Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
File: kR2gx6mUBcRrqthMudk-g0WZyOE.mft (raw, json)
Hash identifier: 0Ph3vgIqQu8dgJiZBeglHxusv+YOrn4hx5gTQkbPsNY=
Subject key identifier: 46:75:43:46:EE:8D:96:4D:35:29:21:9D:C2:27:12:D3:E4:4E:51:30
Authority key identifier: 91:1D:A0:C7:A9:94:05:C4:6B:AA:D8:4C:B9:D9:3E:83:45:99:C8:E1
Certificate issuer: /CN=911da0c7a99405c46baad84cb9d93e834599c8e1
Certificate serial: 01974967C2E0DF1D691E588724847AFDA380
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 08:00:26 +0000
Manifest this update: Sat 07 Jun 2025 08:00:26 +0000
Manifest next update: Sun 08 Jun 2025 08:00:26 +0000
Files and hashes: 1: EpBy5lEF1BDLVRWSQ7QWoN5zbUU.roa (hash: 1y3tSjFaZERbPwiKrhlP5/eJ5GlotVuhhvMAWtoaIrk=)
2: kR2gx6mUBcRrqthMudk-g0WZyOE.crl (hash: v8G+XuSq6Eoma8sHFAkVVB9NqM6tbr8PZ5W7B9ik83k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:c2:e0:df:1d:69:1e:58:87:24:84:7a:fd:a3:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=911da0c7a99405c46baad84cb9d93e834599c8e1
Validity
Not Before: Jun 7 08:00:26 2025 GMT
Not After : Jun 8 08:00:26 2025 GMT
Subject: CN=46754346ee8d964d3529219dc22712d3e44e5130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c0:71:7f:c4:13:c3:04:bf:43:dc:b4:a3:3a:
68:e2:ff:48:33:20:5b:b3:47:e6:59:f0:13:22:b6:
c3:2b:d1:9b:1f:a9:1b:d6:1f:cd:9f:1a:73:1c:3d:
a3:84:bd:85:db:01:21:42:d8:d2:21:44:cb:3c:3a:
c1:66:4b:79:af:f4:c6:3a:46:83:40:ba:1a:fd:74:
41:3b:aa:c9:c5:af:e3:f1:01:e9:ec:f6:6e:14:66:
9b:e8:d5:86:d7:0e:e3:db:81:f4:30:8f:a8:95:b0:
32:bb:58:8e:b5:18:a2:75:cb:47:a5:fe:fe:7c:5d:
06:6d:19:28:af:41:45:38:78:52:f2:5e:0a:ff:60:
4c:96:36:d4:f2:a5:fc:0c:7a:5f:e5:6e:5e:24:19:
37:21:d2:01:4e:02:aa:60:4f:d6:7c:86:57:bb:b4:
50:ce:ce:49:e0:fd:61:c7:fe:16:a7:46:03:c7:ca:
5a:d6:ed:94:d2:53:18:9e:62:7a:49:cc:44:15:40:
e3:75:be:09:9f:4c:9c:50:36:e0:17:af:16:dc:a1:
f2:aa:ed:78:8e:ba:83:7c:c9:f2:9d:cf:f4:3d:fa:
a2:0a:3f:97:05:34:77:5d:3e:18:80:86:04:31:65:
af:cd:84:d8:c0:db:76:89:8c:6a:2a:20:14:01:48:
3c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:75:43:46:EE:8D:96:4D:35:29:21:9D:C2:27:12:D3:E4:4E:51:30
X509v3 Authority Key Identifier:
keyid:91:1D:A0:C7:A9:94:05:C4:6B:AA:D8:4C:B9:D9:3E:83:45:99:C8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:59:92:22:19:0b:fb:41:dd:e8:c4:34:0c:d8:2f:76:12:c1:
67:45:96:5b:63:c8:1b:02:9a:fc:e0:23:f6:38:ff:27:90:aa:
72:dc:bd:db:d1:3b:e2:75:67:62:77:15:02:48:f8:35:72:1f:
c1:79:f1:4f:88:93:f3:7d:ca:14:bf:58:2e:e6:76:f7:60:c8:
40:19:50:bf:e7:05:bc:54:21:7f:50:7c:b1:7c:f9:64:a6:c0:
ac:fa:c1:94:a0:89:f3:6b:aa:cd:91:79:d4:a2:ef:f3:76:2a:
2a:17:64:63:94:b2:1f:16:8c:36:da:9a:69:30:46:85:5b:71:
1a:77:76:34:09:d7:e0:f7:e0:f8:2e:5b:49:0d:8f:15:d8:fe:
88:a3:e8:eb:af:f8:f5:54:ad:61:af:5b:b4:74:39:b6:a1:6a:
5d:18:33:6b:97:56:53:e2:a3:41:d2:c7:59:02:35:aa:1a:90:
b1:0e:37:09:fb:28:f1:fc:c0:9d:c4:3e:8b:e0:24:38:f4:0b:
e6:80:1e:05:f3:b7:5b:2f:5b:4f:6c:29:c0:cc:a0:5c:41:86:
fc:a4:80:62:bd:fa:69:c6:31:00:05:66:59:90:0f:23:c7:6b:
94:f4:14:6b:63:c0:b1:02:11:b7:98:fc:e4:32:71:47:53:71:
98:c3:56:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:45:21 2025 by rpki-client