Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
File: knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft (raw, json)
Hash identifier: GjehT/fwO+rjzNixW/5uLS7BEfFAvrE+XQquG8STv9s=
Subject key identifier: 92:C3:34:AB:08:C6:F8:76:BA:D7:9B:7B:41:0D:4E:1C:F6:1A:E7:EF
Authority key identifier: 92:7B:1E:56:AC:7D:07:80:2C:45:67:C4:67:94:35:15:9B:42:20:96
Certificate issuer: /CN=927b1e56ac7d07802c4567c4679435159b422096
Certificate serial: 01976C61EC357F8E8DCC5D7E78CA4FB47302
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 03:00:46 +0000
Manifest this update: Sat 14 Jun 2025 03:00:46 +0000
Manifest next update: Sun 15 Jun 2025 03:00:46 +0000
Files and hashes: 1: ZZutCOlh3Ali7o57VArVQ-r6xEQ.roa (hash: Z8oFv1O8k+i1SuyJDIP9mmTPP/Uv75FEkkBOgolEt4M=)
2: knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl (hash: 0sBuCS946zmfY0aQ2R87eUqFqsz+TIIYdPAEhAAVTG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:ec:35:7f:8e:8d:cc:5d:7e:78:ca:4f:b4:73:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=927b1e56ac7d07802c4567c4679435159b422096
Validity
Not Before: Jun 14 03:00:46 2025 GMT
Not After : Jun 15 03:00:46 2025 GMT
Subject: CN=92c334ab08c6f876bad79b7b410d4e1cf61ae7ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:87:7c:bf:d7:12:8c:7c:c4:80:f6:6e:f8:6a:
30:4c:2a:a6:db:dd:56:21:d8:50:74:31:d8:0b:7f:
28:9d:a9:64:9a:44:4c:f7:41:fa:2d:ca:26:21:34:
c1:92:ff:bf:01:41:a9:f8:2b:3f:a6:85:74:6a:07:
4e:d1:07:3a:06:6d:20:60:d9:18:bb:ea:01:3d:f7:
54:66:10:21:5a:3a:2a:4b:2f:50:86:88:84:f7:4e:
18:85:1c:05:38:3a:c3:88:37:02:98:34:55:2d:b3:
c8:96:04:43:43:7b:7d:8c:ba:d3:82:78:13:2d:33:
f1:1c:99:c4:eb:45:66:f1:c6:b0:11:27:34:7d:36:
48:8f:5f:66:ab:b1:43:88:8c:9b:39:e7:2f:af:c3:
a8:cd:ef:91:0d:46:2d:5b:ef:60:30:00:38:a5:2b:
37:9b:77:cf:79:67:b4:81:ab:54:19:fc:15:71:2a:
6d:07:0a:2a:2a:f9:bb:65:d6:33:d2:ef:61:f5:4c:
ef:ba:4e:1c:3e:ed:b2:ec:f0:d7:ba:5d:46:7e:2f:
61:2e:19:50:bd:ef:e4:bd:5c:8f:f5:2f:ab:15:1d:
36:12:24:d8:4e:46:cb:23:10:5d:9c:c3:d6:35:bf:
98:14:f7:3d:c7:21:9c:39:50:b7:f2:55:6b:b7:c2:
a0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:C3:34:AB:08:C6:F8:76:BA:D7:9B:7B:41:0D:4E:1C:F6:1A:E7:EF
X509v3 Authority Key Identifier:
keyid:92:7B:1E:56:AC:7D:07:80:2C:45:67:C4:67:94:35:15:9B:42:20:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:92:3e:ea:6b:5d:11:d3:2b:2d:80:26:bb:7f:69:35:9c:32:
78:a3:6f:8a:8a:a4:eb:6d:99:04:c2:a4:21:28:bd:67:ec:0f:
8b:8d:e7:c9:66:17:f5:7d:0e:c2:51:54:d9:d7:11:4c:80:6e:
e2:b5:59:16:0f:af:df:1f:cc:a6:ce:7f:5e:c3:c2:ff:f6:f6:
cd:88:1f:ac:b0:4f:53:64:99:ce:46:8a:b5:49:ce:39:8f:14:
a3:df:22:31:b5:72:c0:eb:87:b4:46:6d:ba:0c:3b:fe:46:fa:
15:1f:4d:80:c6:d8:5c:2d:6c:31:70:1b:36:ea:09:09:87:09:
6c:89:91:a7:c0:de:c5:f2:d1:d1:89:0d:57:10:d6:fe:4d:51:
65:82:e0:9a:b3:32:be:99:dd:8d:d3:57:23:eb:c3:9e:77:31:
7e:56:77:99:79:d4:7a:e9:5a:12:57:8a:97:d1:1b:8c:3f:e3:
9f:be:86:69:c2:0d:27:97:34:19:2c:92:60:61:11:f1:b6:3a:
45:7f:02:60:95:17:66:49:c9:94:31:ab:cd:03:68:a0:09:ce:
2c:b5:5e:d6:eb:39:37:fc:c1:8e:01:2c:89:84:f2:3f:da:cc:
d4:82:00:42:01:b5:51:0d:4b:af:96:65:40:c8:c5:5f:88:5d:
01:bc:51:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:56:18 2025 by rpki-client