Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.mft
File: CKi4_gyIWkXySFUjNC6bqNyJ5o8.mft (raw, json)
Hash identifier: Rk5HNdD0IkYr4fBduJPh1rtEYQ7GS6WWnQCXMx0151k=
Subject key identifier: 4A:43:C6:D1:1A:EF:4D:84:6E:78:FF:2D:A2:16:10:76:9F:C9:FC:6A
Authority key identifier: 08:A8:B8:FE:0C:88:5A:45:F2:48:55:23:34:2E:9B:A8:DC:89:E6:8F
Certificate issuer: /CN=08a8b8fe0c885a45f2485523342e9ba8dc89e68f
Certificate serial: 0197711A7902EF8F021AA6E8FCD843C37BFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKi4_gyIWkXySFUjNC6bqNyJ5o8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.mft
Manifest number: 03A0
Signing time: Sun 15 Jun 2025 01:00:49 +0000
Manifest this update: Sun 15 Jun 2025 01:00:49 +0000
Manifest next update: Mon 16 Jun 2025 01:00:49 +0000
Files and hashes: 1: CKi4_gyIWkXySFUjNC6bqNyJ5o8.crl (hash: CMf/y2+5L+DOfPlq4KtXISEUf5UyjnTkxcFBAVUfzjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKi4_gyIWkXySFUjNC6bqNyJ5o8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1a:79:02:ef:8f:02:1a:a6:e8:fc:d8:43:c3:7b:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a8b8fe0c885a45f2485523342e9ba8dc89e68f
Validity
Not Before: Jun 15 01:00:49 2025 GMT
Not After : Jun 16 01:00:49 2025 GMT
Subject: CN=4a43c6d11aef4d846e78ff2da21610769fc9fc6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:66:fa:a1:f3:79:f4:e6:c4:8f:86:cb:40:56:
c4:97:55:90:b3:1a:50:d8:15:0b:b2:8e:9e:fa:38:
21:98:47:8e:35:e4:7e:e7:93:68:a7:64:f1:51:67:
73:57:7b:f4:d3:9d:1b:88:63:f8:c3:3f:f0:71:b4:
c9:8b:46:cf:24:e8:eb:7c:82:06:83:76:30:ba:d9:
63:07:b2:ec:9a:56:69:c8:3a:75:6a:e9:e7:83:a9:
fc:dd:09:bd:0f:dc:bd:ee:91:77:9c:b4:e5:84:d4:
db:85:43:b6:e6:96:33:21:26:ba:77:68:e8:a4:8b:
2c:5e:3b:81:a9:2a:54:58:e6:51:7a:0d:84:65:63:
51:1a:ec:77:44:5f:fc:fd:da:ad:b6:03:a2:94:b1:
fd:1b:1f:23:4a:e7:bc:11:c4:84:04:85:54:1c:b0:
d7:8e:0e:26:80:f2:07:46:f6:5d:5a:3b:bc:30:38:
5b:37:d2:24:32:b1:b3:68:19:14:13:60:9e:26:de:
b4:06:f9:66:ed:05:0a:2f:f5:27:fa:57:26:46:b1:
e1:7c:be:d4:08:d4:52:a4:11:6f:64:54:f7:49:2e:
33:05:5b:2d:aa:6a:4f:07:fa:6f:73:0a:69:80:4b:
f7:4f:05:8a:80:3a:6f:6d:2d:78:3e:b5:02:97:7b:
d8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:43:C6:D1:1A:EF:4D:84:6E:78:FF:2D:A2:16:10:76:9F:C9:FC:6A
X509v3 Authority Key Identifier:
keyid:08:A8:B8:FE:0C:88:5A:45:F2:48:55:23:34:2E:9B:A8:DC:89:E6:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKi4_gyIWkXySFUjNC6bqNyJ5o8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/f8e599-b57a-44a2-9c35-9ee53442c3e9/1/CKi4_gyIWkXySFUjNC6bqNyJ5o8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:a2:65:67:19:4a:90:5f:54:0b:ef:21:ba:bb:b5:a7:9a:d9:
af:0e:07:09:31:0e:5c:9c:de:9a:b1:bd:58:cb:cf:b1:9b:cb:
24:05:17:84:ec:b4:12:b0:7a:7b:85:11:49:9c:53:6b:2f:d1:
8d:07:c0:e0:f4:87:67:41:df:59:0e:50:d5:4b:56:b7:67:7c:
24:1a:69:4c:d0:4e:03:6b:ac:9a:8c:ac:b3:a1:d8:60:ba:e1:
5c:1d:6d:d4:53:34:29:2b:3d:ff:e5:d6:66:ac:a5:ce:40:52:
2b:4c:19:23:c4:3c:93:b6:3b:bc:91:93:0a:b2:cb:b8:f9:c3:
0e:9b:b1:7e:dc:58:7e:19:a4:73:d7:7e:e1:d7:60:b9:8f:24:
4a:27:bd:ba:ef:b1:2e:3b:e0:47:28:6f:88:4d:72:8b:26:51:
56:70:c9:52:70:a9:7d:d1:fe:0c:87:dc:a2:00:fc:94:dc:40:
23:13:29:4f:94:d7:f7:09:3b:c4:e1:29:ee:cd:f6:41:05:c8:
fc:6c:9c:84:f9:af:fe:63:3f:2f:c6:76:a9:4c:db:3e:49:78:
d0:c0:b7:67:60:f7:eb:a3:c8:c9:21:2c:81:b1:c1:28:be:f4:
0a:7f:ee:4a:75:94:14:33:fb:af:a4:59:e1:a9:e9:92:fb:fe:
1b:9d:d9:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:08:12 2025 by rpki-client