Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
File: kNWCLTx7v3q1QE3aiP2dqSE43iE.mft (raw, json)
Hash identifier: IwVnCFKS2XmMCM6ElcdwM+QyeXs0/7KqvFT5OmPFUr4=
Subject key identifier: E5:00:E6:F6:02:0B:6C:88:A9:BD:C7:BA:65:8E:91:58:64:EF:45:3A
Authority key identifier: 90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
Certificate issuer: /CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Certificate serial: 01977D1EAC7AE4666FD69F18A99D035C42E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
Manifest number: 0654
Signing time: Tue 17 Jun 2025 09:00:51 +0000
Manifest this update: Tue 17 Jun 2025 09:00:51 +0000
Manifest next update: Wed 18 Jun 2025 09:00:51 +0000
Files and hashes: 1: kNWCLTx7v3q1QE3aiP2dqSE43iE.crl (hash: NsBDpQULjlt1QurMhNuzhUxdrLIhDRAqDBVXInmLZtY=)
2: wd_UoJqlC6X8mKMfS7O-YEGVRuo.roa (hash: xFPdoUnkz2JIkzmQ5taq1hUGjTFKvPuKX93R37CXGQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 09:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:1e:ac:7a:e4:66:6f:d6:9f:18:a9:9d:03:5c:42:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Validity
Not Before: Jun 17 09:00:51 2025 GMT
Not After : Jun 18 09:00:51 2025 GMT
Subject: CN=e500e6f6020b6c88a9bdc7ba658e915864ef453a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:64:24:4d:b1:a9:39:40:68:75:bf:4b:8e:b9:
65:3e:42:84:62:30:f1:a8:48:ab:89:df:64:a7:1a:
26:24:54:eb:d5:c0:3c:0f:77:0a:c4:3b:4c:cb:89:
f1:16:bb:e5:6a:4c:25:de:b1:11:7c:b7:00:fc:59:
2a:0a:e3:5b:61:01:22:68:b3:30:17:54:63:d0:44:
08:c0:ed:ad:c7:1d:4e:51:11:b1:54:0e:7f:70:f0:
9f:6f:31:95:ae:3a:5b:70:08:ed:bd:56:45:b5:2f:
c6:10:e4:10:7d:b7:cb:c8:50:3c:4e:5a:8c:34:a1:
c3:c7:24:52:ee:2e:ad:b4:c9:4e:13:cd:b4:48:51:
88:87:40:ec:d8:e0:cc:67:ec:f0:d9:76:f4:a0:01:
7b:f4:44:b7:2d:e0:d7:7a:a5:dd:f4:da:9b:d6:30:
52:f8:d7:cb:51:10:6d:a1:e8:d6:f6:51:f0:20:ab:
de:55:6d:4c:ab:d5:3f:29:59:5c:7e:94:a9:bd:3a:
70:6f:68:52:7b:5d:e5:6a:da:76:0a:6b:88:67:bc:
e3:79:7a:a6:1b:1c:1d:01:c5:c7:ec:88:b8:d2:f2:
af:f9:06:b1:f7:11:0f:92:77:ac:8c:12:9e:d3:10:
1c:ab:2b:5e:8e:53:05:84:99:cf:60:43:e0:72:8c:
65:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:00:E6:F6:02:0B:6C:88:A9:BD:C7:BA:65:8E:91:58:64:EF:45:3A
X509v3 Authority Key Identifier:
keyid:90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:3c:a2:95:f6:6c:ae:01:45:18:99:de:90:7b:17:f7:3b:a6:
9b:37:37:3f:c5:91:c6:f4:8b:d9:a5:09:d0:a9:16:18:d8:6d:
03:d5:c1:47:11:e1:74:c5:a9:be:c2:99:39:06:25:10:f2:6a:
7f:95:10:e8:f1:e5:31:b7:17:21:8c:74:19:e0:5c:7b:f1:6b:
74:25:f3:92:65:a4:94:3b:e1:d9:d8:4f:56:b9:5e:a3:f1:48:
12:e1:fe:ea:97:5a:5f:f5:2d:93:79:7e:ee:2c:f0:83:bc:72:
74:5a:63:56:1f:a7:07:a0:b0:79:78:fa:66:2f:1d:a7:7e:51:
13:94:4d:2d:3a:30:e0:3a:d7:6c:ae:dc:44:03:83:3b:60:0b:
d1:27:22:29:f5:c3:90:ce:21:d1:9c:cb:ce:5e:ca:28:66:ed:
f5:92:8f:90:f8:90:f9:b9:e2:91:12:75:e6:82:a2:77:2f:8b:
43:0e:73:84:02:cb:c4:4f:5c:51:11:51:45:52:c0:25:f7:4b:
40:c1:ff:a3:3a:35:3a:ff:10:98:a6:88:d1:99:f3:8c:af:c1:
cc:5f:9f:c3:9c:df:e0:80:07:dd:ae:cb:2f:06:77:6b:9a:d9:
90:c8:d7:d0:df:bb:c2:2d:2a:98:b0:cb:5e:de:0b:ac:92:1f:
08:ae:60:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 19:54:40 2025 by rpki-client