Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
File: RKMb41sydPLLhX5a81aLaFqJEn0.mft (raw, json)
Hash identifier: QYqwg8hb/oz88hjHB8ixZAlm35KDTnP7VIB7NJWos3g=
Subject key identifier: 37:45:FC:DD:45:33:ED:86:85:46:2F:14:18:FE:A1:F0:8B:37:03:65
Authority key identifier: 44:A3:1B:E3:5B:32:74:F2:CB:85:7E:5A:F3:56:8B:68:5A:89:12:7D
Certificate issuer: /CN=44a31be35b3274f2cb857e5af3568b685a89127d
Certificate serial: 01976CCFC5B18FDF5611B6B500F44D8C0883
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
Manifest number: 43
Signing time: Sat 14 Jun 2025 05:00:45 +0000
Manifest this update: Sat 14 Jun 2025 05:00:45 +0000
Manifest next update: Sun 15 Jun 2025 05:00:45 +0000
Files and hashes: 1: RKMb41sydPLLhX5a81aLaFqJEn0.crl (hash: I7gAyGEdWZ+eemL5jyzUt0bdpcHK4LW5cm91kFohJ8s=)
2: YFJicIZOsKffrZlgqGfXDM6-Vko.roa (hash: clBAf9+wIJJTmEssFM2b37Ghk44VkYVJfz08MTSBlTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:c5:b1:8f:df:56:11:b6:b5:00:f4:4d:8c:08:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44a31be35b3274f2cb857e5af3568b685a89127d
Validity
Not Before: Jun 14 05:00:45 2025 GMT
Not After : Jun 15 05:00:45 2025 GMT
Subject: CN=3745fcdd4533ed8685462f1418fea1f08b370365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b6:31:41:ab:f5:c3:fa:48:93:b2:e1:0e:75:
40:cb:0b:ca:de:62:f2:fe:1b:c0:64:94:7d:e1:11:
49:78:0c:76:8d:a0:ce:62:2d:c2:21:3c:2e:0d:44:
35:b8:a2:9c:b6:ef:1f:a2:87:40:2d:90:71:4e:59:
7f:41:05:0b:8b:80:f7:a1:c6:fa:ac:81:99:a7:d7:
8b:92:08:80:5d:ed:1a:a1:3a:ff:a7:de:04:d7:0d:
66:17:16:ae:ed:d8:d1:70:a3:dd:b0:5c:3d:82:39:
71:7f:14:f8:e5:47:d5:3c:1c:ee:44:5d:8f:46:48:
8a:54:47:ce:ce:10:18:e4:f8:c8:fd:2e:28:76:46:
90:e0:19:2d:90:c8:c1:0d:47:65:5d:63:10:36:7f:
e8:82:69:ff:cc:25:69:5a:1f:0c:93:b2:19:ec:a1:
a0:6f:07:0d:b2:93:50:3b:0f:93:20:1a:68:dc:5e:
54:b0:e7:d5:b5:d0:26:09:d1:3c:a2:c6:19:a0:a1:
37:92:90:74:16:d2:1c:30:56:a1:bf:56:09:1a:80:
a8:ce:f7:87:a8:2e:16:5f:4e:49:b3:63:a3:c2:df:
b1:88:b6:60:c5:66:ec:0a:b9:6f:7b:f0:eb:8c:56:
ce:d8:9f:d7:ee:dc:d5:53:59:f8:fa:83:72:2e:15:
00:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:45:FC:DD:45:33:ED:86:85:46:2F:14:18:FE:A1:F0:8B:37:03:65
X509v3 Authority Key Identifier:
keyid:44:A3:1B:E3:5B:32:74:F2:CB:85:7E:5A:F3:56:8B:68:5A:89:12:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:ef:c6:d6:fd:e2:3f:18:66:7e:2c:32:25:2f:4a:98:49:fc:
87:6c:7f:ec:d2:da:f5:4a:4d:61:c8:77:8d:15:ca:39:f1:99:
83:21:3f:f3:d6:40:19:7b:f1:e7:5b:88:fc:be:db:54:ba:be:
4e:de:a3:ae:71:1b:e3:6e:14:4b:bb:df:3a:d6:de:fe:eb:05:
8f:1e:05:cb:79:34:9c:a3:d1:1d:77:d7:dc:bf:2e:20:c6:ad:
41:9e:c9:be:c2:91:a1:89:32:97:42:0f:26:45:d8:ce:f0:4b:
ef:28:ee:4f:11:b2:05:15:f5:fa:ed:2d:08:86:1e:69:e0:7a:
6c:5d:89:cc:d7:6a:e6:ed:85:7b:7e:b7:5e:d7:49:76:88:fb:
57:cc:43:9a:5b:75:e2:c9:18:c2:86:be:a7:cc:dd:5d:f3:f1:
b2:cc:0c:ff:02:28:cd:88:6b:bd:16:d6:b4:9a:17:a8:3d:9d:
ca:d6:e2:13:2b:46:a7:60:24:01:38:d2:0d:c3:c7:9a:ca:a3:
47:cf:de:b2:d8:a2:cc:6c:35:33:c6:6f:c9:5d:cc:96:db:6f:
de:0f:44:08:7b:5b:53:ac:9b:c1:8d:cb:04:6d:70:5b:17:b2:
f7:08:2a:8e:f6:07:79:19:55:52:d0:d3:f1:56:a5:43:96:8a:
cf:d4:d5:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:54:54 2025 by rpki-client