Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
File: kh2gU5IfUoNniBiPgvYt1aqXP-k.mft (raw, json)
Hash identifier: rnlZQ5KS8awATDbzxd9vf3KKP73TvMz4tLdS7xzoJ8I=
Subject key identifier: 15:4A:CF:08:88:BB:E3:EB:83:0B:68:E7:A9:46:B9:39:33:BB:A6:6E
Authority key identifier: 92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
Certificate issuer: /CN=921da053921f52836788188f82f62dd5aa973fe9
Certificate serial: 01974AE8B912740B41B9CB8752A79E14C395
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
Manifest number: 0E42
Signing time: Sat 07 Jun 2025 15:00:55 +0000
Manifest this update: Sat 07 Jun 2025 15:00:55 +0000
Manifest next update: Sun 08 Jun 2025 15:00:55 +0000
Files and hashes: 1: kh2gU5IfUoNniBiPgvYt1aqXP-k.crl (hash: Ogp3whd7yUjbgRa74UkslzOOM7kRUWcoR6oWzN6NIEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:b9:12:74:0b:41:b9:cb:87:52:a7:9e:14:c3:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921da053921f52836788188f82f62dd5aa973fe9
Validity
Not Before: Jun 7 15:00:55 2025 GMT
Not After : Jun 8 15:00:55 2025 GMT
Subject: CN=154acf0888bbe3eb830b68e7a946b93933bba66e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0a:11:06:91:7d:a5:02:1c:e9:07:44:17:85:
de:93:4b:73:2f:6a:ac:3b:68:a6:7e:30:f0:a8:4e:
b0:df:0a:07:63:11:45:fa:39:82:f4:bc:b0:68:13:
f0:e0:9b:f9:62:8e:48:49:b8:d8:e7:7a:d3:32:82:
7a:ad:a5:85:e3:68:5e:cc:07:a4:ff:79:8a:d7:c6:
ca:4f:3d:7e:5b:5a:0c:4b:3d:2f:bf:ab:6c:08:2a:
24:78:64:bf:df:75:4d:61:b1:88:4a:0d:0c:37:be:
41:c4:6f:a8:c0:7f:1c:e5:4d:bd:cf:2d:31:bf:ea:
9a:2e:58:bc:07:8b:c6:8e:17:f3:d8:a0:c1:59:8c:
38:c2:3a:07:f7:78:ca:58:a5:46:7a:1f:bd:ed:fc:
97:ff:58:48:70:49:f3:00:ba:38:66:29:d5:74:77:
6d:70:87:5d:37:cb:a6:5b:fc:8b:51:1c:4c:a1:08:
fa:3f:67:d3:76:d5:24:1b:fb:43:45:15:11:77:c6:
77:71:df:bc:ae:bd:11:d0:fb:fc:9d:86:29:27:ff:
f1:30:98:d1:75:5a:43:ca:a3:a1:0c:b8:48:39:33:
52:3e:2e:9a:68:bc:9e:c9:ef:9b:f8:6d:67:6f:d2:
5c:07:5c:10:21:25:13:35:27:56:44:af:8f:19:02:
60:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:4A:CF:08:88:BB:E3:EB:83:0B:68:E7:A9:46:B9:39:33:BB:A6:6E
X509v3 Authority Key Identifier:
keyid:92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:b1:e3:17:3b:64:33:72:af:f9:7e:c8:e1:03:c6:25:f5:94:
0e:14:49:ce:60:5d:c9:db:71:87:77:68:2f:a4:f7:cd:89:f9:
de:8e:f4:cf:16:b9:8c:5c:b5:ba:df:8a:7c:67:8a:3b:d9:89:
66:91:9b:62:55:d6:34:c2:c1:f3:b6:5a:69:bb:ff:8a:13:34:
b2:71:79:9b:58:4f:61:fe:60:eb:8a:2a:0a:60:1f:6a:05:0d:
b8:73:5d:84:6b:c9:6c:e3:9f:0b:af:e9:99:4f:dd:55:62:25:
5c:ec:24:5f:92:7d:41:8e:1e:96:9e:68:b0:59:71:33:8a:e3:
58:28:73:bd:36:df:5e:c2:3f:40:a1:c1:ba:16:ff:1f:b6:6e:
1d:71:b0:ba:f0:cd:11:0e:57:27:58:c1:1d:00:c5:9f:11:59:
47:67:dd:81:2e:3a:c5:3e:4d:1f:02:f7:1a:ee:a9:b1:86:e8:
31:05:74:f9:35:41:e6:04:50:fe:f3:cb:9f:9c:4f:36:09:50:
68:fd:85:8b:13:ab:d7:43:47:91:8f:70:f9:7b:75:22:ec:70:
44:51:66:42:e1:33:95:a8:a7:84:f2:85:91:07:42:c0:5c:82:
38:fd:60:95:8b:15:62:60:09:00:9e:59:a0:dd:89:e1:cc:19:
de:ef:8c:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:32:25 2025 by rpki-client