Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: TPNmtFk+5HXjTEaEjaiv/XyJT/v3qDMElV+mDswsOQY=
Subject key identifier: C8:5E:7B:3E:B5:34:0F:C2:32:AF:57:4D:91:6E:93:36:99:FA:22:B3
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 01976BBD0489A848F9B43D7E0790390490F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 092B
Signing time: Sat 14 Jun 2025 00:00:38 +0000
Manifest this update: Sat 14 Jun 2025 00:00:38 +0000
Manifest next update: Sun 15 Jun 2025 00:00:38 +0000
Files and hashes: 1: H2ciew030YT_ZKL58SNBSDs0iQc.roa (hash: dr7FPAyraTf1nqxR0HjlvGsow4ZxkGibDCSpB0tZ3CU=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: ekrETGmntYTLGc0lS0HGkGm/R8+Qx+agM3aZeghDUSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:04:89:a8:48:f9:b4:3d:7e:07:90:39:04:90:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Jun 14 00:00:38 2025 GMT
Not After : Jun 15 00:00:38 2025 GMT
Subject: CN=c85e7b3eb5340fc232af574d916e933699fa22b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:30:9c:60:6c:92:0f:b9:6b:60:5c:6d:d4:9d:
51:a0:0d:a6:b4:e4:28:c0:7b:af:a3:06:5c:44:52:
bd:f4:83:b7:04:15:23:e2:76:d8:95:c9:22:02:78:
0e:31:6e:e6:84:22:41:e9:6f:17:c4:1f:5d:b7:c9:
7b:fd:9a:14:c2:5f:eb:d1:8a:af:dc:d8:8f:d3:df:
87:74:60:c5:06:d8:65:17:60:57:b3:64:09:52:0c:
91:66:73:e4:f2:80:4b:63:1d:b4:6e:50:6b:18:cc:
50:33:f1:2b:f7:32:23:77:41:98:f8:72:22:ce:f7:
4f:3c:66:13:9d:1a:2a:bf:e9:21:eb:68:d3:61:dd:
7b:92:d1:91:bc:81:71:95:45:96:65:cc:e8:f9:ab:
eb:70:63:bc:8c:c1:b8:b2:b2:6c:74:40:e6:99:c3:
bb:ad:dd:f5:89:5d:cc:47:be:2c:f4:38:6a:5d:da:
5f:2a:6c:de:61:3e:ff:d9:ed:03:cd:2b:50:d8:33:
f7:ca:c0:80:7a:ac:5f:e8:85:1b:27:92:20:97:f8:
a8:c7:65:1d:6a:18:28:43:54:88:fa:7f:1f:ad:ac:
1a:25:92:6b:60:e7:5d:c6:81:36:4a:72:6e:72:9f:
3a:2c:a2:63:75:01:e8:30:10:a3:2f:9c:6d:bf:b0:
a4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:5E:7B:3E:B5:34:0F:C2:32:AF:57:4D:91:6E:93:36:99:FA:22:B3
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:4a:2a:de:dd:e4:01:44:e1:de:4a:2f:52:19:5a:4d:f0:26:
9f:60:d3:57:8b:0b:cf:76:c8:c3:72:17:0a:e2:8b:7e:71:03:
d7:b7:ed:cc:2d:ed:9d:77:47:6c:af:65:82:cf:62:06:79:60:
e7:8e:41:f6:d5:94:a1:7f:46:cd:18:6b:35:79:4d:88:a4:64:
a4:ac:f1:c8:e2:90:63:f8:f5:86:a3:d8:c7:66:ff:f6:8e:c0:
f8:52:13:5f:43:6d:c5:61:ae:d3:43:88:60:23:d6:af:6f:0a:
20:84:93:01:e1:4c:35:39:89:43:06:a9:33:b0:83:01:24:f1:
8b:c6:9c:86:7b:cc:3d:63:fc:c9:47:e7:20:c2:c2:4b:39:e0:
6c:3f:cf:f8:bc:66:19:0c:f1:89:08:b5:0f:68:4d:7d:04:68:
0e:c8:ca:55:54:a9:a2:28:18:d9:e1:9c:82:dd:0d:64:73:96:
dd:21:3d:89:89:8e:46:3f:39:6e:c9:6b:8f:af:f4:e6:fe:e3:
ef:69:65:21:01:c6:a9:f3:37:04:9b:ba:73:e8:15:29:6f:f2:
00:1c:9f:87:a4:8f:39:2e:4f:19:ce:0c:f0:45:49:a5:5b:a8:
b5:14:7d:4d:9e:cc:97:42:a8:c3:76:8d:28:f8:73:61:a6:c9:
43:05:ca:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:17:53 2025 by rpki-client