Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
File: ChCKKMcHsOXCwubCE31Fh5EUu5I.mft (raw, json)
Hash identifier: bVP90GOhhI20NfWexLrNsb30g4rNFTBWNembySUOObY=
Subject key identifier: EA:31:90:5A:34:AA:7F:61:B4:31:F3:85:77:6E:5F:C2:AA:FE:65:81
Authority key identifier: 0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92
Certificate issuer: /CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92
Certificate serial: 0197499ED509E5FC24CA18748E98046FB8D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
Manifest number: 0776
Signing time: Sat 07 Jun 2025 09:00:35 +0000
Manifest this update: Sat 07 Jun 2025 09:00:35 +0000
Manifest next update: Sun 08 Jun 2025 09:00:35 +0000
Files and hashes: 1: ChCKKMcHsOXCwubCE31Fh5EUu5I.crl (hash: b45lV1CUNdvdROAEVPXjW7u3abvtsSCLoPxtlBxDvzU=)
2: eO8gPZF0Xg3a6oErz3xsis78_yg.roa (hash: ARYdnlTRJg0XCA/7uUE4AwiYMl9F7vHnb8qFPrerwpk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:d5:09:e5:fc:24:ca:18:74:8e:98:04:6f:b8:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92
Validity
Not Before: Jun 7 09:00:35 2025 GMT
Not After : Jun 8 09:00:35 2025 GMT
Subject: CN=ea31905a34aa7f61b431f385776e5fc2aafe6581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6c:d8:3b:00:f1:e9:9a:fa:37:e7:cc:71:a6:
67:be:18:40:c3:66:79:48:35:c1:76:f3:27:a8:01:
06:0d:ab:0a:2b:74:f8:7e:85:45:74:cf:d5:33:05:
aa:a5:f4:10:7a:30:e7:ae:3b:07:01:1b:c9:8d:c9:
55:f1:4c:ca:e8:19:f1:1a:80:02:a0:34:66:52:ad:
54:c1:b4:15:e6:7a:f1:14:a3:ad:48:9b:14:b2:4e:
e3:b1:12:2d:80:d7:32:ff:15:3e:fe:85:b3:10:05:
b3:61:71:d1:7c:21:a0:1e:4d:86:e0:d9:9b:65:25:
06:0a:01:34:f6:a2:97:c4:21:ad:71:fb:9d:3e:f5:
fd:d1:05:9c:2f:7c:83:1f:3a:01:d2:a3:fb:b9:5e:
58:de:ad:da:85:fb:a0:39:3a:9f:5f:49:b9:1c:f7:
84:35:23:6d:86:51:be:bf:5a:60:e4:ab:8d:79:f8:
47:44:cc:7f:aa:6b:9e:9d:aa:fb:94:ca:84:3a:29:
9b:0c:ef:af:5a:8f:6c:cd:fa:d7:95:bf:3c:27:5d:
9a:81:98:15:15:29:69:2d:06:00:b1:42:fa:36:d9:
69:bb:71:72:fb:c1:e1:1f:13:7c:34:7b:3d:ef:71:
b9:fb:0a:0f:a2:37:c9:4f:72:2a:12:ce:a0:95:f7:
4d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:31:90:5A:34:AA:7F:61:B4:31:F3:85:77:6E:5F:C2:AA:FE:65:81
X509v3 Authority Key Identifier:
keyid:0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:55:25:c1:75:ec:8c:d6:39:ad:ea:4a:16:fc:42:32:9b:66:
03:39:c0:9b:88:8f:d1:04:36:e2:68:ad:08:05:da:02:d1:13:
21:29:fa:63:0a:eb:44:1a:89:12:ca:e3:bf:8d:e6:3b:31:80:
39:80:df:6c:5d:ec:3b:eb:cc:89:1d:38:1a:94:7f:2b:9f:39:
94:6f:77:d0:16:84:f8:d0:26:97:c5:80:98:59:c6:04:cb:38:
d8:f2:4a:0e:de:61:21:a2:42:8b:75:fd:b4:a5:33:2c:2d:9b:
e1:2d:57:a3:49:37:80:7b:e6:49:d2:9f:6f:81:e8:54:05:2f:
d4:c7:f2:4c:16:89:1b:e7:6b:83:dc:b3:52:85:4d:0e:3a:11:
ce:9c:77:8d:58:7f:cc:d2:d9:7b:cb:1a:af:28:b4:3d:76:39:
a9:5b:56:f4:13:24:2b:bb:61:bb:b8:09:7f:e2:25:44:fc:8e:
b1:36:72:b5:84:93:ee:cd:11:e5:1f:50:7e:40:f6:79:2c:26:
75:62:4f:59:df:e3:a2:56:db:97:5a:64:4e:80:03:8d:ca:d5:
2d:8f:1f:12:38:98:7f:28:6c:ca:04:04:a2:f7:56:f4:ce:eb:
9e:12:39:64:e6:b3:e5:c0:f6:a9:ab:a7:6b:ba:3c:45:54:7a:
1a:2e:a2:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:27:22 2025 by rpki-client