Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
File: CKkhe9gwYnyz5lfAuQY8giNN28s.mft (raw, json)
Hash identifier: 8rGOCSr/JNC17Tn4OHCSfhdpwVl+yjraQIUb3CIXlCM=
Subject key identifier: 73:7D:DC:5F:21:7C:DB:59:B3:CC:CB:21:1F:7B:47:B4:AD:C6:19:83
Authority key identifier: 08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
Certificate issuer: /CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Certificate serial: 019750B42D155468858D4D2ED315992CCD24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
Manifest number: 1583
Signing time: Sun 08 Jun 2025 18:01:14 +0000
Manifest this update: Sun 08 Jun 2025 18:01:14 +0000
Manifest next update: Mon 09 Jun 2025 18:01:14 +0000
Files and hashes: 1: 34veN2ucTJBbi388PrmLekhLRzM.roa (hash: zPkkR8nXQL9mfEVd+D/kn8bIVDt7EDLAoyKRPC1BVEk=)
2: CKkhe9gwYnyz5lfAuQY8giNN28s.crl (hash: bECAwhGbdlm8S9+b5WL79rliiqjLgvPghkERqQFU/WE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b4:2d:15:54:68:85:8d:4d:2e:d3:15:99:2c:cd:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Validity
Not Before: Jun 8 18:01:14 2025 GMT
Not After : Jun 9 18:01:14 2025 GMT
Subject: CN=737ddc5f217cdb59b3cccb211f7b47b4adc61983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:95:1a:ae:55:00:7a:1e:4c:5f:22:a0:f0:f8:
13:90:21:5f:9e:59:bb:a8:30:47:74:87:3a:8e:39:
99:a0:be:e4:54:c2:49:ea:0c:5e:59:23:f5:06:95:
a6:45:7b:ad:9d:57:24:cb:d9:f2:e1:15:40:41:ed:
39:40:27:c6:29:05:d4:53:09:75:82:83:17:68:5b:
61:4e:5a:f1:6c:11:2b:78:d2:5e:af:3e:ec:1b:f5:
7f:74:0c:29:56:35:9d:a4:1c:41:ff:a6:fd:0b:9c:
68:67:80:48:55:d6:b0:b1:7b:3c:2e:4e:a6:a5:83:
eb:43:49:db:81:30:e9:3c:ca:00:e8:6d:a0:d6:e9:
17:ab:7a:8b:43:31:91:74:e8:b7:96:9a:e6:7c:d3:
a1:ff:73:4e:67:8c:ae:d0:04:cc:2d:1f:12:e2:0b:
c4:3d:a6:74:13:ef:ac:ca:d7:3c:12:03:9b:f1:5d:
b1:8e:f4:bc:4c:cd:a6:40:ed:cd:ee:e6:1d:36:1c:
86:0a:23:25:35:50:7e:31:db:37:43:cd:e1:fe:80:
e2:dc:db:38:67:c7:9e:ce:2f:bf:1a:ec:98:b5:5c:
7e:4f:e5:e1:b0:3b:0a:cb:58:2f:7d:d6:f3:e9:79:
5c:9e:0b:1d:84:e9:95:b4:d9:f8:d8:e9:cd:3e:b5:
d9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:7D:DC:5F:21:7C:DB:59:B3:CC:CB:21:1F:7B:47:B4:AD:C6:19:83
X509v3 Authority Key Identifier:
keyid:08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ee:3d:30:cf:e0:d8:14:52:07:47:09:5f:ff:a9:3f:6d:3c:
39:27:9c:9b:c5:6f:f1:5b:84:2b:b9:aa:7c:38:2d:b5:81:1b:
fa:ff:ff:77:fd:c4:9f:fc:00:04:54:0b:95:f1:d9:a1:3c:85:
29:f1:f5:c8:e1:73:9c:87:ac:79:c7:83:05:25:72:61:68:9e:
b3:f0:5e:34:5f:1c:b0:22:9c:8f:eb:71:a2:02:1e:fc:8e:f5:
96:11:51:ef:c5:e7:c4:2d:84:c2:37:f0:2a:04:8a:d8:5a:d6:
96:c8:a8:1e:87:be:4d:a9:a6:a4:76:46:0a:f3:bf:7e:a6:ec:
7a:b7:87:9e:8d:84:ae:c3:e2:35:03:5c:31:dc:88:43:c4:69:
31:8f:0a:3b:bc:69:ed:4b:92:30:a4:be:ce:8a:33:6c:41:d2:
d3:6e:97:85:45:a5:5d:17:e1:b0:3d:e2:d6:75:89:3f:00:45:
6f:44:73:75:29:1a:01:cf:82:20:40:36:73:53:62:ee:f9:2c:
49:32:6f:04:7f:70:63:f4:58:e6:da:31:c3:a5:a8:40:33:bb:
ac:bf:d1:ff:a7:9f:34:8b:82:6b:b7:3e:cf:11:31:37:98:b3:
2a:6b:a2:8b:f1:6f:cd:44:b3:ce:6f:bb:1a:da:2e:ee:32:de:
20:c4:d7:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 03:48:00 2025 by rpki-client