Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
File: rKKhlS5xiUSkBDSg6-__2iv-7V8.mft (raw, json)
Hash identifier: 7DiBjRRosE7jGRCnQSOGnIpwrBx0BbXWrDMvO/piLqY=
Subject key identifier: 44:71:3C:D8:6D:51:B0:41:64:ED:3F:5A:21:47:DD:7B:D7:8A:8C:50
Authority key identifier: AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
Certificate issuer: /CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Certificate serial: 01974B8D6E7CAE29E1CCAEACC37366AD463E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
Manifest number: 123A
Signing time: Sat 07 Jun 2025 18:00:49 +0000
Manifest this update: Sat 07 Jun 2025 18:00:49 +0000
Manifest next update: Sun 08 Jun 2025 18:00:49 +0000
Files and hashes: 1: mN-Gq3CnQOseJQb6vbylzDVdWSg.roa (hash: fOE9ILnEXk1PyxS5P7XqjGQMPFnkivt3IHprv8lvkaM=)
2: rKKhlS5xiUSkBDSg6-__2iv-7V8.crl (hash: MYUZfKndEeYrybgERbvs3EOb0IAK1FhUUN2uAosCL6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:6e:7c:ae:29:e1:cc:ae:ac:c3:73:66:ad:46:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Validity
Not Before: Jun 7 18:00:49 2025 GMT
Not After : Jun 8 18:00:49 2025 GMT
Subject: CN=44713cd86d51b04164ed3f5a2147dd7bd78a8c50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:86:c8:c8:ca:0f:d0:0a:ba:04:77:98:49:88:
e9:92:a9:22:87:fa:53:20:ef:01:d7:32:50:79:58:
24:20:ab:1d:92:1b:62:7f:3b:de:86:19:b7:6c:9d:
db:ab:35:c0:41:4a:28:95:b6:fd:ab:2b:3f:13:26:
23:41:da:aa:5f:80:28:79:18:e9:f7:65:ee:d3:9a:
43:2e:65:cb:b7:04:9b:a0:36:0c:2e:eb:df:45:8f:
99:66:c8:a2:16:f3:4d:0a:f2:ad:a0:ce:fa:ce:ef:
c5:f7:ba:ee:1f:8c:26:05:f8:4f:4e:98:33:5d:ff:
4d:03:03:57:fa:c7:e3:57:01:85:a5:64:5c:f4:9f:
4e:37:9e:22:01:cc:cb:d4:51:64:76:63:68:c3:69:
41:32:66:25:4b:ea:1c:77:90:8a:09:fc:7a:95:3c:
25:51:d8:e8:14:55:de:f5:2b:4c:8f:96:14:9c:74:
61:81:b1:bb:6d:67:6a:ac:0c:b2:00:c0:03:ca:77:
af:f4:81:30:6d:e5:6c:11:d5:25:e9:0d:61:93:72:
c5:58:c2:cb:67:2b:00:46:c3:8e:a8:e9:00:d3:39:
8b:31:ea:c0:99:2e:6c:ba:5f:b9:9a:11:20:5c:51:
64:a5:5c:7a:d6:52:33:76:e4:53:e5:fe:ce:49:1e:
2c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:71:3C:D8:6D:51:B0:41:64:ED:3F:5A:21:47:DD:7B:D7:8A:8C:50
X509v3 Authority Key Identifier:
keyid:AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:01:95:5d:94:71:7c:dd:72:5c:fa:b6:c4:cd:69:d3:7a:cf:
7a:8f:f8:b4:51:03:8f:03:8c:9d:ef:be:ab:03:d0:83:ca:46:
46:d2:a5:6d:c6:39:52:6a:b4:0e:27:95:c1:28:d7:dd:d1:91:
b8:08:64:d0:e4:c0:cf:7d:45:ae:74:91:5b:cc:0c:d6:2c:a3:
18:c4:e6:e7:c2:f2:22:d3:e6:c7:97:77:2f:49:82:1d:6e:6c:
8f:38:2a:72:b8:96:74:a7:a9:00:f5:00:95:73:42:52:1a:3f:
e0:72:3c:1e:44:d7:1f:aa:45:1e:ae:9f:28:83:74:3f:a4:77:
9e:48:04:95:d5:89:26:4e:49:da:91:b7:1f:9b:1a:9f:ea:ed:
aa:83:93:c2:ac:fd:f5:a6:27:96:af:c7:d4:44:48:fc:73:d6:
78:1f:e4:d4:b4:e0:21:24:a2:c9:49:44:e2:aa:d7:ae:5c:58:
02:ac:c0:fd:f1:29:48:f6:1c:33:4a:6d:b0:f4:01:66:71:c4:
a4:aa:f2:0f:33:b5:ef:a1:12:ee:f9:91:59:82:3f:99:18:8d:
3a:04:06:e0:f1:9b:8f:36:4f:84:8c:94:8f:1e:a6:cd:36:10:
c6:7a:d3:d8:9f:11:44:69:e8:bb:51:e8:5e:6f:0c:61:c0:e9:
e6:d3:64:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:19:52 2025 by rpki-client