Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
File: MKNPnR29IKqH-w9ivStsXjDGFKI.mft (raw, json)
Hash identifier: O7k7ece6jkBiXoNms03Rs2gSgWrvglhKAqDF3YV78ec=
Subject key identifier: F5:6F:C6:F5:00:09:63:52:8E:EB:72:7F:26:2F:E9:05:3D:06:0C:ED
Authority key identifier: 30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
Certificate issuer: /CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Certificate serial: 019745F90EF6DC85CED4E85A7DDC508B389B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
Manifest number: 062E
Signing time: Fri 06 Jun 2025 16:00:39 +0000
Manifest this update: Fri 06 Jun 2025 16:00:39 +0000
Manifest next update: Sat 07 Jun 2025 16:00:39 +0000
Files and hashes: 1: MKNPnR29IKqH-w9ivStsXjDGFKI.crl (hash: rCYSQH12WZG9+SUKohQHgEOgxRACvI9qwHZq7dG1ELc=)
2: lblIM2FJQ_WVf-a4mFWu5Otgr-A.roa (hash: dTACe68AOYRTGOWM2bf2NFYllivUWP/q40LE4fNKxno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:f9:0e:f6:dc:85:ce:d4:e8:5a:7d:dc:50:8b:38:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Validity
Not Before: Jun 6 16:00:39 2025 GMT
Not After : Jun 7 16:00:39 2025 GMT
Subject: CN=f56fc6f5000963528eeb727f262fe9053d060ced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d1:22:e4:5f:5c:07:ec:f6:e7:2c:0a:43:6f:
cd:7b:6f:1d:c7:79:57:d1:bb:94:23:33:4f:ba:13:
f3:79:2d:cb:8f:a2:49:ab:af:8d:f3:47:20:1b:f6:
5d:77:52:5e:79:23:a4:31:9c:08:b8:15:c9:76:f7:
c5:73:0c:f1:61:cb:e3:5b:ae:0f:b6:bd:0b:39:d8:
9b:7b:59:90:b4:a5:d0:cc:4c:de:ba:0f:14:b4:ba:
b6:0a:8f:84:a1:e3:0d:24:21:d1:d4:d4:21:72:1d:
72:1f:4b:c7:36:25:f0:72:c5:77:55:21:8f:45:75:
0f:bf:0a:56:9a:9f:18:0d:cc:02:2b:20:22:d7:bf:
41:24:26:f2:ec:0f:2e:f5:a1:63:f7:29:e7:3a:4d:
45:11:a9:df:81:85:1c:2d:b8:59:40:b8:2d:bb:a2:
ea:ad:ca:b0:30:ce:be:b0:85:31:78:a8:86:94:05:
94:ec:19:b2:6b:1e:b8:53:e1:8a:ef:60:6e:71:be:
28:01:0b:ea:ef:82:71:d6:46:f2:65:3d:1f:ea:2d:
f8:e7:e4:18:44:bb:37:42:d5:fb:b4:e9:f6:23:4c:
53:7d:6e:e8:ea:ba:b5:c4:67:82:06:49:dd:84:be:
51:88:20:3e:48:7e:bf:71:43:fc:65:c2:51:09:59:
25:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:6F:C6:F5:00:09:63:52:8E:EB:72:7F:26:2F:E9:05:3D:06:0C:ED
X509v3 Authority Key Identifier:
keyid:30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:c4:1c:74:00:6f:09:3c:8f:ad:dc:09:c8:7c:16:47:b7:00:
fe:f5:94:7a:99:d3:bd:73:80:a3:55:91:39:26:4b:71:c6:9f:
eb:ac:43:7d:ad:3b:29:9f:3d:a2:63:ee:ca:76:24:63:98:7b:
35:19:c3:d1:79:2e:ce:96:ad:54:42:8b:76:a9:1d:ca:87:33:
9f:35:91:e4:9f:8e:a1:38:f4:9c:16:7b:3f:55:1d:c2:ec:f9:
b5:35:9e:86:da:d4:11:cc:30:dd:aa:5b:6c:8b:0b:d9:91:4d:
e6:5c:5b:a0:54:e7:70:fb:84:48:6e:12:cd:79:17:0e:31:8c:
80:5d:e6:02:18:fc:ce:1d:98:ff:18:ec:6b:f3:4b:2f:5d:2b:
68:d2:cf:bc:58:fa:df:34:13:37:c7:4f:5b:9b:d1:a5:b5:27:
13:5d:3b:8c:2d:e8:f6:c8:2e:65:f8:f6:c3:65:8b:13:77:ad:
37:47:e5:fb:72:c2:fe:b7:c7:3e:c7:9e:36:97:73:59:4a:df:
9b:28:18:6e:5e:2c:a7:a7:02:ff:09:35:8b:ba:8f:8d:1e:09:
06:c3:83:3b:34:79:34:2c:78:8b:2f:5d:1b:24:92:c4:b2:00:
5b:c0:ca:2c:a2:1d:8a:7d:24:04:ff:36:3e:21:06:1a:26:ea:
51:25:2f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:24:02 2025 by rpki-client