Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
File: 00KrFW1a4VOtFlKOh9nIR53ApKU.mft (raw, json)
Hash identifier: w6vIkATFSwpnCAygLq9MEbcK/3QFPfW42jsp/raq9Qo=
Subject key identifier: 04:58:30:79:B9:B8:CC:BE:8E:C0:C3:2F:01:43:5C:BE:4F:A0:4F:31
Authority key identifier: D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
Certificate issuer: /CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Certificate serial: 019769979EE95C91A8B597545A7309141BAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
Manifest number: 158E
Signing time: Fri 13 Jun 2025 14:00:33 +0000
Manifest this update: Fri 13 Jun 2025 14:00:33 +0000
Manifest next update: Sat 14 Jun 2025 14:00:33 +0000
Files and hashes: 1: 00KrFW1a4VOtFlKOh9nIR53ApKU.crl (hash: uFBScDAFi6w9eIJNsq4LOY4lyD/BRigPsyQvwmB52Hg=)
2: YzWazfZkDmpS6lnGJouGiR4vMgw.roa (hash: g+4T1wjwDSXCQUkHT41UwModEGJm2ijdNXqnxLEPkqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:9e:e9:5c:91:a8:b5:97:54:5a:73:09:14:1b:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Validity
Not Before: Jun 13 14:00:33 2025 GMT
Not After : Jun 14 14:00:33 2025 GMT
Subject: CN=04583079b9b8ccbe8ec0c32f01435cbe4fa04f31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:58:2a:1d:5c:3c:ba:3c:7e:1f:b5:e3:df:5b:
44:32:d9:56:fe:b5:2d:05:8e:20:0f:05:2d:97:1a:
a0:cf:a0:72:68:11:df:2a:8c:f8:d0:7a:8c:b8:87:
d6:d0:a9:5f:1c:51:43:33:ad:f1:a1:dd:00:c6:25:
60:e0:e7:eb:9e:53:89:96:8a:21:77:55:69:88:66:
01:3e:e4:19:36:64:e9:2c:a9:f2:43:e6:fa:13:ef:
12:a8:1e:c4:64:72:b6:4a:43:0d:e0:e2:f0:0e:3b:
7c:77:5a:81:a3:ac:31:99:d6:cc:19:37:78:21:f6:
f8:a3:19:c1:8c:83:3d:27:26:bd:59:1b:4a:25:5b:
3d:3f:5f:d4:56:10:bb:86:35:56:8d:ef:03:9b:ec:
46:3b:3b:44:f7:e0:a3:fc:04:4c:e7:75:f5:9e:a4:
d7:e8:af:d6:59:14:1e:3e:66:eb:71:ae:9b:f0:08:
04:bf:60:d9:44:9b:72:65:2f:09:32:58:8d:73:45:
00:4a:9a:9c:ae:42:84:09:6d:f6:e7:0a:db:96:27:
ab:19:9e:57:c3:fa:dd:19:3b:34:73:ee:25:dc:15:
69:93:87:88:59:8f:2f:5d:b4:6e:ee:ca:c4:ff:ba:
18:d7:e6:01:77:bd:cf:c7:13:e1:e0:17:1c:f6:90:
53:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:58:30:79:B9:B8:CC:BE:8E:C0:C3:2F:01:43:5C:BE:4F:A0:4F:31
X509v3 Authority Key Identifier:
keyid:D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:22:0d:13:9c:1d:17:7f:b0:45:86:e0:39:75:4e:71:aa:06:
ca:28:86:3d:73:60:81:40:85:5f:d0:dd:2b:8c:9a:b1:d5:a6:
16:fb:ff:8a:01:60:1c:a6:e7:44:e0:de:ef:00:bb:54:6e:80:
47:d5:44:d2:65:7f:75:22:97:66:ff:ec:d6:c4:21:0b:6d:81:
e4:0e:73:42:5c:ac:f6:f1:2a:4e:0a:40:24:64:1b:79:26:47:
9f:73:05:f2:9d:0d:e6:a4:ea:f4:be:bb:92:62:96:9e:5a:ef:
e8:fa:48:c1:a7:8b:16:86:41:aa:63:00:7e:55:7c:1e:52:4a:
48:c1:9e:ea:d6:45:14:86:eb:cf:c4:74:4d:54:d6:6c:e9:24:
11:9c:e6:bf:d6:7c:19:3f:0e:b0:4d:22:5f:68:9d:67:c8:aa:
86:df:1b:86:f5:31:93:ee:2c:e0:1f:76:2d:ab:e3:8d:29:54:
dd:73:7f:4b:06:2b:17:db:5e:f0:c0:7f:9d:b5:a5:3f:41:b4:
09:dd:6c:f4:a0:ba:98:c1:3d:be:e1:12:f8:34:7a:10:4b:97:
ec:3d:79:26:b1:2e:2f:04:04:15:0c:2d:2e:ed:be:a3:c5:97:
66:3e:ee:6f:a1:0c:34:69:75:88:fb:08:f0:46:6d:98:8f:75:
c5:37:85:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:28:25 2025 by rpki-client