Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
File: 1kgpREOu0W0GuGrxT1pfClCDd0o.mft (raw, json)
Hash identifier: zF0dw+dA4P1TP1TATtSh0wJdHdr2IvxRaT7//gmC3SY=
Subject key identifier: 22:F9:1D:BA:50:5B:3A:0B:58:1C:08:08:21:50:A0:F6:AF:9E:31:EC
Authority key identifier: D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
Certificate issuer: /CN=d648294443aed16d06b86af14f5a5f0a5083774a
Certificate serial: 0197493133E601CD7C684805793778342904
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 07:00:50 +0000
Manifest this update: Sat 07 Jun 2025 07:00:50 +0000
Manifest next update: Sun 08 Jun 2025 07:00:50 +0000
Files and hashes: 1: 1kgpREOu0W0GuGrxT1pfClCDd0o.crl (hash: CyPLc3Db3dGXu9Vc7lypkyhlMKq44OqnZrZa1gx9ByE=)
2: HUiYQLYoRn-P8-AKIUmGnSk_fUQ.roa (hash: ozdi5qHnRcow/nH1EVH0214AE7vAhAxmdAJcuT+IzE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:33:e6:01:cd:7c:68:48:05:79:37:78:34:29:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d648294443aed16d06b86af14f5a5f0a5083774a
Validity
Not Before: Jun 7 07:00:50 2025 GMT
Not After : Jun 8 07:00:50 2025 GMT
Subject: CN=22f91dba505b3a0b581c08082150a0f6af9e31ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c8:68:5b:96:21:23:75:b1:0a:89:c2:d2:f3:
7f:04:e1:cb:3d:3d:59:3e:4c:5d:54:d6:47:50:17:
60:b2:06:90:e6:38:77:e2:e0:ec:ab:c5:5c:ac:f8:
2c:d6:0d:19:78:78:47:36:35:46:33:24:5a:cf:77:
d1:57:97:2b:0c:d5:8e:be:a6:c7:21:b3:51:67:69:
d4:27:64:ea:1a:7b:ea:c8:24:86:e5:c1:36:e1:37:
44:40:68:b8:f4:c1:b0:05:86:2a:ee:1f:8c:46:68:
7a:bf:16:30:4c:9f:f3:ee:f1:bf:09:6c:9f:c0:9e:
d9:eb:39:05:aa:9a:fb:c0:4b:d9:48:76:c2:ee:11:
53:39:d5:5c:e4:ea:c9:23:76:a3:7e:f6:f5:a8:4a:
43:5b:c8:84:42:d1:30:35:76:08:d2:27:f8:11:d6:
36:70:00:24:b1:20:b7:4a:aa:86:81:fd:89:82:81:
58:57:21:d8:ca:ed:76:07:91:3e:97:d6:0c:70:9b:
cb:4f:93:8b:93:31:78:6b:b3:e5:53:19:c3:25:b0:
2c:26:c7:81:67:f4:69:e0:db:ce:e1:96:20:44:8e:
94:1e:63:cf:29:4f:7b:77:5b:25:50:3f:be:d8:9a:
a0:07:ca:b6:e0:a6:52:01:2c:81:da:7f:fd:c8:ea:
9f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F9:1D:BA:50:5B:3A:0B:58:1C:08:08:21:50:A0:F6:AF:9E:31:EC
X509v3 Authority Key Identifier:
keyid:D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:0a:96:39:de:c1:96:88:d1:c5:d3:3a:75:51:49:c0:17:fa:
3c:b4:cd:38:e7:4e:f7:f7:da:a1:04:84:22:0f:69:73:23:8d:
85:fc:75:23:4f:e1:56:a9:ec:46:78:bd:c3:d8:63:ac:37:02:
90:98:22:c5:b8:56:68:c0:28:8b:89:c6:ed:a6:19:ad:71:45:
5f:dc:1d:4a:26:42:40:10:03:b8:96:2a:3a:f7:d9:fb:56:1a:
a8:aa:05:bb:9a:2d:3c:9d:f6:67:48:a8:cc:b1:40:b5:61:0c:
b7:80:7c:93:02:3c:6f:e2:9f:23:7d:7a:66:18:0a:5b:b7:e8:
75:bf:ed:b7:74:82:12:21:f3:71:a2:24:82:5e:36:d5:14:0d:
be:82:c6:91:e9:51:2a:98:c9:66:39:a0:ec:42:dd:ec:c0:08:
16:ef:f8:f1:0b:a4:24:2f:91:4d:ad:e8:d1:f4:e0:8c:9d:19:
00:41:47:a9:2a:56:3e:1a:62:e7:da:1b:f7:9d:ef:da:3c:04:
41:fd:41:9a:e1:b1:8a:f5:84:a4:cd:79:33:5d:e1:bb:07:66:
bb:01:12:04:6f:77:ee:7b:43:aa:25:f9:3e:f9:87:01:d7:6d:
77:f7:1a:f4:bd:76:42:da:0a:2a:7c:77:10:2b:d8:3d:c3:fb:
2e:83:b6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:47:05 2025 by rpki-client