Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json)
Hash identifier: bg2RHbDtRTMHwdELeR84Ag/KULHBjXimr7GQPsfFT0Y=
Subject key identifier: 1C:52:01:CF:F9:19:01:95:EE:38:44:60:0E:71:87:2B:37:87:66:E7
Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Certificate serial: 01976BF4270A66016FACAA119A37CE65810E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
Manifest number: 10A5
Signing time: Sat 14 Jun 2025 01:00:52 +0000
Manifest this update: Sat 14 Jun 2025 01:00:52 +0000
Manifest next update: Sun 15 Jun 2025 01:00:52 +0000
Files and hashes: 1: 1-W_ixXGYX8sPaJagj-AVwFiwChc.roa (hash: L0D3lIfkN9efhBw5T+b3u9NkdIMxDqZ5UXxZUhgRWOs=)
2: 1wei3P__YsLq8D2DZQdx3r5Se8Q.roa (hash: mJ3sfO2t0ZrVqr8Lh/dS5cWV3uJ23FidlrzCBj85Xpg=)
3: D9OViOUA1-461O4zttxUuu7lHv0.roa (hash: 2itBNaHzhENVRyOefdMh6N1RENcyUMqY/eAvQKNqorQ=)
4: FL9fu1OvmoFGfhkDWCYg6qk3FZw.roa (hash: 4qo1m7CfLoe2e1/s3slGLhDBLmvad/IFz+DUbL4c5ro=)
5: QhTNtcmMP2d8JHj8beOVtwBfn-8.roa (hash: pGtJfsZnHgpcNHsy6MUt5rD0YLB/sQz5xjhWg8xCmoY=)
6: b_UNR9Xj_ycfuOSMA48F_QSRqts.roa (hash: V/FK04zH2Za3Nwu+0PjyuAuPUrWk9vHEnkwAOnyhoAs=)
7: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: oiLked/QEWhjrqKlyo5dLfhVUFUutwE/mNdPJDSe8J4=)
8: mI6CMDbVFOggenhN7vYK1kqjlUM.roa (hash: Ix338GJteDKUBZwQ6uAO2I9vp00YeBcogG5YXz8IPLE=)
9: vUVcdpzXr2JQGsu1xtXoOvW_LHU.roa (hash: 2iN03nQJUllsMqRJ1fP7+P4h4U6MeEk1ERszIuxQ8MY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:27:0a:66:01:6f:ac:aa:11:9a:37:ce:65:81:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Validity
Not Before: Jun 14 01:00:52 2025 GMT
Not After : Jun 15 01:00:52 2025 GMT
Subject: CN=1c5201cff9190195ee3844600e71872b378766e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d1:c3:ee:e0:9c:ab:1b:42:3c:01:05:03:c6:
87:50:ed:e4:2d:0f:13:19:42:fc:42:10:3a:0a:2c:
81:6e:aa:34:4f:0c:f9:25:a8:97:20:91:ce:b8:dd:
d5:5c:f0:f5:bf:cc:a3:81:f9:5b:36:c1:a3:b2:5b:
5e:ad:ae:7d:a1:e5:c8:c3:c2:70:33:7e:98:40:d9:
d0:71:78:9d:a2:d5:32:de:86:0f:7d:6d:86:0e:6a:
66:c7:fa:67:eb:b9:8d:bd:ff:78:d7:6b:cc:de:b3:
f3:f8:72:75:94:af:bc:56:ca:38:6d:53:d0:9f:0b:
3d:53:57:71:98:cc:6b:3c:0c:5e:67:45:5e:6e:e4:
ba:b1:b5:b4:7e:fd:dd:90:9c:db:8c:5b:bc:ff:e0:
15:3c:ce:e7:22:1c:95:ce:f6:f8:b2:41:52:ec:07:
47:5b:9b:86:b7:a7:0f:66:f2:ab:bf:49:3e:d6:86:
f1:d4:c5:88:ca:dd:6f:e2:a1:89:65:4f:7e:36:c4:
cf:04:48:42:2e:b2:44:d5:21:15:9b:ed:65:3b:b8:
1f:24:24:21:8e:65:b4:f8:63:36:ce:cf:44:6b:de:
6c:08:ec:99:97:90:fa:86:d7:78:75:aa:bd:02:63:
aa:a3:fe:65:c2:0f:d4:75:2b:c3:dd:55:ca:7f:a2:
0f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:52:01:CF:F9:19:01:95:EE:38:44:60:0E:71:87:2B:37:87:66:E7
X509v3 Authority Key Identifier:
keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:81:ab:d8:d1:18:a0:b8:fe:15:2d:4e:8d:b5:0d:60:96:d1:
19:23:c1:1f:b2:7b:3e:34:77:03:df:b1:5a:ac:70:fb:e3:51:
51:0d:58:27:f3:a4:0e:b9:43:5a:05:27:c9:8a:6e:c0:c1:45:
22:be:f1:06:de:62:f2:15:bb:66:6f:ed:e4:b0:94:6a:87:97:
c1:83:9e:be:76:cf:73:bc:d1:ed:7c:50:a4:77:a9:9c:98:6d:
03:99:ae:55:6a:1a:42:7a:2b:26:b8:38:93:98:6c:61:23:f7:
be:46:50:66:a7:fd:63:16:1d:d8:da:b4:e3:3c:53:e1:af:70:
fa:a3:a3:a3:d9:ec:16:9d:45:c2:93:3c:8c:40:50:88:6a:26:
c5:95:22:85:4a:60:ed:f2:10:cd:cf:71:8e:3f:bf:e5:ec:34:
ed:0e:3b:9b:bd:d3:40:06:79:43:bb:a5:76:fa:01:c1:9c:58:
db:2d:97:c9:46:8c:40:ae:e9:77:d4:8f:9c:c0:97:34:9d:83:
16:24:ae:92:21:c6:90:1b:74:da:19:f0:71:91:cb:76:f5:eb:
c2:b2:88:3f:8b:13:1b:a7:68:93:58:be:f4:d0:76:45:6c:c6:
75:87:72:f0:f9:c1:b7:0e:d3:51:4b:89:40:94:71:9b:36:a8:
0d:b6:f9:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:16:29 2025 by rpki-client