
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: RQVBBD4BkDHrXnFYud0JUT5bd8jS/5jMdoWVpRnvcNY=
Subject key identifier: 0C:2D:B2:DE:2A:05:F9:BA:C3:C5:34:15:5D:ED:92:66:F8:2B:34:43
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 01975A5BC623DDD42998C44FE43D967C0493
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1585
Signing time: Tue 10 Jun 2025 15:00:53 +0000
Manifest this update: Tue 10 Jun 2025 15:00:53 +0000
Manifest next update: Wed 11 Jun 2025 15:00:53 +0000
Files and hashes: 1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: fDcBe41xknEiR/+/gR9Cuzf47HDQ+F2X0z0qJ/fJ3tY=)
2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5a:5b:c6:23:dd:d4:29:98:c4:4f:e4:3d:96:7c:04:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 10 15:00:53 2025 GMT
Not After : Jun 11 15:00:53 2025 GMT
Subject: CN=0c2db2de2a05f9bac3c534155ded9266f82b3443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7b:b4:55:c4:c3:f8:de:00:23:8a:d7:91:57:
76:d9:3d:30:38:a7:0b:e3:24:91:90:b0:ed:cf:31:
aa:7d:81:32:70:84:01:03:4e:5b:64:32:ac:68:cc:
50:e2:5a:a7:97:55:a9:21:e0:32:08:38:00:a6:03:
ae:5d:5f:b5:54:60:b8:06:b9:40:45:7e:23:a3:da:
74:11:69:55:5e:68:dd:6b:c0:92:af:4e:37:22:1b:
93:65:64:cc:87:70:45:ae:fd:cf:c4:2d:89:8a:18:
b8:d6:ef:bb:e5:cd:95:3a:75:4e:12:dd:d1:0e:59:
ac:3c:35:ad:3e:90:f3:11:35:6e:6e:3b:01:78:11:
a8:9b:75:f8:9e:1e:1b:08:6f:ed:3e:91:fc:61:bf:
c8:f2:69:2e:b7:c3:14:49:24:23:12:7c:bd:f8:d8:
b3:1e:85:ea:29:40:33:82:f3:19:10:f6:12:1a:6b:
38:c2:61:2c:95:f1:38:e0:dd:07:42:68:02:98:94:
25:f8:d2:98:96:8a:1f:fa:81:d0:c1:79:8c:ac:c2:
be:4b:d4:df:fb:0a:30:15:af:7c:f1:99:29:f3:42:
1f:8d:91:15:78:7f:33:3b:8c:13:15:12:6a:b2:9f:
f9:a3:06:a6:b3:59:96:b6:c7:31:62:4d:9a:cd:dd:
95:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:2D:B2:DE:2A:05:F9:BA:C3:C5:34:15:5D:ED:92:66:F8:2B:34:43
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:1a:8a:4b:66:ef:0d:9a:9d:b2:10:2c:3e:c7:82:05:b2:28:
6a:c6:df:1c:8a:63:a6:2c:2a:ec:b5:92:ee:a2:10:d3:a3:d4:
d9:ea:a8:41:17:5c:cc:20:a8:30:bd:5e:1c:d3:ef:5a:3f:82:
03:f1:e9:1d:ab:a4:b3:e7:26:a9:e2:e9:41:26:4b:a2:08:71:
df:33:00:99:87:b5:6e:19:77:aa:6d:01:e4:a7:30:cf:f8:3d:
ea:67:64:00:37:a2:90:1b:1b:9d:dd:71:96:37:f9:10:67:f4:
7e:1b:fc:a1:60:31:f7:6a:f6:2f:6e:78:be:5b:57:c5:7e:f7:
41:9f:8c:b2:59:6f:5d:47:d6:92:00:ba:a2:c8:2a:a3:46:ce:
9c:57:4b:14:f7:53:77:ca:80:79:0d:90:9b:4f:11:84:87:fc:
4e:80:78:ac:cf:7f:97:36:d9:65:0b:2d:21:8d:8a:c5:d9:c4:
3c:04:d2:20:39:e2:19:8b:ad:bf:e1:79:dd:29:59:a9:df:9a:
87:3a:72:c0:fe:00:12:7b:e9:66:56:80:ae:1b:d1:a2:0d:9d:
42:d8:8a:35:7b:33:56:38:4f:9c:11:42:d3:4c:59:a0:b0:b0:
70:6a:ce:30:45:ea:f8:e7:ff:61:5d:4c:c5:d8:3c:1b:b5:f8:
04:62:c9:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 02:30:21 2025 by rpki-client