Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
File: kmhshS82--n8i-d8QJtSJqbuVNU.mft (raw, json)
Hash identifier: aVXyfdksSIJUc4Ssq10m3FkLK9AfTHQWjlWIyT/+rmw=
Subject key identifier: 06:75:81:14:B2:D9:67:0D:54:33:1A:BB:0B:87:17:69:58:2E:81:42
Authority key identifier: 92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5
Certificate issuer: /CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5
Certificate serial: 01974D0DB29A946D628943576C0D3CEF21B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
Manifest number: 1581
Signing time: Sun 08 Jun 2025 01:00:32 +0000
Manifest this update: Sun 08 Jun 2025 01:00:32 +0000
Manifest next update: Mon 09 Jun 2025 01:00:32 +0000
Files and hashes: 1: IvJ7HvT-6tCK5GKbaPNyk54ml9M.roa (hash: 7zWh/VLAgd5GsVxZJpmQ4YamOZV0jGAf5fVHM29zO30=)
2: kmhshS82--n8i-d8QJtSJqbuVNU.crl (hash: voRr4hkbWJhFX+At5+iQZFtdqQCY4KAvFE7K51W9YNw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0d:b2:9a:94:6d:62:89:43:57:6c:0d:3c:ef:21:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5
Validity
Not Before: Jun 8 01:00:32 2025 GMT
Not After : Jun 9 01:00:32 2025 GMT
Subject: CN=06758114b2d9670d54331abb0b871769582e8142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:21:e6:c7:0a:57:34:2c:89:ee:df:4f:ac:23:
b3:53:1c:70:70:e3:90:77:6f:75:1e:b1:80:f4:a4:
f4:00:63:95:45:de:2e:39:e6:bd:5c:ec:ca:65:88:
f0:31:11:78:ee:1c:3e:3b:3d:ce:bf:ef:6e:fd:01:
cf:8c:f6:04:af:e3:11:7f:93:6a:96:20:33:6c:f2:
5b:55:9e:fd:20:ce:28:e9:c1:05:c2:a3:38:a3:12:
53:99:35:37:a8:87:42:3f:35:d0:f0:19:61:83:fb:
1a:95:d3:8f:78:3b:86:7b:8f:6d:2a:ff:82:fd:50:
7f:93:72:96:0b:cf:44:b2:71:c6:a8:4d:b0:79:fb:
39:1a:15:f3:34:c6:4b:15:b0:37:53:28:61:d7:6f:
28:9c:26:d6:a1:1e:6a:6e:54:9e:d7:c3:51:26:af:
9c:52:13:fb:39:bc:95:4c:9f:c4:a1:4a:e9:b3:04:
05:44:16:79:62:de:dd:c2:e8:20:26:4f:e0:42:a5:
55:1f:05:8b:f2:b7:12:3b:1e:15:a4:54:88:fb:9f:
a0:c2:13:78:4f:96:c4:2c:19:7e:d6:15:ab:d5:08:
85:41:24:4e:69:43:87:6a:0e:53:ce:72:8c:94:ad:
13:07:3c:67:79:0a:55:82:e0:af:82:9c:63:2a:70:
4e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:75:81:14:B2:D9:67:0D:54:33:1A:BB:0B:87:17:69:58:2E:81:42
X509v3 Authority Key Identifier:
keyid:92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:68:86:e1:cd:9c:a1:bb:c0:ed:cc:66:26:bc:cd:05:d2:c0:
f7:78:74:1b:d8:26:8e:c6:e3:03:8f:6d:94:e3:d8:77:95:61:
27:aa:32:1c:92:31:c0:ad:18:d1:df:e9:62:1e:af:af:ce:32:
25:34:0a:6f:35:7e:18:03:a6:66:e9:87:cd:52:35:b2:71:eb:
ea:47:98:7d:d2:c3:19:c8:fa:69:7c:4a:14:e0:b1:38:0f:d4:
2c:83:45:de:f6:fd:bc:ff:88:f5:b7:03:27:f0:49:a7:46:32:
fc:bd:96:51:e7:75:09:07:9a:4e:82:91:0d:e3:41:ca:f9:a4:
58:44:60:0d:fc:79:e3:aa:61:1a:54:f8:5c:7f:35:bd:b8:dd:
91:9a:21:c8:e1:cb:a8:88:00:2d:80:c9:fa:bc:b9:7d:b2:d8:
e1:5e:f3:c8:13:61:d4:8e:e0:05:91:91:97:c1:98:e5:41:95:
3d:04:22:8b:2d:94:30:ad:7d:dd:ff:ed:db:53:2e:e4:8c:81:
f1:f2:e6:82:9b:b5:8d:c2:17:cc:9e:ca:f8:9d:03:e5:63:8d:
bf:9a:e5:1c:0d:f5:33:c2:af:c8:a5:e7:4e:00:a0:d3:ad:2e:
df:86:90:33:9e:d9:e2:90:bd:5e:ec:b2:24:61:76:ea:ab:b2:
37:e1:92:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:35:56 2025 by rpki-client