Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
File: KqPjBJdiCGjhestHhoLOegvRNTQ.mft (raw, json)
Hash identifier: 5lL4ZaGTD6sJao5bDrp5d1OF1JFEU4dSesLkPjskzME=
Subject key identifier: 85:F7:7A:71:D1:F8:31:4C:83:58:1F:30:4C:D0:DF:BD:23:68:23:DD
Authority key identifier: 2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
Certificate issuer: /CN=2aa3e30497620868e17acb478682ce7a0bd13534
Certificate serial: 01976BBD098ED838E3F903FEBB68E0A7076F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
Manifest number: 158D
Signing time: Sat 14 Jun 2025 00:00:40 +0000
Manifest this update: Sat 14 Jun 2025 00:00:40 +0000
Manifest next update: Sun 15 Jun 2025 00:00:40 +0000
Files and hashes: 1: KqPjBJdiCGjhestHhoLOegvRNTQ.crl (hash: TsQUtxYDOadG87z1FxFUgmMZ9N1iUDJTj4sDp4TfuEw=)
2: _F5YjzIp4N7IiS5lXnJMJsPMLEU.roa (hash: HX+68oJeKBQGUaK3TL3s9cs53fsCINCeh8CnxLw+JsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:09:8e:d8:38:e3:f9:03:fe:bb:68:e0:a7:07:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa3e30497620868e17acb478682ce7a0bd13534
Validity
Not Before: Jun 14 00:00:40 2025 GMT
Not After : Jun 15 00:00:40 2025 GMT
Subject: CN=85f77a71d1f8314c83581f304cd0dfbd236823dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c9:7b:7d:c2:51:3f:b6:22:a2:79:94:3c:5a:
71:63:29:e8:9f:4b:dc:5e:f0:5e:98:f5:27:bc:51:
76:cf:e5:32:61:1a:61:eb:10:bc:1d:b9:bd:0e:45:
8d:aa:49:46:33:b8:14:b8:53:f9:0c:4d:cc:4b:c7:
58:b0:ef:85:0d:f4:f6:d3:d5:23:4d:7b:90:55:71:
91:19:ac:7a:91:b8:97:a7:2b:b2:64:e1:7f:89:1a:
56:ac:37:b5:d1:48:39:ce:2b:9d:ad:f9:16:54:7d:
2a:da:65:40:9a:a2:bc:1e:66:59:ef:fd:7b:1b:67:
e7:8b:d0:c1:f2:fe:a6:f0:75:fa:16:0c:0e:70:ed:
62:be:1b:eb:c3:4f:2a:7e:d8:71:f8:6e:55:58:20:
b0:3b:d3:e1:07:5a:51:c6:7d:37:b0:02:e5:39:6d:
1a:15:4e:7a:2c:1a:53:e7:3b:2d:1b:43:01:0c:5a:
5b:2f:9f:a5:d3:41:35:c4:a9:eb:b5:66:91:f1:c8:
63:d8:19:ae:61:0a:b6:9a:8f:32:85:61:26:c1:1c:
ff:e0:d3:6e:79:10:a6:06:b5:84:0a:0b:1f:68:d7:
e8:1a:5d:2f:a2:0a:a4:b3:f4:0c:8a:94:f9:ad:c7:
27:7f:71:37:79:c1:0d:08:64:2d:d2:3a:53:50:8d:
4c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F7:7A:71:D1:F8:31:4C:83:58:1F:30:4C:D0:DF:BD:23:68:23:DD
X509v3 Authority Key Identifier:
keyid:2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:d5:69:52:c7:60:00:3d:0c:e4:dd:9b:da:f8:84:06:16:d2:
9c:6c:57:d6:4d:65:55:f1:03:12:8a:8d:e2:32:33:a9:fd:02:
ac:8a:7c:d2:82:a1:61:26:3a:31:56:e4:48:f9:08:2e:47:61:
bf:c3:de:8c:35:e5:72:31:0e:17:ed:78:18:a3:c5:cf:d2:29:
2c:9e:17:fc:c0:43:09:ec:9b:e3:cf:2f:63:65:21:d4:ff:53:
1d:30:49:9e:09:58:c7:59:a1:2a:ba:64:3b:54:d4:44:1b:9f:
65:6e:da:48:96:60:a8:1d:85:d7:fa:1a:7c:d3:8f:87:a6:95:
e1:7b:ce:60:5c:40:4d:9f:58:d4:9a:01:7b:22:c0:27:86:84:
6c:4f:f8:ce:4f:6b:5e:5d:ef:c1:a0:4b:5d:38:9c:cd:10:5e:
41:1c:1d:18:02:88:c2:a9:70:bd:c5:ac:47:94:a2:ae:04:55:
69:6c:2d:1b:27:72:2f:89:09:75:df:78:50:65:21:db:cd:e1:
ec:ac:04:7f:70:05:4f:f2:71:22:45:20:04:6a:19:9b:e3:a9:
f8:de:c7:e6:1f:ea:0c:37:fd:d6:3e:21:d7:36:2a:97:e0:29:
f6:0a:3d:45:ee:63:c5:f3:3e:55:cd:6a:f0:c8:db:ee:09:b4:
62:d5:16:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:36:47 2025 by rpki-client