Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
File: kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft (raw, json)
Hash identifier: nhrh9IlatJrOBujq0ZAaEF0a2ol3QZ5+RHAoYdyIAWs=
Subject key identifier: C1:06:E2:D1:6C:18:19:44:C5:1A:7D:42:7C:ED:35:E4:77:22:35:E1
Authority key identifier: 90:7D:17:81:C2:8A:02:74:1E:A7:A6:3A:CE:3A:95:31:7E:EB:8B:7C
Certificate issuer: /CN=907d1781c28a02741ea7a63ace3a95317eeb8b7c
Certificate serial: 01976A05C792BA0C46F5A96C66899D9705B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
Manifest number: 0524
Signing time: Fri 13 Jun 2025 16:00:53 +0000
Manifest this update: Fri 13 Jun 2025 16:00:53 +0000
Manifest next update: Sat 14 Jun 2025 16:00:53 +0000
Files and hashes: 1: kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl (hash: SWFWlIn1iTfOkne6XBHE3t5cYDvB+Ruz7sIr97Dvbqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:c7:92:ba:0c:46:f5:a9:6c:66:89:9d:97:05:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=907d1781c28a02741ea7a63ace3a95317eeb8b7c
Validity
Not Before: Jun 13 16:00:53 2025 GMT
Not After : Jun 14 16:00:53 2025 GMT
Subject: CN=c106e2d16c181944c51a7d427ced35e4772235e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:69:05:65:c8:04:2a:7b:24:5f:82:7d:26:db:
bf:89:69:7f:38:d3:3d:34:c6:75:88:3e:2e:21:42:
a6:7f:77:b7:ef:98:32:54:48:d8:62:43:99:bc:26:
b2:c3:69:f6:f3:22:f3:91:c2:a0:31:27:28:0e:64:
5a:37:a7:10:58:41:64:35:59:27:9a:18:3d:41:09:
dc:1d:ad:f6:63:34:75:f6:0c:75:05:17:bd:d3:3d:
02:57:c8:00:3c:32:3f:ba:86:92:23:7d:54:5f:c4:
71:a4:14:32:78:98:77:f2:a8:0f:50:89:15:1b:2d:
9f:a5:71:48:6d:e2:43:01:f6:ca:02:f8:0e:0a:c2:
94:8c:fb:c5:54:03:17:83:00:6a:d0:5a:78:7c:19:
ad:da:6a:34:37:e0:ca:19:b5:85:9b:52:32:9a:50:
eb:ce:4a:25:b1:fc:17:ff:6f:35:cb:2f:0c:ca:7d:
39:dc:84:09:48:09:c1:41:29:15:5a:a7:8d:7f:ef:
ee:95:4b:bc:a9:51:26:13:a1:84:09:a5:9f:7d:3c:
ac:09:06:15:49:9e:8d:0b:02:ad:dd:9b:92:a2:d6:
eb:e3:1f:ff:e9:a5:e7:93:c4:c8:fd:37:e0:36:86:
0d:34:d2:f3:19:fd:30:4a:17:91:82:a6:f8:35:e9:
b6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:06:E2:D1:6C:18:19:44:C5:1A:7D:42:7C:ED:35:E4:77:22:35:E1
X509v3 Authority Key Identifier:
keyid:90:7D:17:81:C2:8A:02:74:1E:A7:A6:3A:CE:3A:95:31:7E:EB:8B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:c9:1d:85:4f:46:f0:91:27:db:ea:4f:72:43:fc:08:be:7d:
7f:a0:7e:b3:a4:43:b3:32:b8:92:26:b1:26:b2:44:5f:78:d0:
38:25:be:79:bd:c0:17:58:bb:7e:14:f4:ed:98:ec:ea:d4:89:
da:77:0f:28:39:d5:a3:11:5f:a3:00:c3:6e:a2:a6:be:d9:6f:
47:cb:c4:15:09:3e:8d:35:6f:b9:fb:89:d5:93:41:13:1b:86:
0e:e9:f5:ac:5d:05:d3:07:ad:3f:d8:aa:16:97:aa:c0:74:2f:
67:03:44:54:6c:ca:d6:b2:8a:0d:56:f2:2a:6a:34:c4:dc:8f:
03:ee:bd:c7:ed:82:0a:96:85:83:97:26:c9:8c:0e:b9:67:98:
3c:99:89:32:59:c8:1a:61:71:6f:15:86:64:6f:9d:54:51:b7:
11:b8:5c:e8:0a:84:d0:9f:0f:1e:fd:e9:77:c3:44:b2:7e:9a:
8a:32:01:9c:06:9f:10:ab:06:3b:29:64:d5:98:06:37:44:a3:
8c:66:09:6d:52:57:5f:46:fe:a7:54:49:9e:5d:22:f5:b3:48:
e0:c7:ba:b9:ed:2d:34:ca:88:52:dc:cc:d3:1d:f3:a5:2d:7e:
df:d9:b9:9a:63:58:03:d4:a2:cb:2c:34:06:5d:da:2b:30:a3:
21:03:27:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:42:18 2025 by rpki-client