Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
File: KUoc22jxVM-VQYowjILY2lB3UQk.mft (raw, json)
Hash identifier: ilFAsrqwDdSSzGhnj9IPp6Ir1hBrzquekrAKiYj/1Ak=
Subject key identifier: 4E:75:2B:95:71:D4:6D:E6:D9:70:4C:E5:AF:36:11:13:4D:71:03:20
Authority key identifier: 29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
Certificate issuer: /CN=294a1cdb68f154cf95418a308c82d8da50775109
Certificate serial: 01974967A506D03C72CFCE7B47B26F33BDF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
Manifest number: 1211
Signing time: Sat 07 Jun 2025 08:00:18 +0000
Manifest this update: Sat 07 Jun 2025 08:00:18 +0000
Manifest next update: Sun 08 Jun 2025 08:00:18 +0000
Files and hashes: 1: KUoc22jxVM-VQYowjILY2lB3UQk.crl (hash: MRh3OQCXzAoXOaxVKjcr654f4aCunI6emHEwat2WiUk=)
2: KZGod_BqVRdmwfNvBiSAHniE4gQ.roa (hash: 6XoOJiv494XxgxSZpKNQsumj729QUswWc6xs9n2QuB0=)
3: M1t61zFriLUhV6w-rpKhVc5pbtI.roa (hash: SMrR4aeWQHwd+VhRNHme2dIKoEpbr73IPaO3PrfJOhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:a5:06:d0:3c:72:cf:ce:7b:47:b2:6f:33:bd:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=294a1cdb68f154cf95418a308c82d8da50775109
Validity
Not Before: Jun 7 08:00:18 2025 GMT
Not After : Jun 8 08:00:18 2025 GMT
Subject: CN=4e752b9571d46de6d9704ce5af3611134d710320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a0:2a:60:1a:57:b2:c1:55:35:b3:16:e2:50:
ff:f5:98:3e:f4:36:f3:33:a8:ef:93:bd:88:5b:18:
f0:df:a7:2c:69:9d:5c:ac:5a:73:25:67:0c:71:d0:
81:b3:54:dc:b6:4e:a3:12:43:ae:a5:de:32:71:6a:
43:ae:9d:71:ea:2b:b1:aa:3e:aa:cd:48:0b:d2:2f:
c7:b9:50:6d:b5:e1:e3:b2:59:96:57:45:17:da:f6:
35:e5:cb:f8:cf:a3:04:c2:13:97:f2:c2:05:66:1e:
cf:81:f9:56:fe:2f:6d:b6:44:54:17:47:47:f7:3a:
3f:5c:ac:bd:10:6c:6c:26:cb:92:da:d9:9c:29:02:
4d:1b:bf:13:9e:bd:e9:d7:a0:8a:9b:52:05:18:6f:
82:a2:d0:30:c1:c2:4b:90:47:a2:6e:9a:44:e7:78:
0d:21:70:3c:90:28:3b:8a:78:49:17:e8:42:c4:33:
49:ec:b9:02:94:1f:f8:ba:4c:bc:f4:5b:ee:6a:13:
d7:62:34:9d:22:af:a2:97:06:2c:df:09:f1:c6:1b:
a1:d5:12:08:ae:33:d1:47:a7:6d:6b:21:4d:7b:70:
3b:9a:9c:9b:36:80:28:44:73:e4:a7:a8:d4:1e:f7:
60:b1:3c:a3:84:d2:cf:f9:f8:8d:58:f8:1b:a2:f5:
41:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:75:2B:95:71:D4:6D:E6:D9:70:4C:E5:AF:36:11:13:4D:71:03:20
X509v3 Authority Key Identifier:
keyid:29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:6b:f5:59:3d:37:3c:aa:e1:af:d4:20:ed:ca:63:f7:e6:79:
73:e3:b5:d6:69:c8:d8:dd:6d:0e:ac:fe:76:80:47:66:ee:b7:
4d:6e:6d:2e:37:d9:3a:dc:45:ad:2a:d0:57:6c:59:2f:eb:59:
68:7c:ea:8d:c4:0f:d7:f8:0c:24:ed:1d:8c:b9:a6:f5:0c:12:
e7:05:42:20:ff:6b:1b:20:7f:3a:ec:cb:a6:b2:35:90:15:20:
5e:8c:0b:05:c9:3f:ff:f6:75:82:4a:d9:e3:04:64:56:51:8e:
cf:4d:07:d2:1c:82:02:13:cc:57:99:00:f0:67:4b:b5:cd:5e:
21:3e:a9:62:4e:72:2d:4a:7a:6f:df:6a:50:af:88:5b:8f:6f:
10:bf:1b:69:45:8b:b5:d4:3d:d7:32:db:13:89:53:77:58:d1:
fd:fc:f5:51:60:98:de:32:db:ca:6d:38:9a:19:9a:25:50:17:
3e:80:a6:99:1a:82:d6:4a:4d:4f:98:34:75:d9:98:87:72:71:
ca:12:87:88:99:c2:f5:01:f5:5a:8d:13:bf:13:55:04:62:b7:
46:28:9c:c8:bb:ba:f0:d9:87:92:b6:c6:96:38:20:7a:c2:7f:
e3:2c:e0:b2:f9:17:c0:57:a0:97:02:21:49:0c:cc:a0:5d:4e:
b9:31:58:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:27:36 2025 by rpki-client