Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
File: kY74I7sEHqOsfIk2x1C2AYE34s0.mft (raw, json)
Hash identifier: FaJc7bj/+5XlbRvKTRFU70Pj3NiX3DWvR1oFVi36NCQ=
Subject key identifier: 5A:CF:1B:E3:F9:CF:B1:65:F6:29:12:C1:7A:1E:62:05:05:E6:71:BD
Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
Certificate issuer: /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Certificate serial: 019771F65F975832007908770D5DE41A83C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
Manifest number: 1591
Signing time: Sun 15 Jun 2025 05:01:01 +0000
Manifest this update: Sun 15 Jun 2025 05:01:01 +0000
Manifest next update: Mon 16 Jun 2025 05:01:01 +0000
Files and hashes: 1: A9fnzzZSIyyk78DkykeGYg11L2Q.roa (hash: jan8f+is44AYa9jG93HTE50pBitsknBS00si8XIMwqI=)
2: DHmLK6qv7LDp9GSFF3bVVqiSSSs.roa (hash: 4c04LYJlSQnDFsWUTe3RinfcXPa5HIaLB5gKn1wNfQ8=)
3: X2DKxHgU0pJJ7l0RSAZexJQ4yk4.roa (hash: c4ZqtHFp+NEImgqSyGp/s8/x5ohWKo9ZUlSrkI+FleE=)
4: kY74I7sEHqOsfIk2x1C2AYE34s0.crl (hash: YY1hlzPHD2eCMz8+JZS9oVf+z4qdbISfN8TB4MzLcok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:f6:5f:97:58:32:00:79:08:77:0d:5d:e4:1a:83:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Validity
Not Before: Jun 15 05:01:01 2025 GMT
Not After : Jun 16 05:01:01 2025 GMT
Subject: CN=5acf1be3f9cfb165f62912c17a1e620505e671bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:30:13:7a:d2:93:54:3b:f8:68:db:ab:ad:94:
9c:2a:80:21:d0:74:e3:c2:3f:73:0f:6d:8d:3a:0c:
67:a0:12:1f:cd:7b:af:8d:77:f9:18:10:f7:e8:ca:
88:30:10:3d:ca:71:9a:cb:7e:ac:3f:c6:43:e7:45:
1e:fc:30:b3:75:bd:af:6b:68:bb:3a:59:4e:83:23:
32:f8:46:58:4b:a5:50:30:98:0b:bc:07:d5:8a:71:
98:9e:32:14:fb:79:05:93:43:a7:d9:7b:ea:65:f7:
22:a4:48:09:bf:a6:8a:ad:4c:81:7f:66:1b:16:6a:
64:e6:db:55:65:c6:73:47:b8:f2:98:25:ac:51:0c:
25:3b:c6:4b:bd:a1:19:d5:e0:b3:62:cc:4f:5c:4e:
11:3a:0e:64:f9:4c:51:8c:dd:a9:2f:a7:49:af:b1:
e2:e9:ce:cf:4a:d7:b3:51:a2:7e:ed:55:22:ac:06:
74:95:8d:bf:ee:f0:a2:f2:d9:14:9a:9f:34:1b:a0:
f6:03:ca:1b:68:5e:74:f7:32:02:16:3f:23:06:3b:
07:e2:da:ba:f3:54:d5:98:11:1d:2f:b4:c4:16:7d:
10:e8:f8:3c:9c:8b:37:e8:b0:71:76:99:83:98:69:
6c:b0:9f:dd:6a:aa:a0:78:fa:22:b4:7a:2b:15:fb:
71:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:CF:1B:E3:F9:CF:B1:65:F6:29:12:C1:7A:1E:62:05:05:E6:71:BD
X509v3 Authority Key Identifier:
keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:01:12:6c:4f:65:b3:79:fc:9e:44:36:9a:1b:43:93:ff:34:
fc:9b:a1:d6:02:ba:b9:e0:69:6b:e6:26:4d:1e:a1:19:01:de:
5a:cc:84:58:30:0d:bd:2f:f8:43:98:80:42:60:d6:8c:e3:67:
50:85:8f:a6:33:da:fd:ae:e8:89:1f:93:e8:89:63:07:4b:23:
f9:21:e3:07:85:f2:4d:d3:35:2e:74:32:fc:db:27:3d:1f:88:
c2:8b:78:5d:02:f4:fa:e8:9c:10:c7:fa:2d:e0:66:c4:97:b2:
c0:39:94:77:37:91:f4:88:1a:13:e9:9c:0a:e1:54:f8:d4:67:
b4:7c:58:4f:68:3b:a1:a5:c9:12:16:fa:a2:82:41:54:c4:cf:
96:1b:0d:4e:32:1c:7e:7a:d5:d2:23:df:a0:3a:45:a6:20:99:
0f:e6:38:78:01:05:1b:dc:53:db:1c:81:8b:6b:3e:82:80:29:
17:b6:8a:7c:64:ab:79:01:7a:e5:1c:43:a4:d4:ff:7e:12:f4:
39:89:02:a2:de:e9:5d:95:5d:88:8a:06:d0:92:b2:3f:58:68:
9a:35:a1:fa:a9:9b:fd:1d:dc:ce:03:34:32:17:59:f3:65:2e:
82:1a:f7:a2:49:0f:e0:89:06:18:ae:9a:22:94:72:ec:8f:23:
9a:6c:28:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:39:33 2025 by rpki-client