Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
File: kmyYtRBh80DM5OC0zjYc40q8L84.mft (raw, json)
Hash identifier: WNufsbYztvgLxUXg0goyZUISiA/0E9jw5ry1ZeR5mcQ=
Subject key identifier: B1:5C:E8:E9:77:48:90:14:B8:16:48:38:BA:D3:D5:47:61:2C:C3:EB
Authority key identifier: 92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
Certificate issuer: /CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Certificate serial: 01974D7BB97FAA3A6720BAB792C3A0C385DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
Manifest number: 05CB
Signing time: Sun 08 Jun 2025 03:00:43 +0000
Manifest this update: Sun 08 Jun 2025 03:00:43 +0000
Manifest next update: Mon 09 Jun 2025 03:00:43 +0000
Files and hashes: 1: NSppdy32pK0kuht35Ks5xIRdV5s.roa (hash: e3lqo49PNkPXZsVtpcSw5P8QfGbIbaYvIeXnhh1mWBY=)
2: kmyYtRBh80DM5OC0zjYc40q8L84.crl (hash: UZC2ToxFDzXeHzrml5gctWA81xeSIlYV1IoXkK1l2hQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7b:b9:7f:aa:3a:67:20:ba:b7:92:c3:a0:c3:85:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Validity
Not Before: Jun 8 03:00:43 2025 GMT
Not After : Jun 9 03:00:43 2025 GMT
Subject: CN=b15ce8e977489014b8164838bad3d547612cc3eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:47:8e:bf:78:08:82:2c:a6:8a:21:6c:0c:df:
5d:98:ce:ed:fe:89:3a:a1:d4:6e:c5:60:d2:dc:d9:
93:5d:5b:72:8e:ff:0f:8b:fc:21:97:46:80:54:0a:
33:69:8e:5a:91:56:b9:24:05:c8:1b:23:cc:c9:bd:
fc:6f:a6:30:3a:e8:0d:f3:1a:ba:c5:5d:89:d9:de:
0f:f5:46:57:02:ab:6b:48:b4:a8:69:e1:c5:d7:04:
4d:49:75:1e:e2:65:0e:6e:6c:11:85:8f:34:2c:b2:
e0:0c:ed:2a:0d:19:e6:95:f3:9e:ff:9a:d4:cd:4a:
42:3b:57:3d:7b:2f:00:31:ae:e3:eb:a3:74:ba:01:
59:ac:32:db:e9:d0:45:bf:34:fb:20:3b:ea:33:d1:
08:79:4c:f4:f1:74:1d:82:dc:da:05:71:6d:58:4d:
62:9c:ed:0d:60:6f:1e:bc:11:5d:fa:f8:5d:47:a2:
1a:90:ee:90:a3:67:60:e9:28:40:c5:6d:8b:82:97:
ad:f9:d6:53:8d:0c:69:8a:83:1d:81:8c:1a:c3:3e:
0d:a7:4d:11:11:15:86:ea:ec:d3:0d:37:b6:b3:d0:
57:43:92:22:20:55:b4:e1:b4:d5:03:29:83:e1:e5:
4c:ec:b4:b9:75:86:6f:56:fb:4e:6e:59:c4:f3:c2:
06:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5C:E8:E9:77:48:90:14:B8:16:48:38:BA:D3:D5:47:61:2C:C3:EB
X509v3 Authority Key Identifier:
keyid:92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:ef:3d:ac:e9:73:e8:3f:64:ef:79:91:5c:98:c8:66:60:ba:
c8:d4:42:b6:a9:31:a0:0a:43:31:9e:d8:bc:02:40:48:3e:e2:
4c:10:d8:27:7a:84:e0:40:d3:e6:2d:4f:96:6b:8e:a3:b7:b4:
70:aa:d3:1b:08:a8:eb:39:5c:18:d2:b0:ea:7a:ad:5e:63:de:
57:f2:5e:bd:48:83:c5:ab:a0:53:e7:0b:ae:f7:2b:15:33:e5:
28:22:f6:ec:8b:fe:82:d6:13:c1:df:58:1c:fa:79:4f:b4:00:
1f:9a:87:f6:14:5d:32:16:e9:0b:a9:54:35:05:aa:0c:d2:b4:
fa:52:df:d7:73:24:74:61:d4:7c:22:bc:fb:88:73:b9:e9:77:
89:14:de:1d:6d:df:45:45:ae:9a:2d:ef:8d:3c:89:f4:4e:a3:
5c:b6:d0:00:0b:4d:c2:49:df:ef:2a:f7:11:c4:4f:7a:b8:9c:
bf:cd:59:be:0d:a2:1c:62:87:5e:11:8e:b4:5c:64:fd:9f:7b:
ac:20:c2:9a:b4:d8:34:4d:41:13:e3:3f:94:56:ef:b1:49:e3:
98:53:d6:c3:4e:3f:99:cf:93:00:6e:64:7d:97:0f:46:03:ce:
fc:c9:2f:22:2b:22:3c:9d:07:51:ff:dd:a9:8e:95:99:c7:d0:
db:ac:ad:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 12:00:24 2025 by rpki-client