Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
File: knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft (raw, json)
Hash identifier: 9to7bOSrHjg5RnRTYluHIOGfT1PBF3BlnjYTGdpV9rg=
Subject key identifier: A5:FF:7A:FC:F2:3A:08:27:F6:83:D7:A7:64:03:76:3C:5B:17:61:0C
Authority key identifier: 92:7B:1E:56:AC:7D:07:80:2C:45:67:C4:67:94:35:15:9B:42:20:96
Certificate issuer: /CN=927b1e56ac7d07802c4567c4679435159b422096
Certificate serial: 019762B9FBA126BE3D4700E0895179207048
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
Manifest number: 158B
Signing time: Thu 12 Jun 2025 06:00:45 +0000
Manifest this update: Thu 12 Jun 2025 06:00:45 +0000
Manifest next update: Fri 13 Jun 2025 06:00:45 +0000
Files and hashes: 1: ZZutCOlh3Ali7o57VArVQ-r6xEQ.roa (hash: Z8oFv1O8k+i1SuyJDIP9mmTPP/Uv75FEkkBOgolEt4M=)
2: knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl (hash: r4MPBFRGRiB042iVxCPQP1F2sN4AqE/q8ABgfui+bUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 06:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:b9:fb:a1:26:be:3d:47:00:e0:89:51:79:20:70:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=927b1e56ac7d07802c4567c4679435159b422096
Validity
Not Before: Jun 12 06:00:45 2025 GMT
Not After : Jun 13 06:00:45 2025 GMT
Subject: CN=a5ff7afcf23a0827f683d7a76403763c5b17610c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0c:aa:16:f8:58:bf:54:49:27:ea:cf:24:20:
78:d2:b4:0c:29:35:46:a2:ac:19:0a:b8:d5:71:27:
b5:ac:eb:7d:1e:53:95:8a:bc:b1:a1:2c:36:38:23:
1d:24:d8:99:d3:67:ca:6a:b2:9e:9a:29:bd:08:42:
96:8b:ea:2c:ae:46:90:f6:19:f8:fa:51:fc:a7:0e:
06:cd:28:de:b8:cf:ac:95:25:25:2c:07:7c:b6:5f:
26:78:1b:4e:65:1b:65:b3:05:7f:43:07:f6:6c:19:
9f:5c:15:67:ae:00:0c:cb:b7:25:27:f5:59:13:37:
9f:d3:b2:fa:05:d9:84:e9:d5:b5:86:36:31:27:5a:
80:f3:f1:a8:f9:42:bc:cf:d7:98:4e:c2:31:de:0d:
b2:66:67:24:f5:aa:6b:d5:a7:aa:9e:d6:3f:03:e3:
53:5f:a7:49:da:39:83:54:ee:5e:42:8c:c6:e2:8c:
db:13:eb:eb:19:65:fd:9e:84:f0:ee:21:45:09:97:
c9:27:bd:38:30:6d:31:93:2e:95:f7:e7:c7:de:10:
39:14:45:45:48:23:f5:3a:6e:ee:3a:ca:c0:69:36:
e8:57:5d:b3:90:c7:1c:bd:88:33:49:49:23:a1:57:
4d:dc:c3:b9:3d:fc:cb:da:73:91:12:fd:fd:92:d9:
29:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:FF:7A:FC:F2:3A:08:27:F6:83:D7:A7:64:03:76:3C:5B:17:61:0C
X509v3 Authority Key Identifier:
keyid:92:7B:1E:56:AC:7D:07:80:2C:45:67:C4:67:94:35:15:9B:42:20:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:1e:5f:7f:b0:8e:3b:86:d5:a2:e7:d4:df:71:8c:80:9c:9d:
58:ab:01:60:a5:2c:57:2c:1e:76:61:b1:1a:6a:0c:c8:61:95:
d2:c8:1b:b9:df:8b:e2:6d:ef:62:f2:b6:c3:77:7c:d1:15:41:
01:91:02:49:fc:64:02:83:63:96:76:81:3c:c9:d3:68:6f:98:
bb:94:69:2d:ba:ac:42:c7:26:26:3b:5c:f3:12:b2:68:4e:92:
d4:1c:47:cf:b6:f0:75:45:4f:54:7a:13:83:c8:6a:97:06:93:
04:d5:6c:24:13:c3:d3:f1:5f:54:c7:98:aa:b5:18:d0:b3:52:
86:ad:da:7c:ee:97:4e:89:e3:33:27:ac:12:69:0d:95:1e:6a:
e8:01:cc:45:f8:94:3d:b6:c2:8d:01:b5:cc:0a:25:9e:43:aa:
67:77:f3:39:ae:88:c0:32:72:be:80:c3:07:d4:8a:e8:3e:2c:
05:42:f5:49:0b:2f:d4:7b:99:38:62:6b:1a:e4:ca:ac:5b:96:
1e:90:3f:82:86:4d:4d:d0:70:c8:fb:1f:5e:6c:f4:37:d0:4e:
6e:52:90:aa:8f:23:6c:31:53:fe:c3:58:fc:f7:ea:18:53:a1:
3e:d6:03:a1:5f:fa:a4:6b:92:b4:49:f3:46:e3:e3:96:68:08:
5b:2d:50:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 12:37:15 2025 by rpki-client