Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
File: KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft (raw, json)
Hash identifier: To1FgpS5TJ6L7kl/2InqoLYE6p9w4fp0x4yYCkD5Cmg=
Subject key identifier: 94:AA:95:41:45:A3:6F:27:95:E3:62:26:3D:78:C7:8B:89:9C:F6:94
Authority key identifier: 2A:A3:80:E2:30:CB:33:43:61:B4:86:1E:2F:69:41:24:38:7F:85:29
Certificate issuer: /CN=2aa380e230cb334361b4861e2f694124387f8529
Certificate serial: 0197488D1956C4B84B56F7125F624F65AB2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
Manifest number: 1579
Signing time: Sat 07 Jun 2025 04:01:35 +0000
Manifest this update: Sat 07 Jun 2025 04:01:35 +0000
Manifest next update: Sun 08 Jun 2025 04:01:35 +0000
Files and hashes: 1: KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl (hash: yPR0iv7xhCCEeP1dMUhtQQGUorfAZKYseM7X8XKgs5A=)
2: SjvSMbvX_pvw3i1Pn6Bx1TTyu6U.roa (hash: kgWKItzA9z25TXtV7XlZgfoMV6KRvWKz0GsOPfm6isI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:19:56:c4:b8:4b:56:f7:12:5f:62:4f:65:ab:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa380e230cb334361b4861e2f694124387f8529
Validity
Not Before: Jun 7 04:01:35 2025 GMT
Not After : Jun 8 04:01:35 2025 GMT
Subject: CN=94aa954145a36f2795e362263d78c78b899cf694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9c:ca:c6:42:3e:5c:d8:28:68:75:7a:a1:56:
bd:b8:33:50:b3:6a:c8:00:db:e6:cb:f6:41:23:3d:
b8:b1:f5:91:30:5e:1b:6f:05:4c:bc:e2:f5:0f:bf:
a6:e6:01:b7:89:a0:c1:ba:cb:43:09:c6:d1:81:62:
08:cf:f1:af:3d:03:40:f1:2c:db:11:79:23:26:5a:
8a:26:ab:12:40:22:d2:8c:64:cf:a1:b3:5b:04:80:
c0:4a:73:9d:e5:a4:5a:52:5c:e8:84:38:ec:db:95:
41:09:91:86:6c:bd:38:6e:62:ed:d6:15:f8:d6:a6:
12:cc:15:f4:b5:4b:b1:c5:05:0e:94:fd:4c:e0:cf:
9c:a4:dd:cf:a5:8b:16:84:fc:f5:64:7e:1e:f0:79:
0f:6c:39:40:ea:b2:e5:01:44:bb:53:a7:7d:ba:03:
0d:ec:60:97:94:38:e8:7c:6b:61:8b:d1:a6:e2:f0:
32:7f:44:79:91:67:bf:38:1a:38:7a:75:de:8c:c2:
b2:65:dc:51:cf:c3:3e:0f:9e:cb:1e:7d:aa:22:46:
52:1f:ff:5a:34:fb:d5:89:bc:97:eb:2c:b1:f6:17:
7e:ee:9a:bd:d1:65:43:32:0e:e1:bf:de:22:4a:fa:
55:a3:64:78:58:36:ab:ed:99:78:55:0b:8b:70:a4:
9f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:AA:95:41:45:A3:6F:27:95:E3:62:26:3D:78:C7:8B:89:9C:F6:94
X509v3 Authority Key Identifier:
keyid:2A:A3:80:E2:30:CB:33:43:61:B4:86:1E:2F:69:41:24:38:7F:85:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:69:bc:38:b7:0e:3c:9d:c1:3e:94:c2:24:83:7f:ca:56:6d:
ae:37:18:53:e0:51:b7:c2:ee:a9:f4:64:ab:f6:76:1f:d1:1a:
92:33:8b:01:b1:7d:7d:5f:68:24:b5:48:1f:cf:43:bf:0e:b5:
ab:60:fe:bf:8f:af:07:39:32:9a:63:d4:b1:24:54:61:c8:75:
52:46:79:4f:52:25:a9:51:e5:c2:d9:79:36:ff:87:e5:6d:fa:
d3:fb:37:e2:62:ad:d8:c3:ff:b6:3c:5d:c9:2e:b3:c5:24:db:
11:d4:3a:b3:c4:d3:18:b4:93:84:0d:9f:83:28:b3:cc:be:d8:
eb:8d:a5:e3:f3:bd:5a:0e:32:a9:1a:92:78:bf:9c:8b:bf:a5:
eb:0a:61:98:42:3a:0d:97:33:32:f3:8a:65:5c:01:e0:d3:18:
74:59:8a:49:ea:c4:74:d5:52:fb:68:51:c8:52:1b:e1:f7:ca:
b5:da:98:95:11:46:c9:eb:e7:de:61:4e:71:eb:41:6b:8b:f2:
73:6c:63:7c:87:d3:37:4d:4c:e7:ff:4d:9f:fc:fb:12:30:17:
4c:50:3a:2b:94:f7:d7:b0:6f:e6:11:28:34:e3:fe:d1:09:fe:
25:b5:b4:82:f0:d1:3e:f6:d3:17:59:f9:3d:7b:d9:34:77:3e:
76:b4:be:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:12:02 2025 by rpki-client