Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
File: sKT8KvOK9bT1hh4n_QB-YktfmwI.mft (raw, json)
Hash identifier: 3Haoo8kb2DgZwdlxH8eXJkfGkCqeq8J5Q5YnnaLvIHY=
Subject key identifier: 59:25:D1:1F:EA:AB:46:6C:D5:6A:85:68:24:DC:AE:AA:F6:77:0D:BA
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 01977150FB7C6663D884A8C4E9127D028611
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
Manifest number: 1461
Signing time: Sun 15 Jun 2025 02:00:21 +0000
Manifest this update: Sun 15 Jun 2025 02:00:21 +0000
Manifest next update: Mon 16 Jun 2025 02:00:21 +0000
Files and hashes: 1: EhMQv2Hd3Y0AB-EaVNPw9A1el2Y.roa (hash: bVKsgWkrvgH7jweX9NZzvJ58rjQAc648XkG11nW0Xqk=)
2: sKT8KvOK9bT1hh4n_QB-YktfmwI.crl (hash: KO117fZqH3As5KfEY0bJMPgC72dDOgJboKC+gcJQp5I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:50:fb:7c:66:63:d8:84:a8:c4:e9:12:7d:02:86:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Jun 15 02:00:21 2025 GMT
Not After : Jun 16 02:00:21 2025 GMT
Subject: CN=5925d11feaab466cd56a856824dcaeaaf6770dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cd:8c:a6:3b:5e:da:ec:41:7b:03:50:67:ce:
44:3a:5b:d4:7d:60:30:cb:3e:d1:1f:42:23:1f:61:
82:da:1a:7a:d4:f6:31:a5:fa:25:0f:62:66:9e:cc:
f5:1c:40:2b:75:bb:4d:12:2c:9c:07:e3:56:72:01:
48:2e:bf:28:64:3b:85:1b:f5:b3:15:5f:6c:d1:18:
fb:3e:f6:9e:1c:21:23:21:fe:f0:e1:e7:e2:f4:3a:
7e:85:38:42:6b:c2:d8:a4:8b:c4:58:dd:40:1d:9b:
0b:c9:b8:d6:15:1e:c0:47:6b:d8:32:eb:77:f2:c1:
77:f3:e6:5c:b3:1f:33:1f:11:e8:5b:9b:c7:41:0b:
6c:98:d7:1a:21:e7:9f:2c:10:6a:a6:03:ac:49:10:
5f:b8:44:74:2c:ba:10:e9:99:72:4d:07:4a:a4:96:
29:28:45:70:a4:74:62:30:04:1d:fa:6f:8f:12:a1:
3f:ef:e7:9e:f1:5f:ab:7b:72:a4:24:29:02:c3:c9:
ca:d9:23:4d:c7:80:1b:76:37:98:52:d7:5a:d0:ea:
b3:73:bb:7e:2a:21:01:24:c7:98:1d:9f:e0:db:00:
8d:48:fb:bc:a7:1c:d3:31:d4:d1:92:b4:eb:4a:0a:
66:1d:1b:1a:f4:2e:cb:50:11:50:72:99:d2:80:20:
8a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:25:D1:1F:EA:AB:46:6C:D5:6A:85:68:24:DC:AE:AA:F6:77:0D:BA
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:ea:fc:ee:03:91:f3:59:41:67:56:37:f6:21:8a:21:8d:6d:
30:36:81:04:a4:38:5a:de:5e:ac:b3:a5:6c:a9:83:37:95:a9:
f8:f5:20:6e:0f:2a:01:44:32:8d:46:95:f8:0e:e2:7a:e7:f9:
10:ed:2a:f5:cc:14:4d:3c:cc:c6:c6:f7:a4:f2:88:7d:12:d2:
f1:e2:44:e9:ee:9c:1a:bc:2c:9e:22:29:af:c0:ba:ae:c9:a9:
c5:14:e5:ec:b3:65:8c:f9:9b:da:37:ab:3a:0d:02:e9:0d:b3:
6d:70:69:02:4c:94:cf:26:ac:67:4a:fb:7f:4c:79:fd:01:20:
ad:b9:c3:ce:86:08:c0:8b:24:4c:e5:6a:5f:3a:11:d1:e6:ae:
f0:06:bb:82:5b:77:07:58:95:6c:0e:e6:1f:83:42:36:a2:d3:
0a:d1:8a:b2:ea:34:a1:57:5e:0c:68:3d:e6:cf:de:2c:cc:8e:
04:a0:a0:c8:05:17:01:dc:90:f1:18:4e:1b:36:41:22:a3:cb:
ed:d8:39:81:53:5d:bc:73:19:67:5d:88:66:d2:2a:8b:ff:43:
70:cc:54:21:5c:75:80:af:b3:90:d3:94:1f:56:49:0a:12:16:
7c:e5:a1:39:ad:5c:af:af:6b:31:31:3b:81:2d:71:f9:ad:66:
25:a1:a1:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:27:26 2025 by rpki-client