Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
File: RKO0P2R-HncUzRMHZMu8SBTnoUg.mft (raw, json)
Hash identifier: GJ+OXHnN3y8+1tlGeUnO4if/3Y9wbFa0M0JEgRpV2bM=
Subject key identifier: 42:1F:4E:E1:20:10:8D:1E:37:10:44:B0:CF:90:16:01:31:EC:2F:BF
Authority key identifier: 44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48
Certificate issuer: /CN=44a3b43f647e1e7714cd130764cbbc4814e7a148
Certificate serial: 01974BFB9A2F12DED820E4ACA438B898CC16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
Manifest number: 1582
Signing time: Sat 07 Jun 2025 20:01:09 +0000
Manifest this update: Sat 07 Jun 2025 20:01:09 +0000
Manifest next update: Sun 08 Jun 2025 20:01:09 +0000
Files and hashes: 1: KrEyLtzd_FGxXKe36EuPBXxaKHA.roa (hash: ADivn+VbvpgE3fUtfn8Xzz0qtLuBXCOdiCI9IztCcUQ=)
2: RKO0P2R-HncUzRMHZMu8SBTnoUg.crl (hash: HmJOBLHu6ZXzzuIO8iC7JhgY3s/HeevKOBuxWjuJfsE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:9a:2f:12:de:d8:20:e4:ac:a4:38:b8:98:cc:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44a3b43f647e1e7714cd130764cbbc4814e7a148
Validity
Not Before: Jun 7 20:01:09 2025 GMT
Not After : Jun 8 20:01:09 2025 GMT
Subject: CN=421f4ee120108d1e371044b0cf90160131ec2fbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bb:56:a3:56:f8:ab:30:3c:8b:45:5f:4f:6f:
a9:6e:3a:3a:ec:f2:96:70:f2:4f:c9:7b:fb:b8:08:
90:40:63:ba:f0:44:2b:70:f7:a6:c3:d2:5b:1f:49:
03:0b:d8:8d:91:8b:0b:a6:b3:6f:dd:8b:22:b1:ab:
45:ad:6b:c7:48:3a:7b:b8:57:59:a7:7e:4b:63:0e:
d3:62:0c:3a:cf:b7:35:71:a3:8e:1e:07:6f:cb:e5:
9e:c1:f4:43:f4:ce:29:7d:09:78:f1:33:9e:ca:e0:
e5:ea:d0:99:dd:b4:09:55:68:f4:94:8d:5b:84:d9:
ca:38:8a:3e:ea:39:e1:07:7a:92:ae:1a:cd:35:02:
cf:72:3c:34:46:0c:04:33:ff:0d:11:83:a5:96:c0:
fa:4e:c3:c5:b6:e3:7c:80:1a:8e:15:43:36:7f:aa:
68:dd:e0:70:5a:11:6e:4e:2c:1a:1c:5b:5d:08:66:
52:e8:2d:37:9e:14:39:69:77:2e:99:45:cc:91:ac:
a0:df:9d:a0:c1:df:6f:1c:2a:b4:4a:cc:8a:dc:cd:
81:62:4b:18:d6:7e:44:62:29:8b:f4:0f:c9:62:5f:
1e:88:a8:cb:1c:18:72:a7:bf:65:97:a1:37:6c:77:
5a:e9:9b:b8:dd:c5:09:6a:7f:cc:28:c2:3d:5d:45:
ac:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:1F:4E:E1:20:10:8D:1E:37:10:44:B0:CF:90:16:01:31:EC:2F:BF
X509v3 Authority Key Identifier:
keyid:44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:6e:ca:eb:e7:d8:6c:54:05:d3:89:64:a4:f3:b8:b6:e4:1b:
d6:e2:91:35:d8:5e:dd:ff:e1:1a:87:36:e9:b2:3a:94:ce:51:
ee:ec:bd:18:d3:4c:cf:1d:fe:d3:8e:f6:9e:ae:24:ce:72:09:
8a:23:8c:f9:05:cd:2c:42:94:13:54:23:d2:dd:b2:6f:f9:97:
81:a5:b1:d7:15:a0:41:83:97:f8:a1:8a:f6:e5:fe:1c:77:1a:
96:7d:93:4a:b0:00:96:a0:e3:00:51:74:0c:fa:40:43:7d:b0:
eb:15:e9:29:a2:93:91:e0:69:10:ea:16:d8:5c:7e:07:d7:ae:
8a:a8:cb:5e:28:30:f1:79:5f:d9:94:4c:3e:34:84:6e:e8:39:
b4:d2:08:cc:5a:4c:37:0e:de:3a:fc:06:eb:e5:7e:4a:8e:24:
57:60:5b:bb:21:83:9f:e6:93:20:2f:77:b8:ba:a1:e7:02:61:
3f:f7:c4:ae:e4:0a:93:41:87:5f:9e:06:07:a1:51:88:3b:d9:
86:4f:d0:db:65:cd:2e:7f:77:9f:35:ee:00:7d:69:e5:c9:d0:
fe:b6:59:35:cb:06:0c:74:c5:2e:19:9d:b6:73:e4:b3:77:83:
60:de:a2:06:9c:dc:a5:d5:a2:87:90:eb:bd:ef:6d:0a:d4:3e:
03:6e:4a:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:19:58 2025 by rpki-client