Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
File: ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft (raw, json)
Hash identifier: Htm3qtjrY6IY5ckUCOnrlkvkn0fPR/+gwHiD0PXi2ZU=
Subject key identifier: B6:70:AD:02:4B:89:C4:8C:20:59:17:6B:B4:77:69:0B:E0:0D:4A:C9
Authority key identifier: 72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
Certificate issuer: /CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Certificate serial: 01964B903E0655DBC44ABB74B443330E4F8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 01:01:06 +0000
Manifest this update: Sat 19 Apr 2025 01:01:06 +0000
Manifest next update: Sun 20 Apr 2025 01:01:06 +0000
Files and hashes: 1: C324i-QiLStBQtj8SlSM_WsRhgA.roa (hash: 57MQFbrSaZ/38tAVb1G6ejMsXoqYvy5V/+YD5WOhbAY=)
2: ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl (hash: 9EdgzzYFtJPW/S/hqnvL4NMXFI56WOecVuDLnGko3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:90:3e:06:55:db:c4:4a:bb:74:b4:43:33:0e:4f:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Validity
Not Before: Apr 19 01:01:06 2025 GMT
Not After : Apr 20 01:01:06 2025 GMT
Subject: CN=b670ad024b89c48c2059176bb477690be00d4ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6c:77:34:79:0c:09:5f:8b:88:fc:23:cd:f7:
19:53:7f:a2:7b:61:f2:4f:02:35:a0:05:7d:5c:ae:
fa:44:8d:76:d9:d3:8e:4e:14:97:3d:56:dd:a2:67:
d2:00:23:c3:81:b0:1a:cb:5f:1a:a4:f6:6a:0c:3f:
bf:05:3c:a7:d7:2f:16:f6:96:c7:39:19:7c:c9:ed:
ba:7b:c1:ba:23:8a:00:90:07:0a:66:f2:e2:51:f9:
e1:da:41:ca:8f:9e:e7:8e:3b:13:41:42:46:95:51:
0a:0c:da:70:b5:e9:86:8a:3f:8b:22:9a:eb:27:5b:
f9:86:50:5e:a7:e5:ca:60:d2:11:0f:fa:10:b6:29:
76:4a:b0:f3:21:6b:91:41:b9:8d:23:6f:8a:1e:9e:
37:0d:eb:53:e0:a9:73:63:bf:73:68:cb:88:e6:23:
a0:d4:29:23:ee:ed:81:b4:01:e7:1a:98:16:e3:2e:
4c:0f:7d:ff:21:b3:77:40:63:4a:2a:e9:22:5e:a8:
4c:7f:e5:c0:d4:34:e2:c4:e6:bc:5f:e8:d3:5d:85:
e7:89:ae:a2:0d:6b:68:7c:96:9f:81:49:52:32:f5:
ea:ab:f8:11:42:b8:c5:ee:3c:e4:09:08:0a:44:78:
1a:21:12:cc:6a:03:84:2c:df:61:1e:4b:08:04:8e:
64:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:70:AD:02:4B:89:C4:8C:20:59:17:6B:B4:77:69:0B:E0:0D:4A:C9
X509v3 Authority Key Identifier:
keyid:72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:c7:30:c4:2c:cf:a7:29:b7:b0:ba:b3:e3:a4:e6:47:82:59:
88:ac:aa:e2:6d:72:27:a7:3b:34:9c:d0:ca:0d:e5:03:49:75:
22:f4:fd:88:af:db:9a:57:37:bc:cd:23:32:00:fb:a6:7a:48:
ae:49:3e:5b:50:19:a4:e1:75:02:f9:7f:ab:e1:43:34:b2:2d:
b9:33:88:71:c5:3f:80:be:ec:e4:b0:11:a6:6d:8c:d5:40:db:
8f:74:5c:ce:b1:5f:b3:0b:e4:ee:86:0a:c3:ad:1a:e1:9b:9d:
d4:a2:6f:77:ff:02:27:67:80:2a:9d:c7:88:dc:ce:8e:12:e4:
b8:c7:5b:e4:1c:06:2d:c0:6b:71:91:e4:63:3a:1d:cb:0e:5f:
aa:08:16:28:ff:86:72:4b:a2:92:d0:84:64:70:4a:c9:54:57:
92:ce:e1:c1:31:2c:af:d9:35:b1:2e:cc:95:8d:86:43:63:fe:
8c:9e:f4:fe:9e:ed:11:d1:c9:7b:70:3f:f5:f9:15:87:8c:f2:
13:9f:4c:30:a7:6b:f8:42:fa:b6:06:a5:d3:9a:1c:cb:71:d5:
cb:76:7f:85:59:8c:5e:1b:6b:f7:85:7b:fb:c7:e3:e4:8d:45:
1b:74:c4:5b:b6:02:ee:18:28:7b:fc:d5:d7:23:f6:e4:9f:f5:
d1:0f:06:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:23:01 2025 by rpki-client