Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
File: rKKhlS5xiUSkBDSg6-__2iv-7V8.mft (raw, json)
Hash identifier: uMPrdSbQniSXt54ZS0EXNukk5A6p/EltRgNlPJFMpYk=
Subject key identifier: 6E:49:C1:96:A5:14:96:AC:F6:C6:A1:9A:EE:48:A1:C6:C5:11:C4:AB
Authority key identifier: AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
Certificate issuer: /CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Certificate serial: 01964CA22A752B4D006252E902BC48BEEB09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
Manifest number: 11B6
Signing time: Sat 19 Apr 2025 06:00:18 +0000
Manifest this update: Sat 19 Apr 2025 06:00:18 +0000
Manifest next update: Sun 20 Apr 2025 06:00:18 +0000
Files and hashes: 1: mN-Gq3CnQOseJQb6vbylzDVdWSg.roa (hash: fOE9ILnEXk1PyxS5P7XqjGQMPFnkivt3IHprv8lvkaM=)
2: rKKhlS5xiUSkBDSg6-__2iv-7V8.crl (hash: eSzikINbtuGcjLx+Znp+HOrXfcWw5pjTHGqs0p/eZY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:a2:2a:75:2b:4d:00:62:52:e9:02:bc:48:be:eb:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Validity
Not Before: Apr 19 06:00:18 2025 GMT
Not After : Apr 20 06:00:18 2025 GMT
Subject: CN=6e49c196a51496acf6c6a19aee48a1c6c511c4ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f9:84:d6:45:b0:bb:a3:e0:a7:85:c8:d7:a0:
7e:f4:aa:60:9c:ac:6f:3a:34:68:8c:c8:fc:1b:47:
f4:1e:83:3f:67:4e:33:1a:08:58:fe:19:65:76:7e:
b7:00:c4:22:66:d7:1e:77:3d:95:29:59:6f:38:06:
34:43:55:68:e9:ed:67:06:dd:9b:20:c2:96:cc:6d:
a2:36:b4:0c:bc:49:4c:c1:d6:27:e2:c6:e8:6c:3d:
1b:9d:4c:1a:1e:0b:4d:e0:c5:c8:42:0a:35:9b:eb:
00:77:4e:43:fe:f6:09:2d:97:25:81:d9:f9:45:28:
5c:8f:25:73:5c:dd:4d:8c:d0:ee:b4:86:1d:41:3f:
be:f1:c7:d1:70:4b:11:80:b7:69:b1:64:2d:87:14:
be:9b:cc:67:e4:7e:1b:d2:ed:03:c0:ea:71:6d:aa:
56:32:80:ca:ce:89:b4:d9:3d:64:03:19:8d:c4:48:
a9:5a:f5:45:5a:67:91:a3:e7:9c:55:0c:8c:68:d5:
45:49:73:88:fc:15:bb:af:6c:17:9f:57:5f:28:0b:
14:9c:3a:37:b0:b2:74:2a:1d:af:d8:9b:dc:fe:9a:
1f:97:5a:87:d6:e5:3a:19:dd:01:bd:bb:d6:89:bb:
ea:1a:7e:76:ea:24:f1:d6:4c:62:1b:21:2c:74:6e:
80:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:49:C1:96:A5:14:96:AC:F6:C6:A1:9A:EE:48:A1:C6:C5:11:C4:AB
X509v3 Authority Key Identifier:
keyid:AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:39:43:63:0c:2e:8c:6c:77:2a:b2:20:c9:e4:d3:6c:b8:89:
dd:1d:ff:f7:8a:f8:fc:89:be:1a:ce:7d:5c:51:4d:8e:eb:80:
9a:2d:9a:3a:b7:cd:32:87:22:b3:66:17:e8:7b:fd:bb:70:15:
5a:85:4f:2c:63:7d:44:a4:27:fb:ed:c4:a7:93:36:b1:16:dc:
b0:bc:2b:2f:3a:2f:d0:ba:16:2a:0d:76:cf:d4:3a:1f:cd:ee:
96:e2:dc:9b:e8:69:60:15:a2:bf:13:fc:ff:5a:91:a9:a3:41:
48:5d:06:35:cd:41:23:de:e1:71:03:e6:f0:f7:0d:3d:70:aa:
4a:dc:c1:8c:7f:d3:e7:e1:7c:24:43:5c:8a:7b:d9:68:6c:e6:
32:58:45:72:2f:91:34:f8:35:cc:0a:42:7d:c8:30:28:16:30:
5d:78:f2:d2:f4:45:16:dd:92:20:e7:a7:04:55:af:04:98:34:
ba:49:ba:36:17:77:dc:7e:0d:4f:c2:61:bd:85:38:6f:a4:3a:
4c:51:f9:3c:31:85:0d:b7:1b:aa:38:09:e3:f6:6f:9c:67:ab:
59:99:41:17:61:84:19:2c:33:c0:36:7a:13:97:e7:d8:03:cb:
05:e7:16:de:a7:9f:f9:90:52:00:4a:41:83:32:63:c1:c6:d6:
ab:00:1e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:26:19 2025 by rpki-client