Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
File: k9t6NCzZOS76XNM4lHQcqKW09Cs.mft (raw, json)
Hash identifier: kmCwScazjBrS/uu5EUv2OK0zpDBOyZVy+dxbCAAijMw=
Subject key identifier: E9:F6:35:74:C5:F0:DC:F8:B9:10:EA:E4:3C:5D:3B:A2:4E:03:B3:BC
Authority key identifier: 93:DB:7A:34:2C:D9:39:2E:FA:5C:D3:38:94:74:1C:A8:A5:B4:F4:2B
Certificate issuer: /CN=93db7a342cd9392efa5cd33894741ca8a5b4f42b
Certificate serial: 019748FA49166C473FF0DB807DE3DB7E7ECE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
Manifest number: 1280
Signing time: Sat 07 Jun 2025 06:00:51 +0000
Manifest this update: Sat 07 Jun 2025 06:00:51 +0000
Manifest next update: Sun 08 Jun 2025 06:00:51 +0000
Files and hashes: 1: SboGMTB-9QHWroFpAbYSHcl3CKo.roa (hash: rffHNVeJmra0y8Rg18pTmGMriRjMrSI/KkXaHsDinBM=)
2: k9t6NCzZOS76XNM4lHQcqKW09Cs.crl (hash: fUiTtELNYO7MtBMqEfDxRg0OSuvvPrtA6wp8+yz9BqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:49:16:6c:47:3f:f0:db:80:7d:e3:db:7e:7e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93db7a342cd9392efa5cd33894741ca8a5b4f42b
Validity
Not Before: Jun 7 06:00:51 2025 GMT
Not After : Jun 8 06:00:51 2025 GMT
Subject: CN=e9f63574c5f0dcf8b910eae43c5d3ba24e03b3bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a4:00:b4:61:5b:92:81:3d:3a:e5:81:34:12:
37:76:ff:0c:9a:1b:65:52:af:8c:1a:ea:8b:4c:4d:
e4:80:7c:b1:fb:15:08:d3:7f:13:62:15:59:6d:f7:
b7:91:58:69:ea:a9:f0:bc:8f:f3:98:b8:9d:44:ad:
3f:4d:88:f0:b4:5d:3e:c6:3d:d6:8f:81:0e:20:81:
04:8c:31:ed:25:16:2b:34:12:cf:d9:40:b4:80:19:
42:81:24:1e:e2:bc:2b:7a:62:6a:0c:fc:1b:c6:62:
61:c9:ab:7c:52:63:66:95:04:82:bc:f4:8b:79:00:
ef:3a:4e:27:3c:66:55:e7:a7:e3:fa:81:e8:6e:d7:
77:99:bb:6c:28:54:b3:03:aa:aa:9c:1c:d1:c5:1e:
a6:53:42:69:83:77:fb:75:c1:3e:64:ec:e1:02:73:
d8:ef:9e:1d:09:10:d8:40:be:33:3e:b2:12:41:98:
e1:f3:7b:15:c8:4b:9f:f3:65:49:a6:b5:17:98:d5:
c7:e5:63:ed:cd:52:08:ab:3d:ad:7d:71:6d:24:f2:
78:67:17:96:36:45:47:23:fb:cf:70:22:ac:b6:fa:
f3:78:b2:ed:f3:d9:cc:fd:da:bf:43:60:b3:ba:a3:
e4:6e:6e:23:ce:03:b9:dc:7c:d8:08:af:52:b8:0b:
13:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F6:35:74:C5:F0:DC:F8:B9:10:EA:E4:3C:5D:3B:A2:4E:03:B3:BC
X509v3 Authority Key Identifier:
keyid:93:DB:7A:34:2C:D9:39:2E:FA:5C:D3:38:94:74:1C:A8:A5:B4:F4:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:fa:bb:ff:50:da:28:3d:12:3b:a6:0f:0d:4a:18:63:f8:2a:
0d:eb:ed:31:72:54:31:7c:2b:58:36:5b:e3:e1:ff:e7:d0:e3:
5d:5b:32:02:08:34:bd:ca:c7:ff:f9:47:25:90:85:6a:4f:c2:
ff:c7:2c:ad:60:b4:64:6a:1e:77:b3:4a:98:f1:50:d2:a2:94:
c1:55:66:20:d7:33:fe:2f:2e:93:31:5d:d0:da:5e:70:91:8c:
1f:e4:4d:6e:bf:8a:e2:45:8b:ac:fd:90:c8:f9:e4:4e:d7:e6:
32:3d:70:4c:f4:b6:da:e6:77:06:18:af:70:fd:75:f0:59:55:
f7:41:93:72:50:fd:4f:ac:2e:f9:e7:32:e2:37:80:1a:8e:69:
8a:73:0e:3c:2b:f9:f4:74:3b:b6:03:cb:71:06:be:6e:4e:cf:
24:3f:30:e0:6b:dc:9c:56:06:7a:49:11:18:2c:40:36:36:db:
89:8f:51:27:32:90:77:c7:51:80:14:89:72:c7:50:76:b2:6e:
51:22:f2:9a:d6:71:e7:da:ff:f8:05:24:22:77:df:41:18:99:
35:aa:30:db:f3:e7:9f:f5:3e:50:71:87:7d:5c:05:74:0a:72:
f6:7b:0d:ba:2f:b5:92:94:a1:0b:91:6a:d4:f8:70:2c:d3:c7:
aa:08:96:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:26:58 2025 by rpki-client