Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 8khv8UJn20/cjyg7eCW2ggMIPR1EhjLjuoK06NpQZ1w=
Subject key identifier: DC:09:9F:D8:C2:58:35:B4:49:69:58:AE:09:4E:5A:62:26:F4:34:EF
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 01977941A2A4E964D802E27B43D2D8885164
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1595
Signing time: Mon 16 Jun 2025 15:00:34 +0000
Manifest this update: Mon 16 Jun 2025 15:00:34 +0000
Manifest next update: Tue 17 Jun 2025 15:00:34 +0000
Files and hashes: 1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: JU4kVb8C0Bwr6U5FIbubB1NO0P659/Dr0IhmXZM3Pt0=)
2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 14:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:41:a2:a4:e9:64:d8:02:e2:7b:43:d2:d8:88:51:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 16 15:00:34 2025 GMT
Not After : Jun 17 15:00:34 2025 GMT
Subject: CN=dc099fd8c25835b4496958ae094e5a6226f434ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:83:0f:c8:43:e0:30:9f:77:2e:ad:1f:c3:26:
03:53:cd:82:d7:71:1e:e5:90:2a:9b:2b:60:c7:c9:
9e:e4:1d:3a:3f:ed:9e:b0:e0:82:f2:72:bf:70:c5:
2d:25:88:67:4c:85:13:d6:f9:8c:b4:e4:b1:dd:7b:
ae:c6:32:7a:45:de:f2:33:55:2d:1b:42:ef:3a:42:
51:af:b0:f0:18:8e:23:ad:4d:a8:dd:6a:17:cd:b0:
a3:09:85:ee:4b:c2:f6:e6:82:ee:c3:0a:17:30:a6:
f5:45:4d:54:e0:a1:6f:e8:88:81:e1:07:d8:3d:0f:
c9:d4:2a:59:68:81:b3:af:41:36:63:eb:7f:17:46:
4f:d9:db:cf:0f:e6:39:db:d5:8a:10:16:f8:40:23:
72:ec:7d:c0:7f:7b:88:6f:22:40:af:83:26:18:37:
36:a5:a6:ff:66:aa:69:26:ae:d2:02:e9:5e:08:8e:
34:66:3f:c5:3c:fe:c0:a2:10:60:4d:7f:3a:d3:ae:
fd:db:0b:0c:74:55:8f:a1:28:c4:eb:fe:e9:32:61:
b6:a4:9c:3a:97:92:92:e0:0e:30:1a:88:48:86:26:
44:98:8a:62:a3:60:92:4a:07:be:5e:41:5c:77:c5:
82:de:2b:7d:27:1f:c0:48:c2:f2:42:0b:b3:d9:18:
77:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:09:9F:D8:C2:58:35:B4:49:69:58:AE:09:4E:5A:62:26:F4:34:EF
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:55:24:9d:d3:c4:f8:41:3c:ad:44:03:22:2f:a9:27:a8:05:
ad:a9:3a:39:8e:96:79:b3:e3:8b:98:d1:6d:b1:7e:be:e7:a8:
56:bb:47:24:6b:1c:36:6d:41:d4:01:dd:51:0f:70:b7:10:4d:
af:fe:e8:fe:c2:8c:12:7b:23:f0:a2:f9:d1:68:96:26:1e:61:
18:55:ba:28:1a:33:fb:0d:19:1b:31:09:d6:67:0c:84:d7:55:
a1:5f:b5:48:48:0e:38:84:1c:98:1c:8d:f3:77:41:62:06:91:
cd:96:84:cb:6a:95:54:2a:f4:5d:74:41:6e:7a:5e:2d:87:a6:
e7:29:a0:c3:cd:3c:99:e9:c5:d8:05:f1:92:d7:2f:8e:d3:32:
c1:0c:df:52:9f:c1:3b:2c:41:cb:67:96:31:30:4e:8c:cc:9e:
79:5f:38:ea:35:79:bd:17:f2:c4:c8:8e:61:d9:78:b9:a9:97:
ee:c0:ca:91:f1:20:5d:45:bc:08:90:55:ac:80:ca:f9:74:0b:
a2:8b:66:e0:3f:7c:6f:aa:b1:13:5e:f7:83:e3:06:e0:23:25:
af:d2:3e:ca:85:10:65:3f:46:89:f4:b7:2d:3d:fc:fb:a5:ae:
a5:fc:37:7b:61:94:1c:f7:56:b8:a5:1f:00:95:a4:64:69:d7:
cc:9a:5d:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 22:17:07 2025 by rpki-client