Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
File: kaEXOnDkH0WTVHZpraIvDX9o81Q.mft (raw, json)
Hash identifier: oxkiUn8ir5hPsiCQvo/E4bYdXWygHpNYGIQUiSef7MQ=
Subject key identifier: 9F:39:47:B0:FB:C8:93:73:AC:39:4B:28:BC:B4:76:B2:D5:DA:31:30
Authority key identifier: 91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
Certificate issuer: /CN=91a1173a70e41f4593547669ada22f0d7f68f354
Certificate serial: 0197700808EB8032827E8C2DFC23EEAB9114
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
Manifest number: 1592
Signing time: Sat 14 Jun 2025 20:01:04 +0000
Manifest this update: Sat 14 Jun 2025 20:01:04 +0000
Manifest next update: Sun 15 Jun 2025 20:01:04 +0000
Files and hashes: 1: kaEXOnDkH0WTVHZpraIvDX9o81Q.crl (hash: PO0iiuLq49KliQAVBJCIxRIsOhrTQdIB29X6UET2/vM=)
2: xREpLh3GVdj1ODzVkMBccz2oKXk.roa (hash: xbsUY7nQRM1AibU2b9y10o7TiQNt9Xvh0b0IzmFT71c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:08:08:eb:80:32:82:7e:8c:2d:fc:23:ee:ab:91:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91a1173a70e41f4593547669ada22f0d7f68f354
Validity
Not Before: Jun 14 20:01:04 2025 GMT
Not After : Jun 15 20:01:04 2025 GMT
Subject: CN=9f3947b0fbc89373ac394b28bcb476b2d5da3130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bc:ff:31:1b:83:17:7c:8d:06:5b:dc:01:f4:
ca:0d:60:f6:d9:73:a2:36:54:46:cf:1e:a4:7c:49:
ee:04:d7:ea:66:da:9b:b6:0a:33:f5:1e:21:c4:73:
3e:df:03:97:d6:ca:d9:95:c4:43:d5:ee:f7:36:5d:
73:d0:e5:cb:91:92:30:59:94:56:52:1a:ba:28:29:
e9:22:4f:cd:0a:c6:9c:c0:6d:dd:6a:50:6e:2b:fc:
09:3b:3c:f5:fd:d9:a5:e1:4e:9f:74:80:50:27:3c:
10:b8:2b:89:7f:20:51:87:a1:e4:08:7b:c7:4a:96:
85:86:4b:86:53:ed:4d:bc:a1:71:85:08:a4:bd:2b:
51:8a:d5:67:93:9d:9c:49:99:7b:e2:c7:ba:d0:7e:
5a:66:59:5c:4f:f4:5e:c0:0c:ae:3e:a2:cd:53:c9:
0c:da:91:d7:b5:34:91:8e:08:3a:e5:c7:de:2d:25:
f6:53:9b:9c:c4:a4:35:38:6b:24:eb:ea:b5:24:d2:
fc:b2:be:94:52:4b:f1:d0:22:50:e6:85:97:df:cc:
99:d8:b1:6c:78:a0:fe:38:fd:6f:10:04:23:44:6c:
a1:5d:02:7e:9e:14:69:8c:5e:b7:86:ea:39:8c:3a:
9f:0e:51:34:f0:dd:e4:dd:5d:1e:ca:42:2e:31:e6:
bc:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:39:47:B0:FB:C8:93:73:AC:39:4B:28:BC:B4:76:B2:D5:DA:31:30
X509v3 Authority Key Identifier:
keyid:91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:d9:7d:be:38:dd:4a:75:f5:71:e4:c9:11:11:ed:05:0e:e4:
af:2b:fd:cc:20:22:50:e0:7f:d1:ac:74:64:04:08:19:52:77:
94:2a:8e:d8:6f:11:36:dd:01:9e:c5:15:67:3d:02:4d:4d:23:
9d:44:16:73:9e:cd:10:3d:89:34:e1:13:ea:3c:01:98:48:f2:
06:f0:5d:46:81:a1:f7:29:7c:ef:5d:4c:e5:70:b3:99:62:53:
80:aa:b4:e7:5d:87:2a:8c:17:04:a5:e9:02:ef:16:db:fb:be:
8d:cb:3b:90:e2:e6:a7:24:70:68:fb:90:ea:40:da:95:eb:5a:
e0:62:36:b3:b6:a1:61:dd:bc:9f:8d:fc:68:c8:a0:8e:0f:89:
83:da:ae:3c:b0:03:1e:ca:41:0c:be:62:56:fa:af:a0:68:20:
09:0f:31:ee:0f:3b:2f:d5:de:03:3e:20:73:9a:78:52:b3:f3:
3d:c2:9d:1a:91:bb:8c:fa:76:69:ab:03:a8:1c:09:2b:f0:0a:
9d:75:f8:bf:fe:57:da:8a:4a:7d:2c:74:e6:7b:14:52:de:93:
f9:d0:db:b8:b8:3c:16:56:71:e3:91:b5:45:21:bd:9e:4a:f6:
24:f7:e9:7a:63:98:09:b5:9a:3e:b4:50:cc:b8:dc:98:95:9f:
a4:90:80:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:17:44 2025 by rpki-client