Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: crTezPIfa31oWMWjnpWs3mjyHNOWMZ9XyXGhWV0CILg=
Subject key identifier: 99:37:26:73:D2:C2:2A:16:0B:CD:B9:79:78:35:A1:40:1E:6A:0D:79
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 01975D93988FF2D35988FE1BD34DCB1DFDB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 1591
Signing time: Wed 11 Jun 2025 06:00:43 +0000
Manifest this update: Wed 11 Jun 2025 06:00:43 +0000
Manifest next update: Thu 12 Jun 2025 06:00:43 +0000
Files and hashes: 1: Lx4QL8l0KgaffC4QXEWzVHcEawc.roa (hash: DxG2rV8lArm7XTxrRaRlBv42lE1FblGks/y6Gbm7tWY=)
2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: 49wdh8qKlyK8huRgcSrw9ZimXfvxpua1thTne4xdQFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:93:98:8f:f2:d3:59:88:fe:1b:d3:4d:cb:1d:fd:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Jun 11 06:00:43 2025 GMT
Not After : Jun 12 06:00:43 2025 GMT
Subject: CN=99372673d2c22a160bcdb9797835a1401e6a0d79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c5:35:90:eb:7f:7a:06:38:14:3b:21:61:00:
aa:ed:c2:da:78:2d:86:10:d5:22:74:9a:2b:58:69:
83:b0:ba:ca:e9:9f:92:eb:eb:ee:8a:da:90:cb:b1:
be:15:56:d6:af:4a:4f:20:d0:c1:ad:95:4f:8d:ab:
90:2f:60:70:47:a8:ff:19:27:cb:de:52:08:db:24:
26:c0:f8:7e:6b:c1:3d:62:20:c6:77:e3:12:1b:2f:
7c:32:80:8e:53:b3:3f:fb:fb:aa:ec:96:0b:0c:02:
a3:e5:0c:b2:44:df:d2:18:98:88:48:4f:d4:f3:e5:
df:89:c0:87:4e:1e:c6:6e:60:f4:5e:41:83:b8:b9:
04:78:a0:46:99:50:ee:41:e9:ac:f1:fc:53:97:f2:
70:79:d3:7d:5c:cb:c2:b7:dd:80:2e:c3:87:bd:47:
4e:e9:e8:22:13:fd:75:40:86:eb:d6:3f:b9:2e:bd:
84:78:67:ee:98:8e:d6:b2:33:6c:cb:fc:cc:fc:bd:
0c:2d:8d:1e:17:6e:05:e9:9e:ca:93:28:58:e7:d6:
b3:83:ea:27:57:0d:c8:2b:7e:a0:37:00:f0:12:fc:
34:fb:97:76:75:4d:3e:82:95:fc:45:73:c1:16:da:
08:23:eb:b5:24:bd:64:e5:5e:13:d8:bd:d9:20:0d:
a7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:37:26:73:D2:C2:2A:16:0B:CD:B9:79:78:35:A1:40:1E:6A:0D:79
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:10:f7:b6:ea:5d:7b:28:65:d8:17:52:73:b8:9e:90:e3:b9:
86:bb:03:f7:7f:96:2c:60:e0:2b:c3:18:53:1d:da:8d:96:73:
6b:15:5a:8a:f6:d5:aa:69:b5:00:a8:b0:2f:8c:3e:e8:b0:51:
f0:d1:4c:12:64:ce:74:94:a0:f2:a1:5a:64:1d:21:52:f0:8b:
b8:bb:75:b6:a2:ac:91:3c:df:c5:e3:93:0e:78:69:e9:72:b2:
3b:e6:36:c4:fc:9e:46:3a:b0:4e:93:f9:e7:22:f3:04:9c:f4:
fd:de:b8:45:0a:a9:c7:a9:b1:56:1a:7f:7c:02:cc:d4:a2:e3:
1e:4b:f1:f4:4e:24:a8:83:e7:ba:e8:57:5e:be:10:16:c0:d3:
9e:9b:3c:c8:aa:ea:6b:e3:89:40:fc:fe:d2:cf:d8:d3:1f:89:
76:dd:96:71:8e:2b:ae:0b:b1:c8:6e:ee:4d:95:0f:57:f1:6e:
0b:a3:5c:13:4d:9f:59:3b:6c:b4:17:56:cd:58:29:5e:f9:36:
ee:13:c5:39:92:d5:61:d7:d5:de:99:56:eb:5e:0d:8d:de:7e:
17:75:5a:49:28:08:42:c5:b2:c5:42:4e:b8:42:0d:8b:b5:b7:
a1:c0:f7:2a:99:73:7e:cf:34:25:56:79:81:e3:db:9a:c8:29:
0e:8f:06:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 09:46:21 2025 by rpki-client