Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
File: itKTDR_h3UMEkf17gx3pxhaSreQ.mft (raw, json)
Hash identifier: EsnpWjDF1UZxSdSKcVI+H/nicLvB0HLk9bQ70+0J7vo=
Subject key identifier: 3A:5E:CC:65:28:8F:48:29:15:20:EE:91:C8:3D:EE:DF:E8:6E:90:55
Authority key identifier: 8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
Certificate issuer: /CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Certificate serial: 01974742D5172001234AFD6A87DC19417214
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
Manifest number: 12AA
Signing time: Fri 06 Jun 2025 22:00:51 +0000
Manifest this update: Fri 06 Jun 2025 22:00:51 +0000
Manifest next update: Sat 07 Jun 2025 22:00:51 +0000
Files and hashes: 1: BAzsPPCBy1zDTboFw5Sl-2syIOA.roa (hash: 3HXxwP+fQhhVnJuWOZekRFhU3Q46kmrc9Y0dZLDklcg=)
2: bYpyeHiVOX2l8iPl-uPkAX9zfmw.roa (hash: clblsPlZTuaRgRGxz58OPeCdg4rL7htkupWPy4rOhKg=)
3: itKTDR_h3UMEkf17gx3pxhaSreQ.crl (hash: pURZroOGwxNVqcYoO5IduzmJ7NEK/r0tv2n0TjQjSH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:d5:17:20:01:23:4a:fd:6a:87:dc:19:41:72:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Validity
Not Before: Jun 6 22:00:51 2025 GMT
Not After : Jun 7 22:00:51 2025 GMT
Subject: CN=3a5ecc65288f48291520ee91c83deedfe86e9055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:10:7b:7b:16:0f:66:75:01:79:fb:d0:84:b6:
5c:32:98:da:16:cc:08:51:ff:52:c6:8b:2a:00:22:
ad:a8:bb:a9:bb:96:28:02:42:64:a3:3c:92:e4:3b:
56:67:46:b8:a7:b1:50:de:2f:b5:c4:cb:ed:da:31:
47:b4:98:83:db:7d:73:1d:8e:c6:c1:8f:2e:26:9e:
08:33:86:84:b2:4e:1a:21:a6:01:96:3d:e2:77:1e:
5a:0c:eb:b9:2a:dd:66:5f:40:0e:ec:2a:05:1d:72:
7e:34:6c:4f:f3:db:f3:2c:80:20:ca:5c:27:13:11:
bf:34:78:93:00:df:25:f2:1b:93:73:40:df:bb:0c:
11:04:cc:e7:32:94:e6:99:67:da:92:d8:b1:73:de:
17:2d:e5:19:54:52:ce:7d:e6:f5:0e:84:4e:00:b3:
ae:09:15:7f:7d:ba:fe:54:2e:30:b0:17:a9:75:96:
10:78:6b:02:96:a3:0d:28:35:98:ab:a6:18:16:75:
7a:b9:cb:bc:e5:21:e5:7f:cf:d8:c0:06:57:89:c8:
55:22:ee:ab:7e:49:56:41:a5:36:cd:a6:35:58:20:
bf:83:4f:9b:fc:e5:22:ce:1a:9c:a2:09:40:3d:98:
88:6f:58:97:95:32:a8:48:aa:95:17:68:a4:0b:01:
67:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:5E:CC:65:28:8F:48:29:15:20:EE:91:C8:3D:EE:DF:E8:6E:90:55
X509v3 Authority Key Identifier:
keyid:8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:82:97:07:82:da:40:b7:c5:f2:af:ea:81:4b:4c:36:52:2e:
fa:af:48:44:63:18:bf:40:e5:03:1a:c2:7c:58:46:0e:fb:86:
e5:36:ff:14:b8:6a:65:be:f4:42:80:fa:1c:ff:c6:c2:82:2e:
88:a0:d4:71:28:43:ad:a6:b9:e3:b1:23:6a:34:74:ee:5a:9b:
ed:2d:bc:a4:09:34:b3:fb:d1:4f:1d:73:fb:d2:8f:28:6e:3c:
46:ee:6d:8c:62:af:bf:d0:43:88:a6:36:85:e1:43:83:3d:5b:
83:2a:ac:77:d7:b3:05:0b:a5:c4:13:ad:a0:58:2a:5c:14:a6:
98:50:9a:5a:87:33:55:99:49:1a:b7:c5:81:9c:4f:ee:6e:ec:
da:e0:2b:e2:d0:ad:0b:71:fa:33:81:2b:aa:99:97:08:03:8a:
15:33:f3:f6:9c:f4:40:39:26:23:91:4a:eb:34:8d:b2:cd:f7:
c3:49:df:87:e7:27:4e:70:97:5a:d2:4b:99:47:51:a7:cc:d3:
d7:b9:81:be:88:df:43:7d:17:f1:27:81:a4:77:05:67:e3:b5:
e9:38:8d:3f:e8:11:04:64:a8:5c:33:22:ec:c6:61:ad:65:42:
2f:96:da:6e:05:25:8f:6a:fd:ef:2c:79:ea:b6:67:77:9c:24:
3d:a0:9d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:03:51 2025 by rpki-client