
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 46ZvbohjYZ+ATLYvpd+4RihO4Iu7St1Ee11AiNx0wrY=
Subject key identifier: 0E:1B:73:3E:3A:1B:3A:C8:35:A3:EC:0E:AD:56:2D:3B:A5:88:59:C7
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019769CE74A25FDC340F9FBCFAFA8B0CD5F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 158D
Signing time: Fri 13 Jun 2025 15:00:27 +0000
Manifest this update: Fri 13 Jun 2025 15:00:27 +0000
Manifest next update: Sat 14 Jun 2025 15:00:27 +0000
Files and hashes: 1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: AJc3oK3DdGwYjhqIzY3cGeCTZfgEUSPvNiIpvorCPa8=)
2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:74:a2:5f:dc:34:0f:9f:bc:fa:fa:8b:0c:d5:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 13 15:00:27 2025 GMT
Not After : Jun 14 15:00:27 2025 GMT
Subject: CN=0e1b733e3a1b3ac835a3ec0ead562d3ba58859c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:52:66:e9:14:4c:a8:db:90:51:65:c9:70:0e:
0e:c8:78:01:ed:e7:b9:55:e1:42:51:d9:22:5a:93:
2d:8f:6a:bd:b9:c5:da:c8:dd:8f:f9:09:a4:5a:84:
82:df:39:64:26:da:60:38:8c:d1:32:16:14:95:f4:
68:ae:97:e5:60:a7:18:87:76:8f:83:44:a6:db:24:
5e:e3:3d:7a:f0:c4:76:88:54:47:92:e0:59:fe:91:
9b:71:56:1b:a4:4d:33:ab:91:f3:5b:ae:d2:da:ee:
94:ba:08:1b:bb:bd:ac:7c:4e:21:68:b6:07:8b:9b:
cb:b6:5a:8f:41:8a:5b:24:40:7b:eb:a4:aa:9a:39:
bc:63:93:8e:bc:f1:68:3d:b1:11:93:62:a5:f1:fa:
0f:75:46:59:85:98:83:4e:71:5e:17:07:8a:5f:eb:
24:a3:47:ec:61:ba:84:8f:a2:c4:73:27:d0:f8:34:
47:06:f7:3c:c7:34:a2:3f:07:8d:1b:2a:1a:a4:f1:
64:40:a7:3f:b0:fa:c6:53:26:7f:36:fe:17:9f:7f:
85:84:6a:64:cc:a9:6b:29:61:3a:2d:b8:de:c0:2b:
6d:5a:ab:ea:6b:a1:99:ad:36:36:ca:44:32:23:91:
ed:12:77:e3:33:e4:02:8f:c3:9f:94:11:6c:27:2d:
cb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:1B:73:3E:3A:1B:3A:C8:35:A3:EC:0E:AD:56:2D:3B:A5:88:59:C7
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:69:ad:2a:a7:48:d1:2d:64:f9:40:5d:99:26:4d:93:3f:94:
58:95:8f:5c:75:e1:cf:c2:26:ee:c9:6c:2c:c7:60:80:17:4c:
00:10:4e:c4:f1:38:ce:c6:a4:fe:56:3e:ba:ed:21:31:90:2b:
97:b7:33:8e:d2:8f:d3:46:93:9d:c7:d2:f8:96:77:d7:cd:ab:
6a:67:4c:25:61:93:c1:d5:a1:12:57:9c:c0:21:b2:87:db:da:
80:88:d8:a0:b3:e2:84:3f:c2:94:f2:48:24:84:10:a8:54:38:
d4:f0:cc:8c:ec:74:d7:d9:d8:c4:7c:e2:18:5f:98:92:49:aa:
6f:12:6a:27:dc:59:57:cd:24:27:32:d5:b1:5e:9a:7b:0e:04:
44:11:cd:5c:8e:9f:b5:47:6e:4b:8a:a8:a5:69:be:c2:d5:f6:
11:b2:86:93:bb:58:93:d3:61:e8:9a:75:b0:fb:be:f0:e8:74:
35:de:46:55:21:eb:97:84:2f:88:4f:5a:d9:b3:31:b4:9a:39:
ef:d1:2d:f0:90:35:5d:ce:39:77:22:7c:0a:ea:69:9d:c4:8f:
c0:1e:fa:23:40:5a:27:fd:66:73:87:ff:63:61:9b:73:d3:b1:
b2:f6:86:73:3f:51:4e:e9:36:31:ce:55:aa:50:3c:cf:7f:b8:
14:6f:41:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 00:41:17 2025 by rpki-client