Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
File: KhmTnyGLthMV6bOzez24WWCXXRQ.mft (raw, json)
Hash identifier: 6juHhmhLJ/FWfY02Kd4ipd1jsDIuW2iV2gfko/rpsfI=
Subject key identifier: 08:BE:19:62:C3:AF:9D:28:E4:AC:28:47:1B:00:ED:A6:D7:86:8E:D9
Authority key identifier: 2A:19:93:9F:21:8B:B6:13:15:E9:B3:B3:7B:3D:B8:59:60:97:5D:14
Certificate issuer: /CN=2a19939f218bb61315e9b3b37b3db85960975d14
Certificate serial: 0197499EF360E12C663EDB04670FE06F678A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
Manifest number: 0F77
Signing time: Sat 07 Jun 2025 09:00:43 +0000
Manifest this update: Sat 07 Jun 2025 09:00:43 +0000
Manifest next update: Sun 08 Jun 2025 09:00:43 +0000
Files and hashes: 1: ICnu7sUwpSSY15uEDFVsgADJKAc.roa (hash: OMIgQNcZqzMDzM+I0pk5KXUbjDdmpf89SBEO3vtX8ZE=)
2: KhmTnyGLthMV6bOzez24WWCXXRQ.crl (hash: JXvNB4KBdWRU5LAcIPOXuSit4XTZU0TN9yxiOVyfI/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:f3:60:e1:2c:66:3e:db:04:67:0f:e0:6f:67:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a19939f218bb61315e9b3b37b3db85960975d14
Validity
Not Before: Jun 7 09:00:43 2025 GMT
Not After : Jun 8 09:00:43 2025 GMT
Subject: CN=08be1962c3af9d28e4ac28471b00eda6d7868ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:78:6d:17:ed:39:e1:3b:1c:5d:e8:ab:87:29:
3a:9f:dc:1f:79:3a:89:0a:ce:24:9a:ac:2d:de:a4:
e9:d0:af:ad:fa:bd:33:ee:5b:ed:b0:a9:3d:1e:87:
b9:64:82:c8:e8:b0:74:f8:47:eb:96:09:36:de:d4:
f6:0e:ec:44:3a:64:02:36:71:51:e2:ac:c1:4e:9e:
dd:50:6b:f1:33:cf:89:52:21:e1:68:08:27:8a:1d:
10:98:91:26:75:fd:27:c1:6e:2c:aa:ce:94:9f:93:
7a:f9:59:76:ed:a0:a8:d6:4c:e4:91:c8:6d:2b:37:
ec:25:3a:98:3f:f5:4b:88:ad:15:5a:25:2f:71:45:
a7:b8:66:71:80:0a:92:ee:18:7c:eb:45:80:ad:5e:
c0:75:6c:65:7f:f7:7d:ec:c8:0c:c4:d3:62:de:8b:
ca:f6:46:ca:e7:c8:08:1e:64:1e:bf:61:69:4d:0d:
3b:70:44:80:4e:56:fa:13:19:e1:c1:c2:ee:30:f2:
5e:a4:c8:dd:8e:bb:77:51:41:4e:6b:fc:d7:d3:c6:
04:6e:d3:37:c8:25:1e:b2:67:80:07:1b:df:c6:d2:
e4:07:4d:64:24:38:4e:ad:9c:70:d3:00:69:90:79:
85:61:6d:a3:fe:ee:fe:ed:16:bf:8b:d3:f6:a6:3c:
f4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:BE:19:62:C3:AF:9D:28:E4:AC:28:47:1B:00:ED:A6:D7:86:8E:D9
X509v3 Authority Key Identifier:
keyid:2A:19:93:9F:21:8B:B6:13:15:E9:B3:B3:7B:3D:B8:59:60:97:5D:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:b1:8f:95:e7:1a:ad:1a:25:92:e3:dd:b8:2d:7b:65:3f:f8:
f3:d9:54:e4:73:f7:7f:82:f8:33:b4:7a:2e:67:18:d1:7d:76:
0c:81:30:bb:2e:c7:82:42:60:d1:59:30:aa:4e:50:73:ed:f2:
84:49:f0:33:8a:97:d6:fa:ce:a3:df:4d:bb:0e:9e:b6:ac:fc:
62:2a:42:2b:12:a4:5c:75:c2:10:ec:f6:71:bb:c6:75:75:79:
d9:66:fc:41:48:26:df:51:88:4c:65:ef:1e:4d:88:ac:ed:e7:
4c:d2:9c:25:74:5c:7b:8a:35:51:59:85:f4:77:42:d8:3f:c1:
45:29:e9:14:d7:7d:31:9e:f8:1b:73:c4:e5:80:d8:2a:e3:76:
40:05:f6:e1:a7:5a:d2:41:a8:29:1f:98:d4:4e:36:58:0e:ad:
75:9d:91:cb:ef:d7:4e:fc:83:e4:97:74:67:09:6f:af:ab:37:
74:2e:2b:73:da:00:83:f0:bb:be:24:2b:22:5e:10:11:61:ad:
28:0a:7b:6e:4d:63:bf:7e:5c:cc:ba:d8:4f:bb:0d:42:67:c2:
78:b9:7e:49:b6:ed:be:7c:85:21:d4:9e:f6:0f:5a:80:9f:b4:
66:5a:7c:a8:c1:86:ac:ec:90:21:48:87:a0:c2:6e:85:1c:9e:
0c:f0:b5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:55:56 2025 by rpki-client