Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
File: KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft (raw, json)
Hash identifier: jT1TSIM7Vm66xd76tq9wGYzVCsBsq1deBu37TlhiuwI=
Subject key identifier: A2:87:9D:AD:57:F3:3B:1D:91:A3:6F:95:24:5E:C1:EA:A3:BF:02:56
Authority key identifier: 2A:71:48:C4:61:F5:E7:7E:10:7A:F7:35:66:A2:7E:34:35:61:DC:1D
Certificate issuer: /CN=2a7148c461f5e77e107af73566a27e343561dc1d
Certificate serial: 01974C6972D9E1BC7369AA9E728AA5A9F84C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 22:01:08 +0000
Manifest this update: Sat 07 Jun 2025 22:01:08 +0000
Manifest next update: Sun 08 Jun 2025 22:01:08 +0000
Files and hashes: 1: KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl (hash: i3hZ/fmkQ3nEjUpqm38FBIhg/0UgohJAPmrLfxTMOWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:72:d9:e1:bc:73:69:aa:9e:72:8a:a5:a9:f8:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a7148c461f5e77e107af73566a27e343561dc1d
Validity
Not Before: Jun 7 22:01:08 2025 GMT
Not After : Jun 8 22:01:08 2025 GMT
Subject: CN=a2879dad57f33b1d91a36f95245ec1eaa3bf0256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fe:53:0a:b1:a0:85:79:e7:b7:b4:cf:06:df:
b6:8b:28:82:14:17:b9:7e:65:f1:0b:48:44:c2:84:
46:ec:3a:5a:98:ee:88:d6:2e:71:04:94:b3:02:d8:
92:ea:1d:50:b6:6f:10:10:ca:99:c4:c8:e4:b4:9d:
9e:e0:de:34:ad:3e:95:3a:b4:b1:27:f7:8f:78:74:
86:0d:85:a1:b6:f3:04:b0:c9:7f:d6:62:70:5c:a8:
27:fc:63:02:82:53:e2:10:95:e4:af:ab:b5:59:3c:
10:46:7d:09:af:23:92:61:f7:f6:d7:42:70:86:12:
d3:77:b4:38:ce:06:34:e4:6b:70:28:e7:b1:61:d3:
5d:ac:e3:f3:b2:2b:c0:63:90:be:17:1a:23:15:90:
91:22:e7:af:10:06:fb:f8:74:bb:5b:07:6f:3d:30:
ae:a8:45:57:27:5c:75:52:aa:b2:04:f1:71:3e:4e:
ab:a7:bf:3d:3f:91:96:18:3b:5e:97:29:22:01:19:
fe:36:75:e5:8a:32:63:58:89:e7:ea:4a:50:5b:37:
3c:bb:83:86:1d:fd:58:2c:00:99:5e:5c:a7:05:0f:
7f:ee:eb:4a:84:be:f3:7e:49:31:c6:8c:0a:67:b6:
1d:67:dd:da:6f:68:b1:77:ad:61:69:3e:19:99:ec:
92:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:87:9D:AD:57:F3:3B:1D:91:A3:6F:95:24:5E:C1:EA:A3:BF:02:56
X509v3 Authority Key Identifier:
keyid:2A:71:48:C4:61:F5:E7:7E:10:7A:F7:35:66:A2:7E:34:35:61:DC:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:64:6b:03:fa:e0:ca:fa:ad:90:99:96:68:57:22:3c:aa:50:
85:7b:92:eb:1e:d9:b6:5a:dd:15:e3:84:b3:2a:0a:f0:2f:8d:
d8:cf:f8:c1:ad:56:33:87:08:ef:b1:11:b5:65:ce:9c:b5:7d:
23:61:ce:f1:a9:ce:42:5b:78:af:b5:43:b1:f5:5c:67:c3:b9:
c5:5f:6e:7c:22:f3:1d:ba:67:82:2f:4b:f5:3a:74:b6:fc:3e:
52:39:ea:e3:37:21:d7:43:2c:c6:51:71:ae:e0:50:f0:3e:e9:
51:48:7f:9b:4e:0b:d1:db:7c:66:a3:59:03:28:31:74:60:e3:
2a:a1:b7:9c:88:13:5d:8d:0d:ad:d1:ca:40:ab:9e:19:1e:ca:
9b:a6:26:4d:23:67:1e:56:4d:33:c8:a8:e5:84:28:d4:9b:9d:
36:3e:15:3d:1d:c3:90:f1:d7:17:f2:77:75:42:3f:a8:a8:ae:
61:49:7a:d1:f5:dc:f4:4b:80:75:52:ef:82:6b:dd:25:6e:7d:
e6:49:5f:b8:91:04:c9:9f:72:05:02:c6:29:09:98:91:01:f9:
58:a0:d2:55:64:c7:d6:e7:44:5c:41:29:fb:5b:ee:44:be:55:
a3:4b:40:59:7a:42:1e:6a:5f:ef:45:d1:29:89:0b:fa:fb:af:
e9:0c:22:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:57:06 2025 by rpki-client