Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft
File: 1KAH7S_gjUM-DwoC9DynrLJvWg4.mft (raw, json)
Hash identifier: kaiXGBveo+HaY0VgRxOiLIcz0piX6e1rG6X25/k6974=
Subject key identifier: C2:7C:A3:49:89:33:2B:F4:09:3B:57:9D:76:28:6D:2B:A1:CB:F5:11
Authority key identifier: D4:A0:07:ED:2F:E0:8D:43:3E:0F:0A:02:F4:3C:A7:AC:B2:6F:5A:0E
Certificate issuer: /CN=d4a007ed2fe08d433e0f0a02f43ca7acb26f5a0e
Certificate serial: 019748C31D3348DA1E97DD5C0ED45E9AAB29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KAH7S_gjUM-DwoC9DynrLJvWg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft
Manifest number: 03C0
Signing time: Sat 07 Jun 2025 05:00:35 +0000
Manifest this update: Sat 07 Jun 2025 05:00:35 +0000
Manifest next update: Sun 08 Jun 2025 05:00:35 +0000
Files and hashes: 1: 1KAH7S_gjUM-DwoC9DynrLJvWg4.crl (hash: kXUkYZgLl0rQdk4OfbE2hRFTY70ZIwAXxuXgZ4M+SmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft
rsync://rpki.ripe.net/repository/DEFAULT/1KAH7S_gjUM-DwoC9DynrLJvWg4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:1d:33:48:da:1e:97:dd:5c:0e:d4:5e:9a:ab:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4a007ed2fe08d433e0f0a02f43ca7acb26f5a0e
Validity
Not Before: Jun 7 05:00:35 2025 GMT
Not After : Jun 8 05:00:35 2025 GMT
Subject: CN=c27ca34989332bf4093b579d76286d2ba1cbf511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4d:04:34:e0:6a:6f:4d:b1:e6:fc:e0:81:11:
1c:30:aa:f8:af:da:7b:55:39:73:6f:1b:e5:7e:ad:
0b:0f:1a:07:a2:dd:82:d3:c4:b2:12:d3:9e:29:82:
7d:43:24:3a:ac:48:05:6f:62:ad:7a:a0:46:91:15:
17:91:a2:95:55:f8:57:4b:bc:8b:48:05:05:7c:b0:
4c:4d:7a:2d:df:93:59:9e:d0:41:a6:2e:ab:ab:f2:
d3:ed:4a:d3:ff:e3:b1:44:4f:67:8d:5b:21:9c:81:
c6:72:61:1b:5d:65:0c:7c:68:72:90:85:c3:71:05:
e8:22:dc:43:a1:12:4b:58:67:00:c7:fa:0b:15:a8:
d2:7d:07:8a:7c:f8:77:44:3e:e6:e9:09:04:47:30:
ac:00:21:56:dd:14:b1:70:16:e7:de:fa:a0:1b:04:
8a:18:6f:ff:57:61:32:e2:93:2c:c3:ab:7d:8a:f8:
1a:47:33:ed:fd:58:54:0f:1a:e4:9a:ca:80:1e:06:
8a:0f:a7:2a:49:89:52:95:21:6e:9f:c3:8f:51:18:
14:c7:85:12:6f:06:22:f8:4e:2d:97:6a:91:22:e8:
35:4d:22:fa:33:0a:2f:db:64:9f:8b:5a:26:5f:bb:
b2:49:f1:bc:e4:06:3e:21:1e:ff:e9:0b:9d:7d:ac:
17:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:7C:A3:49:89:33:2B:F4:09:3B:57:9D:76:28:6D:2B:A1:CB:F5:11
X509v3 Authority Key Identifier:
keyid:D4:A0:07:ED:2F:E0:8D:43:3E:0F:0A:02:F4:3C:A7:AC:B2:6F:5A:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KAH7S_gjUM-DwoC9DynrLJvWg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:de:a2:7a:98:e9:ee:8c:fd:23:c5:06:e7:9e:d0:7f:a0:86:
9f:98:5a:b1:aa:fa:bc:cb:fc:63:bf:ab:9c:77:58:16:4c:88:
6d:d2:3c:53:a8:46:95:e4:8f:d8:b3:a6:e7:16:74:b4:f8:e0:
f2:f2:43:6b:54:74:50:4e:c2:ed:d1:94:f6:68:d7:29:4b:a9:
47:ff:e5:51:6a:8d:e8:58:b8:4a:7f:1c:e0:fd:25:cd:42:0f:
b6:d8:4d:18:80:56:37:d9:cd:18:f5:36:42:a1:ba:49:26:43:
0d:0e:ad:eb:41:6e:17:30:f9:98:bf:ca:b9:50:a1:28:f7:f2:
55:1d:43:ef:6f:bd:fe:cb:31:40:20:66:11:97:c5:7a:64:ec:
83:a0:4a:c1:7d:89:0c:33:d6:11:2e:f8:1d:ad:61:96:f4:40:
d0:cf:76:43:00:f1:fe:d3:8a:fd:20:18:2f:ed:86:a7:9f:25:
b5:2b:c6:27:a9:c2:59:d0:b0:a9:fc:11:25:73:89:2c:37:3a:
a4:fa:1d:6d:79:b5:df:2f:89:cc:89:83:70:1f:b2:27:4f:aa:
79:25:34:54:9e:94:d9:38:c1:5a:86:76:57:4d:e8:00:aa:d7:
58:8a:5d:5a:a0:5b:84:87:57:58:9d:70:35:c1:db:cb:98:b7:
ff:23:f5:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:38:08 2025 by rpki-client