8:c9:36:d8:e4:2b:5c:7a:75:8e:
85:f3:77:4f:35:ef:9d:1a:58:dd:2a:56:7a:19:4d:
2f:fe:3d:74:01:ad:9e:c6:a2:ec:c3:2b:10:7a:f5:
bf:8a:1a:5d:6b:c2:af:93:32:94:de:01:14:d4:ff:
03:fc:46:56:db:5e:27:96:91:4c:0d:38:df:a6:98:
a8:99:72:0d:85:6a:90:85:da:cd:47:23:0f:84:8a:
b5:3c:ae:5f:e8:18:d5:27:2c:e0:7f:88:a9:e7:49:
2f:40:84:9c:63:c0:c0:a3:9f:f4:ca:00:c1:fc:98:
44:05:fe:82:c1:27:86:2d:e3:5b:4b:a4:2f:a8:70:
b5:70:f4:47:49:9c:20:99:ee:48:32:f5:a4:b4:1f:
e9:d9:a2:7a:5c:bc:d6:42:fa:20:68:aa:89:37:f0:
88:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C8:7D:14:56:7B:B0:07:93:66:65:8A:B9:2B:93:D9:C3:04:4C:F9
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:e4:71:b2:4f:cc:ff:b9:c8:e8:6f:03:b1:ce:88:08:50:04:
ad:03:23:4e:8d:2a:5f:48:97:39:4b:67:d6:c1:af:eb:01:91:
10:56:6d:69:56:2c:8d:e9:1f:d5:89:c8:4b:94:d9:70:99:76:
65:d1:5f:35:9e:1f:81:fc:9a:a8:21:f6:cb:d9:d3:0f:24:56:
74:0a:e5:17:34:2a:75:51:40:fc:a4:00:d1:76:7a:82:06:4e:
4e:0a:f7:9e:d9:f0:f4:6e:55:32:6e:7e:10:1c:3d:80:7d:d6:
d0:7d:ef:f8:69:2e:6e:37:42:33:ac:40:52:12:16:e6:fb:9e:
d8:25:e8:b2:da:42:a9:20:e8:e8:b2:86:65:a2:5f:aa:49:d4:
09:57:f4:eb:d4:54:d1:58:94:ef:f8:a0:b2:d5:a2:4a:ec:ec:
93:23:35:44:3b:2c:3c:f3:a7:47:63:44:e3:6e:33:94:67:32:
51:fe:43:ea:76:75:2a:37:56:72:16:e9:ac:8b:ab:f6:ab:6a:
e7:7a:ba:b3:3d:89:ec:06:7a:48:b0:e2:7d:4b:8b:65:69:c7:
de:39:96:ed:e6:55:ef:bd:28:18:ce:69:35:23:c6:27:de:d3:
59:8c:ca:65:17:3c:1d:3d:99:e7:71:b5:03:a9:ab:5a:57:bc:
8f:a1:4d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 18:34:10 2025 by rpki-client