Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
File: KkRyM2ydAqSIzdd1NNZfsUZewJo.mft (raw, json)
Hash identifier: 5rwfrtYoRSYliReWqX+ZWUpXlWVPZ4dbePUZ2Ul0wcc=
Subject key identifier: C0:06:AB:D1:69:E2:45:F6:E6:41:CE:3A:10:53:99:96:BF:3F:40:20
Authority key identifier: 2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A
Certificate issuer: /CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
Certificate serial: 01974A7B45D6E728D3DE5E2EA4AF39C39E04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 13:01:21 +0000
Manifest this update: Sat 07 Jun 2025 13:01:21 +0000
Manifest next update: Sun 08 Jun 2025 13:01:21 +0000
Files and hashes: 1: KkRyM2ydAqSIzdd1NNZfsUZewJo.crl (hash: mFqbQVP6msaFE+idXsR4o0TPxS5RHcF8rAb7WfRTQi8=)
2: _x206HZGagtA6dAvfxStsmKc3n4.roa (hash: b78aj5rvx2Xy9g+pAEN4tSwQJDBl/+csOAL8uop4FGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:45:d6:e7:28:d3:de:5e:2e:a4:af:39:c3:9e:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
Validity
Not Before: Jun 7 13:01:21 2025 GMT
Not After : Jun 8 13:01:21 2025 GMT
Subject: CN=c006abd169e245f6e641ce3a10539996bf3f4020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:89:0a:2f:29:d9:e6:dd:12:72:f7:37:b5:7c:
c2:f6:4c:e5:ef:e4:a3:0e:f4:1e:b9:f1:3d:9f:6c:
81:04:fb:aa:a5:ac:80:5b:3c:62:cf:ae:4b:2f:28:
5c:eb:dd:86:99:d2:5d:8b:05:75:ca:e6:e5:0b:21:
fc:c0:d5:82:89:e2:7a:26:d0:20:65:2c:76:58:a1:
bf:d2:0e:fe:10:d7:96:9d:f0:92:d0:f9:cd:ab:71:
63:8d:e4:be:cf:5e:07:48:0a:07:21:1b:13:b5:0c:
b9:e4:32:b4:6f:1d:82:ff:7e:c4:1b:3b:88:ce:b4:
0f:8c:50:1c:0c:61:00:8f:b0:b4:9d:d2:36:c2:2d:
34:8a:48:46:6c:e7:c0:61:d6:af:16:0a:28:78:2e:
89:fb:01:02:56:bb:1e:e3:42:d8:3e:2f:50:61:d0:
7c:f7:4f:63:9b:0b:9e:a2:5c:9b:67:94:f1:06:20:
81:ee:c3:7f:70:29:63:85:8a:d1:ce:7f:e3:35:06:
55:06:e2:cf:0d:d7:db:31:2f:7c:3f:46:33:25:11:
b3:bc:60:6d:b4:20:2a:0d:e9:a5:2b:f3:a9:b4:1a:
f9:a1:7b:95:ae:cd:86:39:d1:33:fd:2f:ea:53:d7:
5b:28:e3:2e:88:22:16:43:54:0f:a3:41:d0:b8:3d:
92:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:06:AB:D1:69:E2:45:F6:E6:41:CE:3A:10:53:99:96:BF:3F:40:20
X509v3 Authority Key Identifier:
keyid:2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:e4:f8:98:23:0e:77:2d:6e:b3:2b:2d:12:14:1d:d6:03:9c:
9c:2e:fa:5d:ed:d6:96:b9:76:56:b6:dd:51:a9:6d:55:fb:f8:
cd:6f:b1:ed:6b:d1:6f:a4:4b:7b:be:b8:31:93:5e:62:65:d1:
22:a4:a9:0e:39:cc:d5:78:07:be:73:7c:8e:e9:ae:96:d6:d7:
f7:a9:ef:bb:cc:5f:26:e2:c3:05:4c:5b:35:45:fc:c8:c8:fd:
e9:bf:f1:db:7a:ac:dc:af:a8:26:c5:e9:8e:61:0a:aa:43:7a:
b7:2a:74:43:03:3b:62:79:7e:1b:09:2d:2c:93:ea:d0:5e:68:
b4:97:f0:b0:dc:73:16:a7:3e:eb:87:d6:58:b1:94:dd:be:2a:
00:d5:33:27:d7:b1:fe:ed:72:0e:f4:1d:8a:1b:d7:d9:d3:99:
16:ea:1b:f3:60:19:f9:9a:98:0d:9c:0d:5c:5b:de:40:25:f7:
03:39:f4:a8:22:a9:09:85:1f:a8:d8:39:9b:f1:c1:0f:89:b8:
54:1a:01:7f:c8:7b:d8:59:01:86:19:3a:2c:50:5e:0d:3b:99:
22:be:a3:6e:4c:21:63:5b:aa:d7:7a:74:70:48:8c:87:b5:43:
a6:63:0d:3e:9d:c5:c1:21:82:d5:fb:f3:fb:4c:e1:24:43:4f:
ca:79:e2:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:00:22 2025 by rpki-client