Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json)
Hash identifier: C5NzFly72nIQBhLIg8m3Enk44QZcxN8yyjaY/5g4Fvw=
Subject key identifier: 21:83:48:FC:26:B1:FC:B1:F5:D3:C0:36:83:83:90:07:D1:05:8B:9D
Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Certificate serial: 01974742C75C7C4E57C63519EEF21743A2B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
Manifest number: 092D
Signing time: Fri 06 Jun 2025 22:00:48 +0000
Manifest this update: Fri 06 Jun 2025 22:00:48 +0000
Manifest next update: Sat 07 Jun 2025 22:00:48 +0000
Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: UqP2s2yq7PuNExtRa0gZyu9FFHfIEMbjNjatmsBZroc=)
2: sEY4t-bPe6btAR7wv3UJWwU-X2E.roa (hash: aU4yEzDR1E1BJAYcSFYYldSWQZ2ELBxfjYhJldcUrMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:c7:5c:7c:4e:57:c6:35:19:ee:f2:17:43:a2:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Validity
Not Before: Jun 6 22:00:48 2025 GMT
Not After : Jun 7 22:00:48 2025 GMT
Subject: CN=218348fc26b1fcb1f5d3c03683839007d1058b9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:95:66:a8:c7:16:3f:14:a8:46:36:f9:02:89:
e1:64:fa:48:bb:ec:20:b5:bd:1a:25:19:16:8b:04:
07:93:f9:34:d0:8c:03:81:4e:db:8b:f2:69:54:27:
92:c3:24:7b:75:52:35:bb:cf:fa:cc:fd:59:d7:90:
fb:1b:9b:d6:85:06:4c:45:86:ad:91:7b:7a:c9:58:
5d:4a:3d:f9:d9:d4:5f:6a:c0:5b:e2:f6:40:93:41:
e4:33:81:88:c4:2b:f0:75:51:f9:d0:b4:8a:7a:8c:
72:93:60:c0:97:71:52:78:fb:8a:fb:1c:2f:55:d7:
fc:99:3d:99:f5:5a:2b:0a:a1:8e:50:ab:f8:2b:e9:
08:88:da:e2:a1:b0:b3:42:25:df:82:76:56:9c:a3:
8a:20:45:fc:e6:56:79:f3:b5:35:29:90:d7:83:02:
a0:84:72:40:92:7e:86:8f:dd:6c:f6:58:a4:76:56:
a3:06:fb:7c:b4:b6:07:5d:50:65:4c:94:bf:3a:25:
b1:ff:3f:8a:1c:99:85:cd:21:d6:75:2c:07:aa:7c:
29:2f:20:3d:84:af:21:67:7c:d7:3e:da:99:be:c3:
ee:cf:bd:1b:5b:bc:15:37:2a:26:4f:ac:a2:2e:26:
c7:b6:35:4c:ed:3e:3d:1c:81:fc:0a:fc:af:c2:b0:
fa:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:83:48:FC:26:B1:FC:B1:F5:D3:C0:36:83:83:90:07:D1:05:8B:9D
X509v3 Authority Key Identifier:
keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:83:60:04:f7:9d:2c:bf:38:42:d1:f7:38:fa:16:40:38:75:
a2:7e:14:32:89:a6:64:00:83:3a:ee:17:ca:d2:21:fd:82:25:
32:e3:b0:2a:e5:3d:a5:03:39:e3:40:a3:8d:0d:d7:0f:c4:cf:
08:1f:07:15:71:50:a5:4a:72:71:c3:dd:94:d9:38:0c:46:bb:
56:50:56:21:e1:44:6e:a6:dd:1a:d5:3f:a0:7a:43:d8:ca:01:
3d:91:cd:6e:98:c1:7b:e7:9a:13:55:17:1a:ae:6a:02:8e:c9:
eb:d9:cd:50:07:25:84:29:eb:19:f6:70:a5:8f:49:41:0b:fa:
65:fe:89:6c:d7:da:60:46:38:e9:67:b6:59:86:b9:40:9b:4e:
cc:d7:d4:e5:22:e3:51:34:95:0e:ce:65:03:73:2c:f8:54:b1:
a8:55:d7:a3:77:f4:f4:26:4b:1e:0f:42:18:20:c8:8b:06:89:
17:5b:19:94:50:f7:c7:5b:43:fe:52:6e:33:89:3c:f8:6b:b7:
1e:4b:99:83:bd:b2:f0:e1:3f:4d:60:28:7b:e4:22:dd:65:c1:
f6:18:26:5d:a7:3b:a6:94:f2:80:eb:95:ae:17:0a:04:1f:e6:
35:0d:23:86:da:b7:7f:f0:38:88:65:c2:87:3d:65:c0:76:34:
6c:15:4f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:38:56 2025 by rpki-client