Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
File: RKO0P2R-HncUzRMHZMu8SBTnoUg.mft (raw, json)
Hash identifier: 6o7Z0g5f4wwC2dUQVx+LyjH7f4r5Du0/uMIrNV0sUlM=
Subject key identifier: C4:55:FA:A8:D4:F7:FE:88:26:6C:3D:AF:CD:A3:C8:09:65:53:41:DC
Authority key identifier: 44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48
Certificate issuer: /CN=44a3b43f647e1e7714cd130764cbbc4814e7a148
Certificate serial: 01960B67ABF50F7DE0B8771EE265BDBB705F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
Manifest number: 14DC
Signing time: Sun 06 Apr 2025 14:01:05 +0000
Manifest this update: Sun 06 Apr 2025 14:01:05 +0000
Manifest next update: Mon 07 Apr 2025 14:01:05 +0000
Files and hashes: 1: KrEyLtzd_FGxXKe36EuPBXxaKHA.roa (hash: ADivn+VbvpgE3fUtfn8Xzz0qtLuBXCOdiCI9IztCcUQ=)
2: RKO0P2R-HncUzRMHZMu8SBTnoUg.crl (hash: xdazsEmYYvQ3k+k+nkFjb8xKq5vqgwMfDKFLN6u3l+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 14:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0b:67:ab:f5:0f:7d:e0:b8:77:1e:e2:65:bd:bb:70:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44a3b43f647e1e7714cd130764cbbc4814e7a148
Validity
Not Before: Apr 6 14:01:05 2025 GMT
Not After : Apr 7 14:01:05 2025 GMT
Subject: CN=c455faa8d4f7fe88266c3dafcda3c809655341dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5d:87:b0:16:d3:fe:18:77:1b:c0:e8:c1:ff:
35:78:51:ef:cb:46:13:c7:80:93:08:ba:62:af:76:
11:47:52:af:2e:ef:22:e5:07:85:f3:47:23:3f:5b:
4f:bc:f6:2e:ea:84:30:d5:61:12:17:87:ee:a1:e4:
a5:b5:37:36:ff:01:eb:a5:9e:1a:b6:bf:85:f2:9f:
75:17:c2:7c:74:ff:55:df:bd:ec:a7:99:14:3d:48:
2b:16:83:35:9d:71:4c:48:02:60:08:9a:cd:71:ef:
03:12:8c:5d:a5:8b:04:b5:f5:0f:14:e1:e3:e9:9e:
7b:59:28:19:26:6e:3c:b8:52:74:82:5d:d3:b3:73:
9a:be:b0:14:30:88:9a:91:fb:15:a2:5b:d8:3f:81:
17:cb:d2:ed:27:01:f7:a9:d9:04:cd:9d:05:b2:b5:
37:40:4c:61:cd:ac:43:c0:a0:78:98:84:2b:38:3f:
8f:2e:9b:23:ff:7a:5c:16:9c:a4:7f:c7:8b:2f:c2:
64:b8:39:33:07:b9:48:8c:1b:11:7e:7c:b9:3c:c0:
5c:8b:77:1d:49:38:dc:c4:3a:c4:d5:48:a6:04:8d:
f2:d6:d4:39:12:8f:27:21:b4:c7:9a:68:b4:2b:0e:
c9:7d:e4:05:c7:e5:1c:2a:54:2a:6b:9f:0c:dd:3f:
dd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:55:FA:A8:D4:F7:FE:88:26:6C:3D:AF:CD:A3:C8:09:65:53:41:DC
X509v3 Authority Key Identifier:
keyid:44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:45:db:22:5e:45:09:32:71:6e:e4:7b:c7:cd:94:39:04:a2:
17:41:7f:5c:7b:d1:b8:84:64:ef:94:fe:82:c1:a9:0f:24:35:
66:36:ff:a2:4d:24:28:3e:13:84:ce:d3:db:05:0a:f2:c6:46:
d0:11:99:dd:0f:55:cf:45:68:3e:5e:fe:c2:a8:80:2a:17:4d:
aa:aa:9f:f3:77:01:fa:6f:64:2a:40:72:33:af:ac:14:98:fb:
d1:b3:33:59:3d:5c:e1:ea:8b:b2:e3:80:14:fa:ca:d3:b9:f7:
40:43:23:0e:76:0d:0c:c0:2e:97:8d:92:81:6a:25:dc:cc:7b:
cb:b8:54:42:e2:c5:b7:29:48:56:a4:e7:cb:11:1e:65:00:d9:
ca:ee:86:ed:c1:98:8e:37:1f:06:46:05:87:d1:a7:e2:2a:66:
14:88:04:46:3d:0c:ce:d6:cd:20:a6:7b:a2:1e:3d:e2:36:74:
0f:17:38:a3:59:f2:2f:a1:d8:de:72:c1:d1:30:2b:40:da:8b:
ae:4a:62:19:e8:31:ad:a2:ff:b0:1a:22:49:85:44:49:9d:62:
30:f3:fb:98:35:a7:5c:1a:e3:7c:5d:50:b7:0d:cd:e5:f0:ad:
cd:83:dd:03:41:81:58:e0:ca:8f:6b:6c:c4:eb:0b:27:3e:9e:
b8:64:38:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:45:06 2025 by rpki-client