Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.mft
File: rkIjS6xhcScD45im1b8EjFyfQDI.mft (raw, json)
Hash identifier: zM+Lq3kP+O93neC62EgNYahfsvve7Ea7z/LuGfxY078=
Subject key identifier: A5:C3:E7:C4:1A:71:D2:E4:89:D4:0D:6C:75:F8:CF:0F:FB:F7:62:30
Authority key identifier: AE:42:23:4B:AC:61:71:27:03:E3:98:A6:D5:BF:04:8C:5C:9F:40:32
Certificate issuer: /CN=ae42234bac61712703e398a6d5bf048c5c9f4032
Certificate serial: 01976C61E4A276B34E12232C6ADFBE0291F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rkIjS6xhcScD45im1b8EjFyfQDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.mft
Manifest number: 06C0
Signing time: Sat 14 Jun 2025 03:00:44 +0000
Manifest this update: Sat 14 Jun 2025 03:00:44 +0000
Manifest next update: Sun 15 Jun 2025 03:00:44 +0000
Files and hashes: 1: rkIjS6xhcScD45im1b8EjFyfQDI.crl (hash: d9VjSa5QvTJu2VCDJb4pUaOBzWzIlDjY62OuZ8imFBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rkIjS6xhcScD45im1b8EjFyfQDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:e4:a2:76:b3:4e:12:23:2c:6a:df:be:02:91:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae42234bac61712703e398a6d5bf048c5c9f4032
Validity
Not Before: Jun 14 03:00:44 2025 GMT
Not After : Jun 15 03:00:44 2025 GMT
Subject: CN=a5c3e7c41a71d2e489d40d6c75f8cf0ffbf76230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d5:57:74:78:ca:6e:c2:83:e3:a4:82:28:e7:
ed:35:72:d9:c4:66:f2:5f:e3:d8:58:6e:aa:02:48:
50:37:33:66:c0:ac:5b:3f:e0:4e:7f:6f:ec:28:d0:
74:83:2f:75:51:df:4c:9b:1f:72:a7:17:72:69:ee:
01:a0:e5:3f:b9:f0:2f:97:92:9f:50:2a:ae:7f:0d:
b4:88:cb:15:72:65:b9:8f:1f:77:e4:5c:a1:6f:51:
dc:fc:da:08:0c:53:4e:ae:f5:0d:fe:97:d9:41:cf:
8c:9f:55:97:e1:59:74:5a:4b:4b:48:7e:c9:0c:13:
3c:a2:cb:41:de:86:51:73:92:d1:1b:db:f5:b9:48:
51:5c:53:52:a3:fb:e9:53:84:3c:4d:04:66:87:0a:
71:31:d0:82:71:c8:7b:01:d0:2b:55:c9:c0:cb:fd:
e0:af:9c:a3:66:ad:c0:09:28:c1:23:0a:34:44:cb:
86:9a:50:b2:a1:e1:dc:f1:c7:2d:58:55:9c:8c:b9:
c6:e4:04:3a:13:4c:23:40:83:b7:47:6f:d1:cb:c7:
f4:bf:2b:cb:ec:57:d7:cc:f4:ce:44:b7:35:9b:14:
d5:0d:a7:50:1e:0f:d9:01:7d:cd:a1:17:08:2f:e6:
d5:2c:6b:db:a8:d0:cc:30:69:d5:73:89:34:71:ec:
f6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:C3:E7:C4:1A:71:D2:E4:89:D4:0D:6C:75:F8:CF:0F:FB:F7:62:30
X509v3 Authority Key Identifier:
keyid:AE:42:23:4B:AC:61:71:27:03:E3:98:A6:D5:BF:04:8C:5C:9F:40:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rkIjS6xhcScD45im1b8EjFyfQDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:28:83:c0:f2:a1:98:2c:ad:96:de:fd:6e:6c:7d:2c:d9:00:
70:20:c1:1b:0b:20:a0:de:d9:69:16:4c:7b:24:62:3d:a5:2c:
87:15:39:4f:58:a6:76:b3:1f:85:d2:6b:f2:e8:9e:fa:a9:14:
bf:b9:35:f9:3d:fa:19:c9:d5:03:c3:b5:9e:33:33:26:a4:78:
9b:8b:e3:03:c0:38:1c:58:72:d6:dc:97:d3:65:74:f8:10:72:
8c:04:ad:06:67:23:67:5b:84:b0:7f:ac:8f:e3:c6:d7:b6:55:
93:c1:a8:5f:6f:ae:04:46:47:0f:af:bb:70:e7:2c:c1:cd:29:
29:ea:37:7d:37:01:21:b4:12:53:4d:1b:72:39:44:fa:7d:90:
96:af:98:67:4b:0e:84:28:ae:38:8e:68:1f:7d:ab:fe:75:de:
56:9b:80:00:5b:15:38:9a:de:90:e7:ed:62:c9:25:6b:d6:4d:
a8:ad:e2:49:e7:6a:a8:4d:a3:1f:f4:c6:49:20:f1:08:26:f9:
d4:cd:09:d3:61:74:23:c4:a0:f6:8c:e2:dd:e1:15:59:99:02:
27:82:8a:3b:90:ad:94:28:fb:e9:da:7e:56:39:e4:82:d4:2e:
6c:a9:98:fb:65:48:d1:11:9a:3b:da:a0:a9:fd:93:b4:c3:76:
f0:05:c3:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:53:45 2025 by rpki-client