Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
File: KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft (raw, json)
Hash identifier: 6ZnftwVP21ydGjoyvA6CjFzmU7Ll9aYRn8e1+EVyPrg=
Subject key identifier: 52:03:F4:86:B2:63:5C:7A:06:9C:A8:57:28:78:F3:48:D4:C4:C0:06
Authority key identifier: 2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF
Certificate issuer: /CN=2a21b1abe787e25464391fad61d00e3f376b98cf
Certificate serial: 01976D3E2111A0D22E0FE32E899BC18BAE07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
Manifest number: 0AAA
Signing time: Sat 14 Jun 2025 07:01:17 +0000
Manifest this update: Sat 14 Jun 2025 07:01:17 +0000
Manifest next update: Sun 15 Jun 2025 07:01:17 +0000
Files and hashes: 1: HDOhzz0jBa_Gp9AJUMy27D9Cjlg.roa (hash: lm71x5ibbc8ZUL32IG9cJWwnD/vjqa8xr80jq2AaleE=)
2: KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl (hash: t7q2Lysysm+6iaKfcbXmx5X8Ph+bc8ie4orkv4yvmX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:21:11:a0:d2:2e:0f:e3:2e:89:9b:c1:8b:ae:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a21b1abe787e25464391fad61d00e3f376b98cf
Validity
Not Before: Jun 14 07:01:17 2025 GMT
Not After : Jun 15 07:01:17 2025 GMT
Subject: CN=5203f486b2635c7a069ca8572878f348d4c4c006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:38:8b:71:4f:78:ae:d0:b6:bf:bc:c4:06:a9:
38:f4:b5:00:75:b7:ce:79:46:54:e8:6e:fb:00:29:
e3:dc:66:af:68:27:24:1e:a1:1c:86:5a:7f:cb:a1:
b2:ea:da:46:e0:55:e8:b2:c1:a8:cd:12:fa:2a:74:
48:c9:ea:55:aa:6d:78:93:88:47:ce:b1:34:5e:4a:
da:c9:20:be:95:0b:6b:bb:49:be:1f:ef:f3:16:ab:
06:fb:70:14:aa:f5:73:f3:5c:08:eb:c1:a2:a5:a7:
ac:f4:98:0d:da:7f:61:8a:05:ad:d7:f5:8c:20:3a:
4f:50:47:84:02:88:1d:97:52:5b:3b:66:f6:17:71:
38:bb:a6:db:76:fd:d2:2f:54:1c:f4:ca:44:b7:9c:
e2:b0:54:dd:80:66:8a:fa:17:77:cc:18:dc:92:a3:
b1:f4:44:f7:75:33:dd:80:45:46:15:a3:b6:95:04:
94:55:1d:0d:7c:d9:ec:96:c4:b3:8f:99:71:a3:1b:
37:01:ef:95:2d:f0:de:fb:f6:01:ad:c0:ac:f6:37:
7f:46:2c:16:be:5e:10:9b:c8:8e:a9:04:d1:3a:3f:
fb:eb:e7:ef:ef:5d:cd:62:40:85:14:40:11:5b:8b:
77:96:47:e6:f8:65:16:2a:e9:a0:9f:e1:ad:71:7c:
43:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:03:F4:86:B2:63:5C:7A:06:9C:A8:57:28:78:F3:48:D4:C4:C0:06
X509v3 Authority Key Identifier:
keyid:2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:a9:5f:c1:40:3a:59:96:08:e1:c4:f6:4b:aa:46:0a:40:6a:
cd:db:61:88:0e:b0:1e:9e:97:c7:d0:99:1d:67:c9:e0:18:e9:
db:b1:3f:5c:fc:6c:cb:1d:00:78:3d:a9:9f:14:e1:98:bb:5d:
71:e2:e4:41:af:1a:d7:33:cc:c4:99:64:f5:57:95:fb:f3:66:
7d:c3:d0:c4:d8:37:2b:ff:7f:52:f1:64:55:62:4a:a3:a9:bd:
47:e5:8e:bf:4c:1f:2f:e9:54:b8:1b:f0:fa:26:c5:02:de:0b:
ab:ac:c9:bb:5c:1e:6f:50:6d:73:27:84:fe:ad:36:6c:60:04:
54:8d:94:15:7a:96:8b:90:ae:b9:c1:ba:16:f8:15:4a:16:45:
ae:3d:63:c3:ab:e5:4d:ef:a4:bc:fd:92:2a:9d:a2:2e:bf:d4:
0c:92:6d:0b:f9:0f:ad:e5:1d:6f:a1:b3:ce:fd:de:2a:57:f3:
f4:f1:e4:b7:7e:51:63:08:4b:40:f4:1d:2a:a8:88:d3:91:78:
1e:c5:79:3d:3c:14:90:3f:41:1c:cb:7d:99:61:98:eb:fb:d0:
83:91:fd:b1:23:e8:d2:e4:d0:63:cf:5c:b6:71:b7:32:07:e5:
b5:38:b1:b2:73:49:b7:dd:c2:e3:e3:07:75:3d:26:6e:f0:c3:
f1:a1:54:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:06:40 2025 by rpki-client