Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: wPtF4HffsdGzq6ZLAMxPvd3DkDaChUt2cmlHVh+jlP4=
Subject key identifier: 06:7E:C8:BC:50:B4:84:DA:4C:04:63:73:8E:A9:8D:AD:6B:E5:DA:EA
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 01978F92A51FB93C97590B06E21037DC629A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 15A2
Signing time: Fri 20 Jun 2025 23:00:41 +0000
Manifest this update: Fri 20 Jun 2025 23:00:41 +0000
Manifest next update: Sat 21 Jun 2025 23:00:41 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: o/I2MreuTGqQ0D/XsJGJVjt1h9Ra7sEIcwtqwQ8DMVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Jun 2025 19:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:8f:92:a5:1f:b9:3c:97:59:0b:06:e2:10:37:dc:62:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Jun 20 23:00:41 2025 GMT
Not After : Jun 21 23:00:41 2025 GMT
Subject: CN=067ec8bc50b484da4c0463738ea98dad6be5daea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ed:f8:c8:98:a3:f4:0d:7e:d6:94:2d:68:29:
48:b7:80:97:cf:53:f8:c8:58:c5:e2:b8:61:bf:41:
9d:0b:c6:eb:bf:26:9c:d1:0f:0c:21:e5:93:de:37:
aa:9f:28:21:95:39:b2:ac:17:01:cd:78:6c:0f:e4:
47:01:99:2d:3b:6b:c6:e9:0d:37:d8:4f:bc:26:0c:
5d:33:b6:56:f6:67:b4:97:03:cb:a7:ab:4f:7b:45:
35:55:36:97:19:94:67:86:70:3d:60:8b:bb:7a:69:
9f:1f:bd:e0:25:eb:1e:1e:e1:48:e2:4e:af:92:bc:
bf:b7:b7:f9:59:d1:be:eb:5f:a5:4c:b2:e6:3f:38:
02:e1:04:a3:36:a1:8d:fc:a3:ea:b2:f5:83:a6:e6:
bb:d6:c8:90:8d:8c:2a:4d:94:16:76:5e:5d:19:aa:
31:c9:30:39:1e:78:bc:d7:60:be:a2:e3:66:74:c1:
e2:01:b2:95:e0:8a:8b:96:fe:be:1c:af:e3:41:38:
12:c7:4c:a0:0b:d4:f4:c0:49:e4:4d:20:62:c2:0f:
8d:57:f9:99:10:62:68:96:ee:d4:f0:39:2c:a6:86:
59:19:96:2b:dd:ea:3c:d5:ec:66:e1:7e:e0:63:a4:
31:49:ef:55:cf:0a:8c:97:47:9a:fb:b8:6d:ec:d3:
a2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:7E:C8:BC:50:B4:84:DA:4C:04:63:73:8E:A9:8D:AD:6B:E5:DA:EA
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:24:36:7c:23:b0:f4:18:b4:7c:e0:29:53:d6:41:e1:3e:8d:
16:26:b3:cf:2e:9a:64:a7:c6:0f:96:99:9d:b4:24:1e:03:46:
65:6b:36:0f:b8:34:dc:23:a4:d2:0f:59:9d:d0:f0:ec:f9:c1:
9f:00:f8:58:39:72:cf:db:98:cb:5e:50:74:aa:30:af:83:09:
ce:2f:6e:d2:c2:c5:a0:8b:d1:ba:2b:37:78:32:07:fc:f9:46:
47:54:03:0d:1b:df:87:49:ba:43:80:86:20:83:de:fa:e2:13:
9b:75:64:91:08:5e:ff:92:84:a9:12:60:18:e2:5d:f1:18:4d:
73:11:d7:c0:aa:eb:6b:7b:39:e7:d1:0a:79:42:41:ed:57:c4:
5b:fd:1f:23:b3:f7:5a:00:98:bd:c2:90:b7:31:eb:98:38:0b:
e8:af:84:94:19:c1:02:27:fd:10:d7:b0:12:15:c8:b2:ce:33:
0f:00:a6:8f:21:dd:0e:af:62:20:59:18:75:ae:10:c2:6b:d2:
82:6a:3d:ef:02:a6:fd:0a:0b:2d:b7:e4:b6:08:bd:ff:0e:6e:
d2:5a:7b:b1:19:c3:f9:62:a8:d8:da:fb:29:32:37:1c:7c:73:
8b:3b:34:05:54:94:cc:c2:48:7c:28:3b:fa:71:81:b0:81:0f:
9b:4a:da:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 21 01:49:39 2025 by rpki-client