Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
File: k0S0h58Z7nGaNRRjABcm9obWWe8.mft (raw, json)
Hash identifier: F/q6hO4F4PIXa/eMS8ZfjKa2KF/6/v9S106HMb5o9Qc=
Subject key identifier: BA:2A:CF:56:B5:1E:F6:B7:0A:8A:1B:DA:F5:31:A9:4D:69:FF:27:7B
Authority key identifier: 93:44:B4:87:9F:19:EE:71:9A:35:14:63:00:17:26:F6:86:D6:59:EF
Certificate issuer: /CN=9344b4879f19ee719a351463001726f686d659ef
Certificate serial: 0197470C3A40BC2CB3F29ACE47DC3B29FD08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 21:01:13 +0000
Manifest this update: Fri 06 Jun 2025 21:01:13 +0000
Manifest next update: Sat 07 Jun 2025 21:01:13 +0000
Files and hashes: 1: Sp6LS-Lr7aNgCkiG-x4vIYL0m7M.roa (hash: 4a/RW16MYDyNLA++zl3ynSiVWGswaNsaMa2lua4RkWg=)
2: k0S0h58Z7nGaNRRjABcm9obWWe8.crl (hash: bZJk9AbYIBb+kFkERbkslWf88SZ6NmJPge5TK+M+YVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0c:3a:40:bc:2c:b3:f2:9a:ce:47:dc:3b:29:fd:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9344b4879f19ee719a351463001726f686d659ef
Validity
Not Before: Jun 6 21:01:13 2025 GMT
Not After : Jun 7 21:01:13 2025 GMT
Subject: CN=ba2acf56b51ef6b70a8a1bdaf531a94d69ff277b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:66:b1:da:2f:61:ae:f1:5d:32:06:97:15:
2e:06:5c:1f:85:c3:9b:13:b7:70:f9:d2:1f:4c:d9:
99:1e:6b:8c:82:5d:37:55:af:83:f8:90:a9:bf:64:
1e:63:2a:89:79:09:f1:e4:63:91:ff:7c:bf:be:f7:
46:55:9f:1a:1e:79:87:8a:71:7a:bf:36:b3:eb:6b:
a1:05:0c:c7:02:63:4d:22:bc:57:e3:5b:20:af:fc:
3f:fc:fd:11:a5:2f:e0:5a:3e:f2:41:13:b1:ac:ff:
50:42:47:18:14:d3:2d:fb:f9:70:f7:7f:78:0c:74:
2e:a9:4d:6d:eb:26:14:0f:66:da:8f:f6:7f:d5:08:
16:fa:0b:fb:6f:66:56:b9:21:b5:12:85:0d:85:0d:
de:bd:31:17:67:9a:63:8b:92:3c:0f:63:aa:c7:58:
6e:2a:7b:a9:5c:87:23:e7:c1:99:fa:95:c3:cc:4c:
9b:2f:ca:a7:12:19:fe:ee:8d:49:bc:c1:45:e9:89:
db:2f:c1:0f:e0:2f:4e:2e:f1:14:7f:a1:27:b9:ca:
ec:31:08:67:2c:f1:a1:07:1a:1d:c2:11:a0:26:01:
73:30:cc:81:8c:82:a6:7e:4d:58:1a:96:62:54:d6:
49:5f:2a:d7:56:c5:a8:88:00:ff:a3:d0:ad:31:8f:
8c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:2A:CF:56:B5:1E:F6:B7:0A:8A:1B:DA:F5:31:A9:4D:69:FF:27:7B
X509v3 Authority Key Identifier:
keyid:93:44:B4:87:9F:19:EE:71:9A:35:14:63:00:17:26:F6:86:D6:59:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:c8:1d:e4:c0:29:cb:44:19:0e:3b:e4:ef:2f:77:0d:e4:b8:
b2:d2:1a:ba:a4:df:a6:f6:26:2b:47:95:88:0a:f4:47:c7:e0:
8a:99:30:0e:53:17:4e:a8:d4:86:af:b6:29:0d:d5:0e:c7:85:
6b:b8:22:03:55:ff:3b:0a:0d:32:d8:59:81:80:f9:f0:ec:91:
24:5b:64:23:58:d5:2e:63:76:c5:b5:09:73:7a:24:d9:ed:6f:
9d:be:f7:81:f5:93:c5:e0:8a:e1:8c:46:0b:dd:81:c3:5a:3c:
4e:9f:65:49:17:8b:32:ab:47:b5:e1:e1:2f:c9:07:a6:d8:98:
cd:45:8c:7b:69:c6:bb:41:fb:9b:c8:94:df:64:a2:cc:b0:14:
b8:1d:8b:da:8d:85:58:49:79:56:8c:a9:59:00:ab:45:4d:ee:
9e:cb:04:45:d2:1e:41:65:7f:c9:c3:aa:74:b6:3b:55:6c:d8:
df:c1:59:c7:d5:c8:44:56:54:09:c1:cc:13:d8:6c:cb:39:df:
10:6b:8c:d7:71:5d:ba:c5:8f:ba:fc:c5:9d:3c:49:cb:21:1c:
2f:c3:da:36:b8:de:4c:07:3d:d3:d1:7f:87:ff:5a:ee:00:7a:
cc:0a:1b:5f:3f:0d:2b:5e:39:c1:8f:e4:7f:a4:ef:dc:06:d5:
fd:18:4f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:26:24 2025 by rpki-client